Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/zTmKipgrz9Fy-iYZ-cFw2_lHnEA.roa
File: zTmKipgrz9Fy-iYZ-cFw2_lHnEA.roa (raw, json)
Hash identifier: zQXA/HapHly4Y5YCOSdjkJq3pWcW/A1wkt6DZZs70xI=
Subject key identifier: CD:39:8A:8A:98:2B:CF:D1:72:FA:26:19:F9:C1:70:DB:F9:47:9C:40
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 01876BA4B279B2CD880F0C27C2606D33E26E
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/zTmKipgrz9Fy-iYZ-cFw2_lHnEA.roa
Signing time: Mon 10 Apr 2023 14:49:28 +0000
ROA not before: Mon 10 Apr 2023 14:49:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206804
IP address blocks: 85.203.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6b:a4:b2:79:b2:cd:88:0f:0c:27:c2:60:6d:33:e2:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Apr 10 14:49:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd398a8a982bcfd172fa2619f9c170dbf9479c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ec:c6:b7:d9:00:53:0b:09:2f:39:a1:f2:7d:
a8:96:1f:cf:48:e8:35:18:50:c7:82:62:30:4b:0c:
eb:98:73:bb:68:69:a9:ea:c4:3d:f7:a4:86:77:16:
e8:ce:8b:cd:e6:2b:31:9f:c0:38:83:77:85:d0:5f:
34:28:f2:73:f2:98:2d:0f:1d:02:0b:9d:b6:e3:17:
84:29:c5:15:78:e9:89:2c:19:16:a6:50:3a:c7:40:
21:78:01:c2:74:0f:58:a1:70:ad:79:e5:a2:00:e5:
12:dc:68:ae:09:ac:02:81:ff:e9:0d:95:6e:85:21:
2e:d7:57:36:79:46:20:bd:70:07:37:1e:96:ac:78:
c5:92:39:bc:32:7e:24:89:9a:7a:ee:07:b8:dc:f3:
74:55:1e:60:95:b9:b2:09:e4:6a:1c:dd:b1:fe:4c:
c7:32:52:47:33:bf:65:14:b7:09:3b:b9:16:49:ff:
24:52:c4:7f:55:50:e8:90:55:db:6f:b4:1b:1a:21:
b2:06:05:73:f3:9f:39:62:7e:47:3e:dc:43:1f:c1:
d2:10:dc:a0:0b:cb:34:6c:c7:7a:4d:76:b7:18:30:
d2:6c:c1:0d:0a:1b:57:41:06:d2:33:7f:9b:61:75:
cf:12:1a:c7:64:26:0a:14:b3:60:ab:cf:fd:4d:9c:
69:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:39:8A:8A:98:2B:CF:D1:72:FA:26:19:F9:C1:70:DB:F9:47:9C:40
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/zTmKipgrz9Fy-iYZ-cFw2_lHnEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.39.0/24
Signature Algorithm: sha256WithRSAEncryption
38:98:34:66:90:d2:5e:83:ef:e8:e7:3c:c2:26:c0:24:4a:4e:
63:47:8a:b2:59:37:9f:69:2f:5b:d8:5a:30:a0:ce:54:1a:98:
d4:70:8c:c5:de:10:8a:b7:93:48:10:7c:2e:8b:87:fe:35:c4:
b8:b4:74:c8:ad:e5:1f:e3:7e:bb:ab:9b:54:ab:2d:c6:2d:17:
4c:2e:c1:76:8f:7f:c1:54:cb:e6:64:d4:79:84:ce:2f:b1:6b:
3a:62:c2:a2:26:ae:7f:b7:aa:86:3a:21:1a:8f:9e:30:25:03:
6d:df:87:83:d2:f8:21:ff:3c:f3:46:1b:c9:3a:6f:bd:f9:a7:
ef:6e:84:0d:80:1f:14:e8:21:15:fa:4b:67:52:8c:1f:cc:0a:
81:af:55:bb:39:0c:af:0d:3c:64:1f:e4:ee:3a:5e:8c:11:03:
36:d0:8f:61:e3:e0:af:02:6d:97:a5:9c:e9:ed:18:07:d7:48:
4a:b6:ce:82:34:97:5d:e5:9d:bb:7d:3b:46:52:fc:10:39:1a:
8f:32:fd:9b:ce:14:4f:fb:1c:aa:61:4b:a2:b5:cb:36:9f:1b:
64:00:04:4a:62:e4:57:bb:49:db:61:87:75:70:79:21:83:8d:
a7:65:06:c8:bb:f8:9f:72:26:dd:c8:26:80:ba:88:14:5f:c8:
ad:d3:ec:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:16 2024 by rpki-client on console-fra.rpki-client.org