Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AOJcDQwSWBotC6qiCkWKvQtLlmg.roa
File: AOJcDQwSWBotC6qiCkWKvQtLlmg.roa (raw, json)
Hash identifier: O4RGzipKwviChi4mCO5FBKS4fwPMprRoGn2oXk4NwGI=
Subject key identifier: 00:E2:5C:0D:0C:12:58:1A:2D:0B:AA:A2:0A:45:8A:BD:0B:4B:96:68
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018F0F6D41237D1EE026D50C9F17B9227444
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AOJcDQwSWBotC6qiCkWKvQtLlmg.roa
Signing time: Wed 24 Apr 2024 09:26:09 +0000
ROA not before: Wed 24 Apr 2024 09:26:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399486
IP address blocks: 85.209.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 14:44:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0f:6d:41:23:7d:1e:e0:26:d5:0c:9f:17:b9:22:74:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 24 09:26:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00e25c0d0c12581a2d0baaa20a458abd0b4b9668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:66:75:f2:30:f1:8d:d1:81:62:2a:51:43:56:
2c:68:db:78:9a:14:1d:04:5e:45:e4:5b:f0:b1:16:
64:2a:db:78:a5:19:6f:b9:9b:96:39:0c:ef:01:f6:
90:c9:8b:61:91:f9:16:f1:c1:c1:02:62:cf:aa:8b:
4e:65:62:91:8e:36:2b:e5:9d:6d:b8:0a:00:6d:17:
e3:1d:c3:e0:29:bd:5d:6c:75:89:44:a3:5a:7e:d3:
cf:02:6a:9e:cf:d8:e6:68:bd:a1:ee:57:39:cc:8a:
b7:85:2c:b4:34:cb:2c:28:69:aa:e0:ab:4e:5e:28:
75:cd:52:87:8c:cd:75:08:b4:b6:5d:7d:5a:71:43:
8c:18:04:cd:0d:08:aa:d1:f4:e4:e1:b9:c5:2c:6c:
b0:1a:7c:03:be:e4:e5:25:a5:0d:70:cd:2c:84:03:
21:33:4c:e0:11:36:f6:56:a2:89:b6:e2:fe:7e:e4:
ad:96:ed:b6:a2:c6:59:d7:ab:3a:fd:94:d8:a8:1c:
f5:06:ff:16:4b:7c:09:06:8e:37:26:d9:8f:c8:57:
c3:e0:0d:ef:04:7d:3a:47:d9:4b:1e:57:5d:4e:08:
a4:b2:9a:f9:d9:a4:31:aa:68:2d:71:7d:5a:f8:73:
1f:e2:8c:7d:78:2c:b4:be:0b:29:51:6e:95:58:f8:
d8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E2:5C:0D:0C:12:58:1A:2D:0B:AA:A2:0A:45:8A:BD:0B:4B:96:68
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AOJcDQwSWBotC6qiCkWKvQtLlmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.133.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:30:7f:03:b7:ba:57:b8:cf:51:3b:8d:5f:e4:b5:b4:b9:f6:
2f:c3:b6:1b:eb:4f:c7:6c:28:74:61:57:7e:30:75:92:a8:3c:
d2:f7:0d:49:0a:a1:97:4f:09:47:16:93:8c:6f:bc:c0:16:3c:
6c:9a:05:01:08:cc:d4:c9:72:f0:95:1f:f3:d1:a7:7c:ee:1d:
44:cd:73:c0:ff:d8:79:78:a4:69:7c:1b:08:61:cd:10:07:b2:
e0:ae:0b:75:e2:dd:3f:c7:c6:cc:28:10:86:cd:31:0e:4c:a3:
65:6b:46:4f:16:0f:8f:66:96:ae:8a:d5:20:b1:af:f7:67:b4:
49:64:b1:7e:16:c2:98:e5:60:cd:31:d3:ea:af:41:f3:a7:05:
45:85:ad:81:6b:db:fd:15:c4:b6:11:e1:e2:1e:3c:27:1d:c2:
72:45:d5:13:e1:f9:79:4d:d2:a2:0a:8e:46:9a:fb:42:52:c6:
22:47:42:01:4f:04:23:12:74:5d:9b:50:e9:f0:76:3e:ca:b8:
6a:7e:55:e1:37:bb:6e:f6:79:ff:8a:12:ad:ce:0c:94:5c:40:
39:ce:d9:0f:74:61:09:41:6a:27:64:c9:a8:d6:b2:cd:c5:45:
40:46:70:66:c6:78:40:ee:35:da:0a:e3:e2:45:a3:4c:ee:d7:
a8:19:3d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:26 2024 by rpki-client on console-ams.rpki-client.org