Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/hUQHzQJ7LUxEoRNn0qrDoyfmRGs.roa
File: hUQHzQJ7LUxEoRNn0qrDoyfmRGs.roa (raw, json)
Hash identifier: qN68Mis1h0/feL7/rtE/l8XUWAr2Qxw592Gt8TH25m4=
Subject key identifier: 85:44:07:CD:02:7B:2D:4C:44:A1:13:67:D2:AA:C3:A3:27:E6:44:6B
Certificate issuer: /CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Certificate serial: 018DAD1095EBCDF96573CD6C29E1ABACF351
Authority key identifier: D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/hUQHzQJ7LUxEoRNn0qrDoyfmRGs.roa
Signing time: Thu 15 Feb 2024 13:59:21 +0000
ROA not before: Thu 15 Feb 2024 13:59:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57017
IP address blocks: 185.85.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Apr 2024 10:22:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ad:10:95:eb:cd:f9:65:73:cd:6c:29:e1:ab:ac:f3:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Validity
Not Before: Feb 15 13:59:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=854407cd027b2d4c44a11367d2aac3a327e6446b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:71:e4:a1:ab:f1:ea:3e:9f:5b:c1:fc:33:4c:
48:06:ac:d5:d4:29:57:d2:d6:d5:db:de:28:d5:98:
4b:ae:bb:7a:d6:51:92:fa:43:b2:e1:4f:6e:ce:ca:
e4:8d:6e:dc:24:b8:60:b1:02:f3:60:2b:4c:1a:fa:
93:65:03:40:44:1c:91:eb:b7:e8:9c:9a:4e:9d:e1:
b6:c6:94:67:b4:e9:12:8f:2c:a0:2e:04:c1:85:f8:
3b:ce:c5:26:c3:f1:08:08:fe:5b:bd:fe:ce:04:32:
f1:a9:6c:63:4e:2d:f6:f2:19:c5:c8:00:f3:54:14:
14:9c:cf:c9:6d:74:ce:45:10:a6:03:0a:9d:4d:f5:
5d:7c:1c:de:48:78:ac:0f:61:c7:a0:cd:2e:73:97:
4f:88:5c:d4:40:71:31:4f:04:e6:1f:95:1f:66:06:
3f:c2:85:a7:d1:ae:fa:28:60:3b:73:3b:79:8a:e0:
e5:98:84:04:17:1d:db:62:2b:c2:97:b9:a5:62:ab:
1a:b3:db:89:6d:8e:aa:ae:2b:81:14:38:db:e0:4d:
1e:51:31:ab:67:5d:cc:84:c5:5a:1d:0b:09:22:c2:
91:78:54:a7:9e:e5:fd:50:49:51:ce:ee:73:3a:f8:
45:77:8e:2c:26:f4:70:37:18:df:37:cb:34:95:f4:
f7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:44:07:CD:02:7B:2D:4C:44:A1:13:67:D2:AA:C3:A3:27:E6:44:6B
X509v3 Authority Key Identifier:
keyid:D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/hUQHzQJ7LUxEoRNn0qrDoyfmRGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/0eAT7IpcVt8kGpslY9ER-OVDv5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.75.0/24
Signature Algorithm: sha256WithRSAEncryption
72:57:b2:3a:9e:cc:17:9e:a7:1e:d7:95:db:7b:87:0a:92:f2:
93:fc:1b:ae:d8:4c:3f:77:b7:61:a5:36:52:9b:a9:b2:e9:59:
3a:38:f3:12:8c:36:0d:a5:b7:b1:ce:b0:9e:fe:bd:a0:89:70:
da:81:6a:34:bb:d2:1c:ec:6d:24:73:5d:25:46:e2:98:3b:57:
2f:1e:3b:56:a6:a5:1c:10:23:15:3c:de:76:68:20:dd:11:d4:
0f:2b:07:17:24:83:3e:d8:fb:f9:9b:31:f5:cc:86:f4:70:29:
74:d3:01:1f:ea:3d:8c:44:36:45:20:24:79:37:38:f1:82:03:
1f:35:41:ec:d9:dd:ca:17:7d:1f:09:e9:25:63:8c:12:32:d3:
5a:23:a2:2e:3c:17:c0:fd:41:a3:83:5a:a3:36:1f:43:64:1e:
93:f5:82:60:19:b1:55:68:fd:af:bc:2b:8e:cb:d9:ca:c0:2b:
a8:45:82:93:fa:b0:1c:68:4c:af:7b:5c:65:6b:59:de:cd:88:
07:7d:8d:8f:b9:8f:68:42:0e:b8:0c:07:2d:f2:09:7b:ac:81:
69:43:44:04:11:cd:80:13:46:f1:c6:e5:50:3a:ae:33:dd:dc:
f2:a2:96:12:17:13:36:7f:b5:e2:20:41:53:6c:e0:9d:c3:d9:
5e:bb:ba:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:37 2024 by rpki-client on console-fra.rpki-client.org