Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/usHH1dj4NBMOyP8fObewwudYsb8.roa
File: usHH1dj4NBMOyP8fObewwudYsb8.roa (raw, json)
Hash identifier: ZGgegM90CkpOQb9QZIZpyGpdDvS1tPMdb0WoME3RkPU=
Subject key identifier: BA:C1:C7:D5:D8:F8:34:13:0E:C8:FF:1F:39:B7:B0:C2:E7:58:B1:BF
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 018A6B66809ADE0547E1A732E029C5F4F66E
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/usHH1dj4NBMOyP8fObewwudYsb8.roa
Signing time: Wed 06 Sep 2023 16:49:54 +0000
ROA not before: Wed 06 Sep 2023 16:49:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26042
IP address blocks: 85.239.44.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6b:66:80:9a:de:05:47:e1:a7:32:e0:29:c5:f4:f6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Sep 6 16:49:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bac1c7d5d8f834130ec8ff1f39b7b0c2e758b1bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:12:ef:1a:50:71:66:be:4a:72:36:16:0e:9d:
3b:ce:34:0e:ea:a6:e9:64:ab:d4:70:a1:81:e0:57:
c9:ea:39:48:9b:e4:4c:de:2e:69:6a:2d:b8:eb:3c:
ea:33:1d:a6:21:ff:43:08:33:c1:8d:cf:d6:c3:1c:
6f:1d:85:4b:36:ff:3f:79:42:b9:98:e0:6a:9b:63:
d1:e1:5d:11:3d:0b:0a:31:bf:0f:77:3c:76:81:43:
80:6b:a5:c5:a2:14:39:82:ee:8b:de:9b:ca:7d:77:
02:90:e8:8a:27:6f:ce:28:a3:e8:30:e9:28:49:ad:
a1:0a:a3:eb:ae:e3:cc:b6:56:dd:08:d6:6b:34:86:
9b:d0:74:bc:32:31:54:42:48:41:83:43:28:a3:13:
89:69:dd:e3:79:4a:2e:02:53:a9:58:e6:cf:79:6c:
f3:22:cc:0d:59:8a:25:62:77:9e:88:32:0b:36:f1:
82:49:aa:66:7c:44:47:8c:66:0d:39:41:89:83:b1:
ee:49:bc:c8:d4:0c:4c:fc:b7:ee:db:d7:8d:bb:ec:
77:14:7f:91:08:1f:dd:ba:c9:a9:cd:1d:d4:56:f3:
95:45:f1:4b:e0:fa:e9:0f:51:58:bb:d4:49:9a:3b:
ad:44:b3:e4:d0:65:f1:33:1d:69:84:7e:01:e1:1b:
a8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C1:C7:D5:D8:F8:34:13:0E:C8:FF:1F:39:B7:B0:C2:E7:58:B1:BF
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/usHH1dj4NBMOyP8fObewwudYsb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.44.0/22
Signature Algorithm: sha256WithRSAEncryption
06:c2:f0:79:fa:4a:5e:a5:eb:de:e8:3d:ae:fa:5f:f5:97:28:
43:d2:65:35:1d:2d:1f:73:fe:91:ee:87:da:1d:e0:4e:19:8e:
bc:da:ee:bf:39:87:11:47:d2:12:9d:ae:80:74:e2:f8:8d:cf:
ac:61:ea:76:16:20:82:40:91:a0:9a:95:ce:47:7b:34:50:05:
e7:2c:7d:99:2c:3b:e8:21:a9:47:db:ce:90:a6:d7:be:f4:38:
63:53:b0:a9:85:91:1b:3d:73:9f:87:07:6c:a8:c7:67:e4:c9:
12:ee:1a:b6:4b:5f:e4:91:34:0f:6f:be:86:e3:37:16:92:f8:
1a:a5:17:6b:76:07:f2:90:99:e2:56:e5:25:54:82:74:65:b4:
da:0b:07:c4:71:88:93:92:ac:17:a9:a4:55:c2:45:af:fc:f3:
78:57:57:fd:29:1c:7a:e0:ce:93:5b:e8:cd:ea:13:c0:42:69:
bf:28:47:85:db:94:da:93:92:75:12:fc:d4:9f:dd:31:98:62:
ce:65:55:7f:d8:ea:67:0b:be:c0:67:66:83:e0:e4:fb:54:a2:
52:5b:da:c5:a1:85:95:e2:12:88:bb:71:ab:8e:9f:dd:28:69:
57:21:3b:47:90:a5:80:fa:61:77:bb:9f:9d:e5:48:21:95:e3:
d5:8f:96:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:28 2024 by rpki-client on console-ams.rpki-client.org