Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/B0RGjoHZoaO5jTlz4IHG43cuNjE.roa
File: B0RGjoHZoaO5jTlz4IHG43cuNjE.roa (raw, json)
Hash identifier: BNMzHA07tVlpLTBQdVNtC6hB7IBN3PZRkFGoo4NK3ns=
Subject key identifier: 07:44:46:8E:81:D9:A1:A3:B9:8D:39:73:E0:81:C6:E3:77:2E:36:31
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 018572310A490D962208A40EF2C066926273
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/B0RGjoHZoaO5jTlz4IHG43cuNjE.roa
Signing time: Mon 02 Jan 2023 11:14:54 +0000
ROA not before: Mon 02 Jan 2023 11:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3214
IP address blocks: 85.237.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 11:03:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:0a:49:0d:96:22:08:a4:0e:f2:c0:66:92:62:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jan 2 11:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0744468e81d9a1a3b98d3973e081c6e3772e3631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4d:ab:8c:7c:b4:a7:3b:b1:3a:79:12:75:b8:
9f:a2:6a:6a:46:df:5f:ff:54:92:48:1f:0a:0c:81:
f6:3f:bf:2b:d6:68:8b:41:24:4c:b8:88:46:70:8b:
3a:3f:6a:b0:80:1e:ce:6d:45:31:f0:e4:0d:a8:34:
f4:31:b9:cd:32:40:0d:6f:a1:80:24:3b:95:9d:26:
48:51:fe:fa:89:7f:56:f7:b6:2c:5a:93:08:23:0e:
47:ab:34:24:bb:22:b5:fa:2a:c3:bf:cf:b2:ff:dc:
b5:e9:ef:56:62:57:37:41:5f:79:b2:61:2a:02:57:
42:bd:43:c7:6d:07:da:07:36:64:26:4d:0b:7f:30:
b2:5e:b3:f7:1c:94:62:73:a9:59:58:6d:b9:4d:0a:
59:18:95:a9:50:93:89:0e:97:2c:be:bd:e4:79:16:
4d:52:26:5c:6d:38:de:22:a0:60:92:0b:fe:79:17:
20:15:5d:9f:7d:06:c6:0d:5d:3e:bf:77:9d:c6:bd:
11:1c:ed:a5:50:7b:0f:57:67:03:66:8c:cc:23:4c:
be:07:cb:0a:5f:8b:86:16:58:c6:0a:cc:08:1b:e5:
40:7f:b9:8e:88:00:1b:e4:10:76:14:52:86:f1:e8:
97:52:49:52:f7:4d:3f:c0:60:25:20:84:1b:3d:0c:
a7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:44:46:8E:81:D9:A1:A3:B9:8D:39:73:E0:81:C6:E3:77:2E:36:31
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/B0RGjoHZoaO5jTlz4IHG43cuNjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.72.0/21
Signature Algorithm: sha256WithRSAEncryption
64:43:3f:78:e4:a9:fc:47:9f:0c:a9:5e:9d:0c:12:da:86:c6:
19:92:6b:9a:98:01:b6:7f:33:1e:25:dd:4e:36:fd:bc:2a:b5:
5e:85:60:c2:fb:82:17:4a:e4:8a:56:e4:a7:ae:2d:04:33:54:
b9:69:19:a4:8b:19:f5:67:e5:31:85:44:f9:ce:ec:93:a1:c3:
04:e8:dd:f4:05:df:8f:fb:d5:18:06:3a:92:60:e2:82:2e:26:
2d:e0:74:7f:86:f6:82:51:4d:eb:d1:a9:88:61:63:4b:97:f6:
38:76:6b:73:ac:03:48:78:32:b1:8a:9c:d9:e6:68:83:d4:7f:
78:ff:a2:fb:be:e5:6b:8d:71:df:a0:80:ff:b1:d2:a9:fc:fb:
69:d8:9b:f0:98:a2:2f:c6:81:f3:00:7d:3b:74:f4:32:fc:ff:
6a:1a:ef:e6:aa:1c:bb:84:16:8f:63:74:e6:5a:c4:05:94:f7:
fc:d1:ae:a4:12:6e:74:11:94:e3:f3:9a:f6:b8:86:89:56:9e:
04:10:45:45:7d:5f:66:ec:62:04:be:4d:bc:a2:13:f9:da:6d:
1e:47:a7:fd:7a:68:ec:f0:30:d1:a0:d6:ee:28:13:d8:3e:8b:
ed:17:97:e6:ed:d9:cb:4f:a2:3a:15:3c:bc:33:9b:09:d7:89:
c1:03:a4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org