Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/m3z0kxNmpr38vY_3hl6xHB0VIGg.roa
File: m3z0kxNmpr38vY_3hl6xHB0VIGg.roa (raw, json)
Hash identifier: 1KTFtdkSEM53A2ZuATrTx0QLGi37FptEBugk1FBn0+o=
Subject key identifier: 9B:7C:F4:93:13:66:A6:BD:FC:BD:8F:F7:86:5E:B1:1C:1D:15:20:68
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 018CC56E37B0D1272F62F0DBC38A81EE5768
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/m3z0kxNmpr38vY_3hl6xHB0VIGg.roa
Signing time: Mon 01 Jan 2024 14:29:43 +0000
ROA not before: Mon 01 Jan 2024 14:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 85.237.80.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 31 Jan 2024 10:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:37:b0:d1:27:2f:62:f0:db:c3:8a:81:ee:57:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jan 1 14:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b7cf4931366a6bdfcbd8ff7865eb11c1d152068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d9:aa:ee:7d:b1:41:7e:d7:d3:c8:a9:99:ef:
ee:15:21:5f:cc:02:17:7a:87:ab:71:35:7b:a0:df:
7a:28:45:9d:13:c5:62:78:e6:a1:2b:1a:63:1c:4e:
b3:e8:21:f3:04:f5:27:2f:82:24:05:99:0b:44:ed:
a1:25:00:66:f3:24:e2:29:a1:91:05:7a:e6:54:db:
1e:ae:40:d1:92:eb:a0:cb:72:18:da:5b:15:f4:10:
dc:95:1a:de:5d:de:0e:c1:31:59:2d:b0:92:60:e6:
1e:05:fb:2b:e4:8e:93:6c:69:ad:6c:06:da:f3:da:
49:e6:bc:4b:11:86:4c:5f:7d:fd:42:69:74:c8:bb:
a2:ff:b1:ff:8d:05:f2:02:0e:fb:99:a2:dc:10:2f:
e5:dd:74:9a:47:d9:7a:7c:5a:6d:3c:35:d8:ab:dd:
5c:2a:13:b1:3b:30:11:8b:85:f2:fd:b8:f7:b5:d6:
c1:52:21:af:e7:91:e7:ed:4b:39:05:a1:d3:62:5c:
08:91:06:8c:51:95:39:d3:bf:11:c3:36:4e:a7:7a:
35:f7:ad:de:14:14:ec:29:5e:d1:a6:9c:b8:8b:f2:
35:52:b4:60:6c:6d:ea:b4:d0:a6:36:da:a6:ba:61:
9c:c9:8f:a4:32:f5:c2:d7:31:b0:bf:38:e8:ee:3a:
12:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7C:F4:93:13:66:A6:BD:FC:BD:8F:F7:86:5E:B1:1C:1D:15:20:68
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/m3z0kxNmpr38vY_3hl6xHB0VIGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.80.0/22
Signature Algorithm: sha256WithRSAEncryption
41:ed:f1:03:1f:22:fc:b0:33:12:fa:e7:d7:b1:ce:5d:67:5c:
18:e1:c9:24:4b:62:bb:27:c3:ac:79:ba:b9:f0:56:e5:84:9d:
84:0a:70:eb:e8:49:af:19:cc:16:91:8e:fb:3c:59:b1:2f:bb:
47:5b:38:c2:72:57:5e:f0:9c:19:b4:b6:54:b9:ca:c3:0b:08:
25:c5:35:d2:75:43:97:f6:cf:f5:72:20:1f:a0:a8:66:fc:66:
33:6b:98:bd:e1:23:68:9f:4a:ba:64:70:58:aa:ab:a7:27:bb:
e2:55:3a:3e:54:b0:72:9d:3f:ba:ef:23:31:cd:c7:3f:32:dd:
a2:ca:6a:0e:39:90:50:e7:92:98:2a:1a:3b:2f:23:6e:b4:92:
ba:f1:c6:fc:7e:fa:6e:07:ab:52:3d:dc:1f:b4:40:9d:06:0f:
be:b7:38:de:b7:9e:1a:0c:7a:21:0c:13:7d:1f:75:08:5f:be:
f5:2f:92:01:78:5c:eb:1c:a7:de:fa:44:b1:03:52:ef:31:48:
b8:84:a4:e1:86:94:55:ce:24:af:a6:9f:fa:13:74:5b:a7:6a:
a6:16:33:42:bd:79:01:10:20:e4:84:33:a3:e6:12:7b:16:af:
16:c3:39:6c:33:9f:18:91:b6:0d:b0:a5:38:5f:51:30:32:88:
5a:f2:ca:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org