Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ALHTscZ9Veo7vMrsys9-kqnwsbk.roa
File: ALHTscZ9Veo7vMrsys9-kqnwsbk.roa (raw, json)
Hash identifier: B3hdk7oylxaGPKXH+1GmwMSfuTrbjZEO1b7eXWSfLYs=
Subject key identifier: 00:B1:D3:B1:C6:7D:55:EA:3B:BC:CA:EC:CA:CF:7E:92:A9:F0:B1:B9
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018EF6A7A83DFF0625B0E5E89F73666D6429
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ALHTscZ9Veo7vMrsys9-kqnwsbk.roa
Signing time: Fri 19 Apr 2024 13:59:26 +0000
ROA not before: Fri 19 Apr 2024 13:59:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44592
IP address blocks: 85.209.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 16:10:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f6:a7:a8:3d:ff:06:25:b0:e5:e8:9f:73:66:6d:64:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 19 13:59:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00b1d3b1c67d55ea3bbccaeccacf7e92a9f0b1b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:3f:59:ea:fb:e9:e6:31:66:22:b3:34:20:2b:
73:3e:39:e8:ad:68:cd:06:24:8d:c2:3a:af:10:bf:
52:fa:fc:86:21:2e:86:ed:8a:e0:cc:0c:2c:eb:8e:
a1:a0:ff:7f:f5:7d:ed:5a:f1:16:ec:97:fd:81:92:
25:cf:65:b0:87:b9:66:3a:f8:0b:41:3d:38:6f:56:
48:3c:b7:b6:9c:fe:32:ac:eb:d7:f2:35:c1:ea:1f:
a8:ba:bd:5e:9f:32:2d:75:a4:ca:52:78:7a:cc:ee:
25:eb:38:51:19:ef:e0:24:45:32:b3:df:ac:f3:6b:
cf:c9:2f:a1:f8:1c:42:e1:50:98:ee:4f:4f:4c:8f:
2d:d7:0e:01:82:db:ac:76:ed:74:ef:8d:04:3e:73:
fa:10:f1:52:00:49:4a:12:c2:e7:f1:aa:24:49:7d:
32:ab:42:fa:c5:4f:d4:a1:a3:1e:d7:68:b0:1d:cd:
bf:95:c5:cb:5d:9b:ef:3b:81:a4:51:e2:a6:ae:ad:
da:83:73:6a:ae:85:2c:84:61:a7:91:1b:b6:ff:56:
ae:f7:bd:42:63:3b:1e:0f:1c:9e:3e:ae:5a:94:f6:
04:10:4b:d1:78:c7:bb:f1:75:72:77:bc:5e:d1:a9:
91:95:f5:05:24:a8:51:2a:75:b4:42:df:38:88:08:
33:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B1:D3:B1:C6:7D:55:EA:3B:BC:CA:EC:CA:CF:7E:92:A9:F0:B1:B9
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ALHTscZ9Veo7vMrsys9-kqnwsbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.133.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c2:11:3a:3c:b7:73:6d:64:ee:ba:1f:0d:7a:6c:0c:4d:4c:
95:0d:a7:a3:95:0e:5e:95:0e:e4:ad:99:08:b6:c1:e4:cd:1b:
94:94:f3:67:3a:f7:da:3b:89:f1:88:07:d1:29:7e:2c:25:50:
fe:d3:5e:d4:95:cc:c1:14:9d:d5:fe:90:6f:ef:85:e2:03:68:
e0:05:e2:83:c3:d4:1b:ad:8f:11:5d:5d:25:10:ea:65:2b:78:
f3:b0:7b:5f:f9:51:f1:e4:b8:e2:19:e3:a3:a7:ca:c4:5f:2b:
37:53:d5:f0:2c:1b:2c:8e:9e:8c:e8:86:5d:0d:f2:90:74:6e:
8c:eb:15:75:31:32:83:7f:98:cc:cb:7a:3f:80:d4:a4:71:02:
b7:61:a6:69:59:e2:55:81:af:1a:e4:52:2f:a9:51:c6:6a:aa:
18:39:eb:2a:ab:8b:5c:38:b9:45:2c:37:b5:d0:86:ae:dd:a2:
b8:1c:54:69:61:04:dd:80:dc:5e:23:0b:c1:b1:33:18:f5:96:
50:38:23:dd:3c:0c:f0:d5:58:2b:1f:ab:9c:4a:e8:c9:38:72:
2e:94:09:9d:aa:f8:f3:4a:ce:5e:91:65:7b:18:eb:f3:28:35:
9e:b7:05:b1:ed:f1:a7:1c:ee:f6:12:97:ab:a8:3e:66:99:d6:
24:96:64:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:26 2024 by rpki-client on console-ams.rpki-client.org