Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/1-UWaUKeKJW1kpjv1ZhDm3JJr7SI.roa
File: 1-UWaUKeKJW1kpjv1ZhDm3JJr7SI.roa (raw, json)
Hash identifier: tGD96s1p4V6dbtaEoU5QbJq/M0hhjyKUeie00Qmo+1M=
Subject key identifier: F9:45:9A:50:A7:8A:25:6D:64:A6:3B:F5:66:10:E6:DC:92:6B:ED:22
Certificate issuer: /CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Certificate serial: 01856D417573C36EBC2B622EFBC5CE570EAD
Authority key identifier: D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/1-UWaUKeKJW1kpjv1ZhDm3JJr7SI.roa
Signing time: Sun 01 Jan 2023 12:14:44 +0000
ROA not before: Sun 01 Jan 2023 12:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.85.74.0/24 maxlen: 24
185.85.72.0/24 maxlen: 24
185.85.75.0/24 maxlen: 24
185.85.73.0/24 maxlen: 24
2a05:abc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 31 Aug 2023 11:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:75:73:c3:6e:bc:2b:62:2e:fb:c5:ce:57:0e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Validity
Not Before: Jan 1 12:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9459a50a78a256d64a63bf56610e6dc926bed22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ac:2f:ba:0e:78:3d:b1:67:64:7a:a2:41:cc:
c9:07:1f:f6:2a:c1:40:1c:47:76:72:5d:f1:de:51:
84:ae:26:a9:0b:28:a0:63:3e:7c:18:5f:4a:47:44:
72:d6:99:3d:b1:d8:5f:37:ee:33:d1:3b:10:f5:0f:
17:4d:d2:a2:be:a5:8e:0e:9d:1b:f1:ab:43:62:a0:
c3:b2:7c:ec:79:29:74:a1:bc:81:f9:d4:e8:8b:20:
9f:ed:8a:0c:35:c2:44:f7:a3:46:14:d2:0b:30:0b:
18:0c:87:c9:ae:60:2d:c8:ad:5e:26:6d:6f:67:b9:
de:12:19:b0:a3:24:73:34:1d:1c:e7:b3:a0:58:87:
db:6d:f5:b5:c3:3f:7f:ef:29:f5:4c:7e:52:da:a8:
ef:b5:5e:45:c0:7a:63:73:a4:9d:db:33:8c:fa:99:
15:f4:6c:4b:f5:e8:6d:84:68:64:92:4a:c8:b2:56:
3e:8e:12:ab:6b:cc:f3:ea:14:2c:42:38:7f:3d:80:
01:cc:d8:10:d5:5b:3b:f5:e4:14:79:d4:d6:d6:33:
26:e3:83:5b:0e:67:c9:58:8c:83:54:2f:c1:e0:4b:
6d:f8:04:8b:af:3f:e3:3e:c5:42:89:1e:e6:ec:9f:
81:f5:c7:f2:cd:dc:be:e5:14:7a:04:09:5a:64:8e:
9f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:45:9A:50:A7:8A:25:6D:64:A6:3B:F5:66:10:E6:DC:92:6B:ED:22
X509v3 Authority Key Identifier:
keyid:D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/1-UWaUKeKJW1kpjv1ZhDm3JJr7SI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/0eAT7IpcVt8kGpslY9ER-OVDv5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.72.0/22
IPv6:
2a05:abc0::/29
Signature Algorithm: sha256WithRSAEncryption
57:fa:07:b1:4a:f9:26:52:8e:bc:bb:01:01:3f:b0:f4:c8:e1:
d8:8a:52:15:51:3a:d4:d0:f8:be:15:b4:ad:53:c7:37:8e:28:
2f:87:2b:34:e1:c5:b1:7c:2e:4a:e8:21:26:84:45:f8:b0:20:
c1:af:cb:18:10:1a:f2:73:02:48:98:c6:ee:20:00:22:29:48:
d4:03:b2:fd:40:14:0f:57:04:36:de:a3:ec:48:48:d0:0e:ca:
8d:7c:91:c0:ee:54:d6:38:30:e4:a2:f2:85:4a:43:24:5b:25:
31:12:65:1a:db:39:42:a3:d2:b0:52:ca:6e:b5:df:c5:98:7b:
bc:6d:08:19:26:3a:45:e7:88:a1:40:8e:fa:99:72:ad:c9:bb:
76:75:cc:51:bd:bf:d0:a3:e8:c4:75:47:06:d6:e0:ed:75:8f:
60:dc:1a:bc:a5:fd:15:41:58:8d:ea:cd:31:5c:89:dc:65:80:
d8:f6:7c:df:e0:57:d1:dd:5b:46:13:2d:32:31:b8:6e:7c:d3:
86:82:16:28:a9:40:fb:38:85:84:5b:49:e5:9d:4a:b4:7d:ad:
87:1a:04:1c:ae:2f:3e:15:79:ac:50:24:b3:30:67:08:69:6d:
27:14:39:74:73:fb:20:cf:14:cb:7d:2b:49:0f:02:c2:3e:95:
16:67:a6:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:38 2024 by rpki-client on console-ams.rpki-client.org