Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/RBgWN6Hz4ttmvAEQ619x8_gAEz0.roa
File: RBgWN6Hz4ttmvAEQ619x8_gAEz0.roa (raw, json)
Hash identifier: DaB1G6GrRweuQ1cZhrb/fTIepB/vLz52z9STRisouh0=
Subject key identifier: 44:18:16:37:A1:F3:E2:DB:66:BC:01:10:EB:5F:71:F3:F8:00:13:3D
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 018EAE3CA74E20414257484D675EA9314CC1
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/RBgWN6Hz4ttmvAEQ619x8_gAEz0.roa
Signing time: Fri 05 Apr 2024 12:29:54 +0000
ROA not before: Fri 05 Apr 2024 12:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58212
IP address blocks: 85.117.243.0/24 maxlen: 24
185.236.11.0/24 maxlen: 24
192.144.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 19:10:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ae:3c:a7:4e:20:41:42:57:48:4d:67:5e:a9:31:4c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Apr 5 12:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44181637a1f3e2db66bc0110eb5f71f3f800133d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:15:c0:67:29:fa:69:29:16:d6:ea:ce:b0:a9:
cb:49:b5:75:7f:35:f3:94:ec:d7:dd:32:89:c7:f4:
0d:76:8b:24:b0:91:43:6c:66:8e:a6:04:9e:5b:71:
de:f7:15:eb:c6:fc:c7:50:42:3b:b1:c0:01:d5:0a:
79:1d:35:52:6c:d6:d7:ea:d2:c9:61:38:f0:8d:80:
80:20:4c:f1:21:aa:d4:1d:b9:6b:69:df:fe:a2:cc:
98:7c:24:a8:a2:ef:29:1c:74:d1:5b:5d:3f:26:57:
eb:36:6d:95:12:71:0f:a4:12:12:17:69:d1:f5:0d:
d7:bf:3b:a3:e4:27:d1:bd:44:c1:f8:c7:6b:0a:1f:
8a:56:e5:b4:f1:ad:fc:93:ad:67:c1:65:37:26:bc:
52:ac:ae:49:27:38:6c:aa:8c:9a:e2:5e:7d:c8:fa:
df:14:04:fb:0f:a2:db:1c:76:ae:e7:23:3e:c5:ba:
bf:27:b0:16:c2:3a:23:d7:22:a9:24:47:fa:19:3b:
95:90:67:f1:98:bf:d7:6e:36:62:25:c0:4d:f5:ac:
a7:36:87:ab:87:2c:87:1e:b7:01:fb:c7:c8:45:3c:
e9:d9:1f:e4:60:bd:d6:3a:58:f5:6f:d5:ab:d6:5d:
a6:f3:99:74:a1:4a:fa:48:3f:11:59:21:ad:19:32:
72:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:18:16:37:A1:F3:E2:DB:66:BC:01:10:EB:5F:71:F3:F8:00:13:3D
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/RBgWN6Hz4ttmvAEQ619x8_gAEz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.243.0/24
185.236.11.0/24
192.144.33.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:ba:8f:91:90:25:1d:e4:45:d6:19:65:23:98:8f:24:55:fe:
13:5a:4f:46:a1:5b:48:4b:1a:2c:d2:cc:5f:e2:48:5f:14:92:
c8:67:05:5d:ce:98:ee:cc:bf:d9:6c:15:ae:8a:c7:f4:4f:8b:
e5:74:b8:c4:dd:67:e0:91:c7:be:94:27:41:f1:e6:43:49:c0:
a0:55:85:52:99:d0:15:78:e5:ab:1c:e2:73:ae:48:73:94:a8:
69:06:13:dd:84:59:b5:61:03:d7:02:24:a7:15:c4:00:35:cd:
4c:b0:b7:2d:f6:d2:71:cd:94:6a:0c:3b:eb:67:8d:a0:90:fe:
bf:3f:e1:69:ee:f8:6b:5d:e7:80:2c:a2:b9:b2:b5:84:f2:75:
7d:21:32:10:a3:4c:e6:a9:22:8f:d0:3a:96:a8:f9:61:52:a5:
8f:c5:44:40:2c:53:07:69:03:08:e1:6e:2e:ce:24:49:ba:07:
17:d9:48:ba:10:22:99:1f:96:79:7e:fb:6c:95:21:e9:66:0f:
a3:ab:ea:ff:62:f9:c1:13:03:0c:76:7d:d2:2e:08:96:67:83:
26:99:b5:ff:d8:a8:53:f5:00:c1:d5:07:c2:f7:e5:db:7e:8d:
c5:90:35:eb:fa:86:c3:f4:d8:0d:34:74:34:14:84:e1:53:a5:
87:02:e7:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:36:40 2024 by rpki-client on console-ams.rpki-client.org