Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/mWkVn4VQbCLOl_TQK2OJ3P8DxXo.roa
File: mWkVn4VQbCLOl_TQK2OJ3P8DxXo.roa (raw, json)
Hash identifier: 84SD4Trh7c8OOkMNgLgGsAT/hlhxCsJ1g/iEvTYAJlM=
Subject key identifier: 99:69:15:9F:85:50:6C:22:CE:97:F4:D0:2B:63:89:DC:FF:03:C5:7A
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEECAB9B7EAA514FC0E435D34C15027
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/mWkVn4VQbCLOl_TQK2OJ3P8DxXo.roa
Signing time: Sun 01 Jan 2023 06:04:49 +0000
ROA not before: Sun 01 Jan 2023 06:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200289
IP address blocks: 85.31.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:ca:b9:b7:ea:a5:14:fc:0e:43:5d:34:c1:50:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9969159f85506c22ce97f4d02b6389dcff03c57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:55:35:43:41:a2:e0:40:85:32:6b:dd:34:0d:
0b:99:33:8e:8a:bc:c8:64:c2:52:c5:e1:e7:2e:ea:
a5:87:95:1b:3d:b1:98:d2:5f:36:0b:e5:b7:41:fa:
cb:e4:3a:3f:cf:1f:95:44:07:b1:b7:27:3d:52:16:
00:63:bb:65:54:d9:22:e0:4d:51:2c:6c:56:d8:b6:
ef:a8:0a:2f:d9:94:d3:91:fb:94:70:4d:67:6f:16:
8a:77:c6:e5:c1:c6:d7:a1:6b:ee:f5:c0:ae:86:2b:
74:8c:4a:a5:0b:1c:b9:7a:db:1b:37:05:3d:a8:9e:
60:c7:55:16:8e:f3:82:3c:55:04:28:9d:08:a3:6c:
6e:2c:7b:c6:12:58:96:4d:83:9c:4d:fa:dc:9a:b0:
cc:e4:c1:c3:40:76:a9:05:23:1a:05:94:d6:f8:50:
c2:75:b9:96:d2:b4:8e:9f:66:9f:49:38:ec:4a:27:
f4:f7:f7:df:a8:67:d1:6e:71:56:c9:7d:49:99:0f:
97:2c:f9:0e:21:38:3c:c0:75:39:b7:b4:87:90:b1:
69:bb:3d:69:43:78:b7:90:9f:49:1a:e2:25:b0:05:
33:6c:ab:92:d9:e1:9c:70:ea:d0:c8:3e:a1:2a:a2:
dd:eb:d8:05:b1:a8:f3:aa:f5:95:85:4f:39:1d:21:
e4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:69:15:9F:85:50:6C:22:CE:97:F4:D0:2B:63:89:DC:FF:03:C5:7A
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/mWkVn4VQbCLOl_TQK2OJ3P8DxXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.245.0/24
Signature Algorithm: sha256WithRSAEncryption
10:6d:20:a8:fc:5b:e3:92:bb:c8:ee:b8:4a:2b:72:fe:c3:45:
b3:ec:a1:e9:79:c9:87:aa:1d:b6:2d:40:ea:1a:05:67:e6:65:
d5:b2:74:a4:a0:65:f6:b0:ad:33:89:a5:35:aa:74:30:72:ce:
ef:69:8f:c0:5e:e3:09:d2:3f:75:d8:ea:c9:ac:13:a8:d5:09:
ff:71:93:1b:59:92:6a:b5:a6:bd:36:17:e3:22:9f:12:a4:75:
81:73:68:ff:5c:7e:72:5a:03:e7:ce:19:c0:69:4d:cb:f6:98:
c1:61:30:7b:d5:6c:fa:5a:bc:0f:e0:92:f6:46:e2:26:ee:fb:
cb:48:14:0e:70:b8:30:7f:c0:60:31:45:d0:04:b9:c2:44:13:
79:0c:bf:c9:15:9e:ae:da:d2:ae:fb:fb:ca:27:94:13:e3:73:
13:40:88:b6:9b:9c:98:1f:90:47:c7:b8:93:24:62:3f:b7:77:
2f:cb:ec:eb:ab:a5:c5:4f:27:a9:f7:19:ee:e7:ea:ac:5a:cf:
04:92:ae:24:3c:4a:04:9d:b5:96:7b:65:20:f6:58:81:f8:85:
8d:55:49:9b:68:ef:75:b2:10:45:e6:d3:60:3e:2e:81:d8:72:
5d:eb:08:3b:b9:e9:ab:d4:c8:03:ac:3d:58:66:fb:72:1a:24:
3d:0b:28:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org