Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/4w1Ed5WgUbPxsAaooZc4c60ck0Q.roa
File: 4w1Ed5WgUbPxsAaooZc4c60ck0Q.roa (raw, json)
Hash identifier: d6+VRLkAE4hMZ8jNM6+0VWx1+GyGsKaFBmf7ch0sKsI=
Subject key identifier: E3:0D:44:77:95:A0:51:B3:F1:B0:06:A8:A1:97:38:73:AD:1C:93:44
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14F86173E29A9F056B38E2FA77FB4D
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/4w1Ed5WgUbPxsAaooZc4c60ck0Q.roa
Signing time: Sun 01 Jan 2023 20:45:23 +0000
ROA not before: Sun 01 Jan 2023 20:45:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39081
IP address blocks: 85.120.55.0/24 maxlen: 24
85.120.56.0/24 maxlen: 24
85.120.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:f8:61:73:e2:9a:9f:05:6b:38:e2:fa:77:fb:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e30d447795a051b3f1b006a8a1973873ad1c9344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b0:dc:a0:00:82:e7:a8:0e:fe:2d:42:14:13:
eb:56:ab:29:dc:5c:a2:34:04:8d:90:76:4b:3b:7e:
3d:9b:f8:9f:47:92:04:91:ee:f6:8d:d8:6c:46:5f:
31:d8:7d:10:0c:2a:f6:4f:81:ae:b4:be:5c:00:0b:
15:0a:99:b3:09:9d:1a:d5:2c:c8:c0:aa:d2:87:f5:
99:ca:f0:ea:15:96:59:9c:87:49:c7:2c:23:ad:4b:
12:2e:a9:8f:2a:0e:47:b7:de:35:4e:0d:19:2b:b9:
41:36:68:d3:f2:20:fd:a0:1d:47:ed:54:c7:fc:88:
ce:6b:b9:36:7e:61:6d:93:13:84:ae:84:2c:ea:1e:
b7:96:59:7e:85:99:8c:8e:67:56:76:20:68:0f:df:
c0:d4:7a:1a:03:f0:a3:9c:fe:c6:a5:ee:4f:2f:e0:
d1:17:f9:7e:16:e0:27:b1:8b:9f:5e:6a:bc:ad:98:
cb:71:7a:4d:cd:c4:b7:3b:b5:3c:ef:06:dc:06:01:
50:5b:82:1f:1a:66:77:39:f8:bd:08:2e:e5:d1:5f:
89:00:0e:c3:d4:8b:83:6b:18:76:39:29:f4:46:b9:
ee:2a:c9:3e:f1:65:a6:68:6f:5d:2e:20:25:17:c0:
d0:87:46:c3:dc:89:7d:68:d9:c8:04:50:3a:69:59:
17:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:0D:44:77:95:A0:51:B3:F1:B0:06:A8:A1:97:38:73:AD:1C:93:44
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/4w1Ed5WgUbPxsAaooZc4c60ck0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.48.0/24
85.120.55.0-85.120.56.255
Signature Algorithm: sha256WithRSAEncryption
bf:5a:13:3a:08:68:80:43:be:cf:53:a4:bf:78:01:f6:0d:3c:
51:58:46:ee:14:b5:31:ad:c7:80:e6:fc:e0:06:a3:7d:e4:55:
1e:42:9b:88:29:d1:18:2f:df:f7:e6:0a:ba:5d:f4:54:a9:82:
48:94:8a:21:69:72:fb:23:c3:03:2f:c5:4a:22:e6:e6:e5:74:
6a:3e:6a:a2:7e:fe:c5:3d:f7:da:f6:5e:18:73:d2:2d:5e:9b:
31:c9:c4:86:e1:85:67:66:0a:49:34:e9:60:8c:5e:55:80:62:
94:99:91:01:0d:b3:b8:1d:bf:db:5a:3a:fd:89:5d:9e:5b:43:
2b:d3:83:f2:2d:34:88:68:d8:d3:0e:96:dd:aa:69:15:66:47:
a3:8d:12:71:15:cb:c7:07:d0:30:a9:00:53:d8:97:ff:67:56:
d4:80:32:64:e0:3f:81:c3:ba:2d:d5:18:e3:47:80:03:44:51:
ce:a6:ec:b0:28:ef:be:84:bd:77:8f:b8:76:7b:d6:a8:61:db:
8a:bc:b0:36:a9:2f:ac:55:bb:9e:85:6a:5c:28:35:57:13:b1:
79:43:ba:5c:93:ad:6c:14:48:4b:0a:3d:96:9d:05:c0:6d:bb:
22:05:17:20:08:c5:d8:bf:80:cf:cb:70:48:f6:fb:93:83:de:
fb:2b:70:93
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org