Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/MiV3L8IuHUBT1Sap8h_YQnBxBms.roa
File: MiV3L8IuHUBT1Sap8h_YQnBxBms.roa (raw, json)
Hash identifier: M0ImPkXk++ad5JlggNkKmwi9ulV077dLZ7OwNFF8q1s=
Subject key identifier: 32:25:77:2F:C2:2E:1D:40:53:D5:26:A9:F2:1F:D8:42:70:71:06:6B
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018572CC97383EF43CC9564A89DB653C6FAF
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/MiV3L8IuHUBT1Sap8h_YQnBxBms.roa
Signing time: Mon 02 Jan 2023 14:04:48 +0000
ROA not before: Mon 02 Jan 2023 14:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15557
IP address blocks: 85.203.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:97:38:3e:f4:3c:c9:56:4a:89:db:65:3c:6f:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 14:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3225772fc22e1d4053d526a9f21fd8427071066b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:47:b7:8d:93:6f:61:6b:a6:37:4d:26:ba:84:
70:1e:1a:14:fc:16:93:64:ab:2f:36:53:1a:6c:40:
06:b0:96:6d:df:2d:34:a0:b7:13:7e:43:e2:43:60:
6e:3a:ce:11:ef:a8:70:40:2c:f5:80:b0:45:48:db:
a1:41:14:2b:18:85:31:c6:8b:eb:ae:fe:c5:32:f5:
ef:58:73:bf:ac:c0:64:35:76:b9:97:f8:10:22:06:
40:8f:c5:64:42:b5:92:ab:a5:57:a1:b9:8b:b7:ea:
28:91:38:58:f6:0d:70:3f:78:d6:47:00:86:0e:27:
e5:7c:aa:33:e5:4a:ab:2d:46:d6:1f:75:01:f0:41:
fd:6f:23:e9:dc:98:87:0a:68:32:b0:cb:4a:8b:b5:
d8:90:93:f7:f7:41:a0:a2:c1:a0:26:df:77:48:19:
cb:f9:2d:cf:92:83:60:f4:81:44:71:fd:2d:c7:f5:
63:5f:ba:5e:f4:18:cb:0f:2b:63:0c:51:f6:fd:c7:
ce:85:63:5b:f6:1e:a4:05:99:6f:36:dd:75:61:e7:
76:cc:69:bb:09:5e:f1:59:52:32:61:ef:29:cc:2f:
0f:05:e4:8e:68:ec:32:8d:e0:55:93:f5:65:7d:95:
23:90:ab:98:84:8e:56:08:7e:55:9f:6d:03:91:72:
c2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:25:77:2F:C2:2E:1D:40:53:D5:26:A9:F2:1F:D8:42:70:71:06:6B
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/MiV3L8IuHUBT1Sap8h_YQnBxBms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.7.0/24
Signature Algorithm: sha256WithRSAEncryption
66:1b:45:2d:e4:30:77:6a:12:0b:ab:81:a3:c6:3e:42:9f:d9:
b2:62:2f:a3:be:3d:cf:d0:a9:0a:6e:31:a7:88:a0:eb:04:3a:
10:f6:ba:fa:a5:7f:d6:cb:93:e1:27:f3:8d:da:a8:fd:6e:4b:
9f:e9:57:27:ac:5b:ff:a0:fb:3c:38:d6:cb:be:77:fd:cc:b2:
52:26:ac:be:66:63:1c:b1:09:64:2c:c2:85:54:18:21:32:5b:
3e:22:fa:02:11:be:0a:70:43:83:a5:cf:49:da:50:65:d9:ad:
3d:ce:0b:97:1a:7f:d9:d7:b9:a5:07:f1:3e:cf:6d:02:81:be:
9a:72:ba:ab:c5:fa:33:b7:37:4c:6d:51:0d:8f:35:9b:46:bd:
91:52:e8:2a:0d:1f:9d:5e:10:f8:e2:c0:6b:50:9e:98:88:1a:
5e:8b:95:b7:7d:46:56:e4:2f:d2:22:e3:a0:3c:47:5e:e9:0c:
b4:be:bf:7a:fd:b4:8a:d6:57:5b:a0:70:3a:78:ac:0a:7a:2f:
3a:55:95:46:b0:51:7c:6f:95:7f:4c:1d:7b:3d:49:2d:d7:57:
23:2e:c1:45:57:cc:3d:fc:95:28:41:8a:f1:a7:88:eb:c7:2f:
fe:54:af:7e:c0:8f:16:43:7d:a1:6c:b5:3f:04:62:f2:1d:6e:
89:0c:3d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:15 2024 by rpki-client on console-fra.rpki-client.org