Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/1vxD1pd34oRJxudUOf962Q7EDG0.roa
File: 1vxD1pd34oRJxudUOf962Q7EDG0.roa (raw, json)
Hash identifier: gjGFtjEn5VGrPO7zzPX2nL++EtYpQJiuwZ4B4wM37ww=
Subject key identifier: D6:FC:43:D6:97:77:E2:84:49:C6:E7:54:39:FF:7A:D9:0E:C4:0C:6D
Certificate issuer: /CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Certificate serial: 01894FFCBFC7DE35850D902740FD6321B831
Authority key identifier: 62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/1vxD1pd34oRJxudUOf962Q7EDG0.roa
Signing time: Thu 13 Jul 2023 16:01:51 +0000
ROA not before: Thu 13 Jul 2023 16:01:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399989
IP address blocks: 85.209.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4f:fc:bf:c7:de:35:85:0d:90:27:40:fd:63:21:b8:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Validity
Not Before: Jul 13 16:01:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6fc43d69777e28449c6e75439ff7ad90ec40c6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:af:7f:22:55:9d:9e:30:e4:0a:07:d5:1c:e6:
42:2d:ac:c4:b9:32:59:9e:d1:7d:4d:da:b4:af:0b:
b2:d6:7b:7b:b5:4f:8a:1d:67:29:08:36:44:f6:a4:
05:dd:16:32:bb:c7:5a:78:8b:c6:ac:c3:2c:83:3a:
64:17:e4:ea:b9:9e:c7:d3:ca:42:31:59:ab:56:e9:
89:72:3b:d5:34:01:99:e3:dd:93:91:7e:ff:38:44:
ed:0b:a5:bc:15:e8:05:87:f5:b6:ba:ec:dc:70:00:
b3:4a:ec:74:fd:62:7f:86:80:cb:12:1d:7f:0a:29:
71:39:0f:c2:44:42:28:fd:a1:da:be:74:3c:7e:fe:
1a:33:4f:cf:ab:ad:d6:b4:2f:da:bb:49:d1:10:56:
a3:38:22:20:3c:e1:9c:26:ea:0e:35:c4:d5:cb:42:
11:5b:09:f3:da:51:d3:15:cf:cb:55:da:50:60:bf:
4d:55:b6:67:22:5d:9a:59:cf:e8:74:9a:25:d1:31:
e4:69:87:a3:e1:80:54:a8:5a:55:62:80:18:f7:db:
11:16:1f:2e:08:ff:aa:d6:c8:fd:29:f4:94:65:d9:
68:0e:8b:1b:2e:a7:90:c5:89:dd:20:ba:d0:1e:79:
c7:41:72:54:1f:8d:dc:c5:f6:9a:a5:e6:07:a1:59:
b9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:FC:43:D6:97:77:E2:84:49:C6:E7:54:39:FF:7A:D9:0E:C4:0C:6D
X509v3 Authority Key Identifier:
keyid:62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/1vxD1pd34oRJxudUOf962Q7EDG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.204.0/22
Signature Algorithm: sha256WithRSAEncryption
69:5a:89:0e:98:60:c9:fe:55:b1:8c:cd:ef:3d:5b:8c:bb:82:
1a:2f:bc:34:22:f6:e1:69:ad:b0:2c:bd:e9:e6:9e:dc:9c:6a:
79:6e:57:6e:84:e0:8c:08:e7:69:6d:50:24:0c:f8:c1:55:08:
94:d3:77:59:12:d1:20:f9:f5:3c:fa:a1:70:69:83:a8:75:72:
4e:4a:f6:9e:b9:60:85:da:d2:33:3d:47:93:05:b0:47:70:89:
ed:d6:70:c5:2b:82:54:2d:fc:5f:c1:c0:b4:61:48:45:b1:11:
7d:43:b4:3b:b0:0b:f9:c9:c5:fd:43:44:14:95:e7:c2:7f:94:
ea:89:44:28:e1:5f:08:c8:15:56:3d:dd:89:d5:21:a6:63:6f:
55:db:59:87:78:c2:2f:6f:d5:ee:d2:02:a9:a4:bb:8a:33:19:
80:33:41:c4:bf:07:e5:d4:25:43:71:6a:e4:83:3f:f0:8d:70:
61:67:80:9d:04:0e:ce:06:0b:87:f0:31:49:98:92:90:61:fa:
c7:e4:6b:1b:eb:1c:76:38:2a:aa:ba:9a:63:0f:e7:9f:ed:40:
eb:7b:f7:78:8e:cf:2a:84:e4:07:8d:62:d9:9d:80:ca:99:3e:
06:3d:de:04:a8:37:ca:84:41:17:bb:35:5c:35:25:bd:89:01:
0e:a4:1d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:39 2024 by rpki-client on console-fra.rpki-client.org