Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/8S51t2wX5xLpKzzK4urM-WjWIvI.roa
File: 8S51t2wX5xLpKzzK4urM-WjWIvI.roa (raw, json)
Hash identifier: ZN2uPGkPlUIOgYtg7Hte70/VEgsKWPxRSux7Qj4PoLQ=
Subject key identifier: F1:2E:75:B7:6C:17:E7:12:E9:2B:3C:CA:E2:EA:CC:F9:68:D6:22:F2
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018CC6B931EB96314272D7AF578650AB4F83
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/8S51t2wX5xLpKzzK4urM-WjWIvI.roa
Signing time: Mon 01 Jan 2024 20:31:14 +0000
ROA not before: Mon 01 Jan 2024 20:31:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35080
IP address blocks: 85.119.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jan 2024 14:08:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:31:eb:96:31:42:72:d7:af:57:86:50:ab:4f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 20:31:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f12e75b76c17e712e92b3ccae2eaccf968d622f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:40:d7:d4:2a:15:94:4e:ac:11:13:dc:e1:2b:
cf:00:ea:f5:03:1f:d9:56:df:ee:a2:12:b3:58:b5:
95:b3:87:fe:f0:d0:36:df:ce:f8:79:88:51:79:66:
49:0a:9d:b9:c1:61:2f:3c:ed:cf:da:27:61:3d:96:
3c:36:db:0a:d7:14:bb:f1:0d:65:65:65:2a:27:75:
ec:38:d9:a5:9f:6c:21:c5:3f:33:32:f1:f0:3f:e0:
3b:aa:7d:e6:ac:3e:15:a3:f1:cd:2f:f4:7d:f1:60:
b6:98:a3:2d:e3:11:80:a9:22:c0:ee:c3:49:59:14:
e6:fd:e8:e8:e9:4b:75:0b:0e:86:8f:59:c5:70:4e:
2d:ca:94:b4:80:4c:ec:a8:c9:6d:02:ff:d3:54:12:
01:1f:b0:31:ec:99:71:55:c9:a7:17:a6:8b:ca:f8:
5c:d3:80:a1:80:02:63:fa:40:3e:43:92:9c:de:eb:
e4:e3:c8:6d:ba:1f:c0:5b:51:ff:8d:8f:33:a8:a3:
34:8a:6d:0e:93:84:a6:eb:c9:c9:ef:dd:dc:ca:fd:
d7:87:5a:45:4f:ab:cc:be:be:b8:3c:8d:80:84:56:
8f:af:72:b2:a4:4b:ba:86:b8:2f:57:df:da:75:9b:
91:fa:8c:3e:57:6c:10:00:b2:ab:40:7e:3f:53:d9:
03:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:2E:75:B7:6C:17:E7:12:E9:2B:3C:CA:E2:EA:CC:F9:68:D6:22:F2
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/8S51t2wX5xLpKzzK4urM-WjWIvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.119.71.0/24
Signature Algorithm: sha256WithRSAEncryption
89:1b:09:84:45:82:63:9b:bb:d5:f6:00:da:36:6b:8a:18:ea:
f2:e3:28:ac:55:2c:15:fe:5f:54:e0:4b:41:36:f0:cb:9c:38:
eb:ed:a4:25:a0:aa:76:2d:6e:32:2d:29:74:a7:e7:62:ca:d7:
7d:70:4a:bf:58:54:a3:1c:74:24:82:02:e4:ef:3c:b3:ef:ae:
b0:af:d1:af:70:96:83:d9:40:98:75:1b:6b:a6:78:78:08:74:
f2:a7:65:25:9c:17:f5:9e:6d:7f:11:0c:3c:5f:9e:27:b8:66:
b9:61:b9:9a:67:3c:f7:f7:9c:14:3f:57:3f:80:60:27:2b:d0:
e6:32:b2:9d:43:2d:8e:16:d2:d2:20:1d:9c:9d:42:ae:3c:e9:
29:87:4e:84:ee:97:75:0c:8c:8c:ab:b8:d6:ee:19:21:80:fe:
a7:ed:77:8d:28:20:09:86:80:f7:b2:1f:9f:8e:e8:52:fc:cd:
46:d5:38:ec:35:0d:03:18:8a:09:78:fe:8b:93:cd:b1:2b:34:
ff:b2:ec:4b:e0:a5:9b:57:cb:60:ee:59:83:2b:82:da:2f:57:
e8:98:7f:6d:9f:16:98:c6:0a:fb:c5:68:9a:38:a2:ec:a2:82:
8b:9e:23:56:a2:c7:5f:44:2e:21:11:9a:d1:06:66:af:77:55:
44:5e:8a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org