Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/9zM26VN249YZdLSNKD8xyiWnBDI.roa
File: 9zM26VN249YZdLSNKD8xyiWnBDI.roa (raw, json)
Hash identifier: XkPZTOCDnLR0R/Hh0hAsFvxS2gHikS8KVCeYAkayGMo=
Subject key identifier: F7:33:36:E9:53:76:E3:D6:19:74:B4:8D:28:3F:31:CA:25:A7:04:32
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14FCB3A2A8C25AC87BE6CF59C03DAD
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/9zM26VN249YZdLSNKD8xyiWnBDI.roa
Signing time: Sun 01 Jan 2023 20:45:24 +0000
ROA not before: Sun 01 Jan 2023 20:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44106
IP address blocks: 85.121.56.0/24 maxlen: 24
85.121.200.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:fc:b3:a2:a8:c2:5a:c8:7b:e6:cf:59:c0:3d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f73336e95376e3d61974b48d283f31ca25a70432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:45:3d:13:c4:0b:d2:4c:98:a8:a5:76:ec:2b:
22:4d:31:45:0e:aa:52:92:47:13:8a:3c:46:a2:dd:
6e:d1:bd:51:bc:52:a9:0a:28:58:aa:30:9b:24:4d:
89:3f:bd:82:cc:5a:fe:45:e8:c9:d9:d6:92:0f:17:
5a:5b:62:8c:e7:bc:3c:88:39:55:d3:d9:c7:02:0e:
5b:1b:7f:2c:48:7a:19:24:be:d5:e8:8f:04:b6:d8:
1e:56:64:2b:6e:b6:7f:27:b0:7c:21:73:b7:70:b3:
42:4f:b6:aa:bf:2e:af:91:76:8d:db:4a:9d:9d:c7:
1c:1a:01:a5:ff:f9:4c:2a:eb:4c:56:e5:bc:c5:61:
e3:52:08:83:4e:a1:28:a9:a7:a0:1a:09:4a:08:1d:
28:61:f9:29:04:66:3a:d1:b1:79:55:20:ae:11:f4:
a6:51:52:89:2e:9d:97:35:68:51:b9:0f:d2:f3:84:
75:62:a4:51:9f:b6:cb:c1:e9:6d:91:5d:4a:00:b9:
8d:dc:78:36:bd:03:37:8c:bc:f0:f2:3e:fb:98:c5:
ca:37:55:7c:13:42:04:5b:f3:0d:0f:e9:a4:68:42:
30:7f:99:d4:8e:e7:a2:11:30:b1:f2:74:e0:98:03:
ab:b0:88:5e:7c:ae:b4:cc:88:14:d9:58:87:e8:1c:
2e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:33:36:E9:53:76:E3:D6:19:74:B4:8D:28:3F:31:CA:25:A7:04:32
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/9zM26VN249YZdLSNKD8xyiWnBDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.121.56.0/24
85.121.200.0/22
Signature Algorithm: sha256WithRSAEncryption
93:3f:7a:d2:71:e8:b5:c2:ea:0e:b1:1b:1f:99:e9:b7:3d:ed:
6f:83:80:f9:09:93:19:f7:76:16:a3:37:ee:9e:be:72:7a:16:
6a:b6:ec:aa:7c:33:a9:37:66:f7:fe:de:73:bc:b4:da:4e:f1:
11:79:b0:d5:0d:02:c5:60:76:f6:33:db:0a:f7:e4:bf:72:cb:
fc:49:51:c8:93:1c:60:0e:2d:89:ce:f2:c7:29:18:0e:0b:58:
08:c0:f8:22:2a:52:a0:4f:80:52:ff:0d:14:7b:87:53:1a:2c:
09:83:9c:77:a5:26:39:1e:94:2c:88:58:db:5f:95:98:b6:c1:
2b:8f:67:1a:a2:13:1b:9a:9f:01:df:6c:7e:7a:a6:32:45:6f:
98:6d:61:0d:7f:06:84:d0:dd:b6:92:c5:06:05:f6:13:18:7f:
26:26:ec:a0:d5:6a:18:82:ad:dc:29:9a:3b:21:00:54:ae:5a:
4e:37:01:ec:4b:9d:8c:37:6f:3b:91:c6:af:8b:10:8a:d0:36:
c6:dd:55:e5:d7:9f:25:26:0d:1a:ec:a1:87:ef:cf:1c:95:33:
f0:ae:49:2b:5d:4f:2f:02:f9:98:86:4a:39:83:72:24:0c:4b:
ff:3b:b0:2d:c8:01:3d:62:08:3a:c1:f4:ee:c2:c2:93:81:48:
ef:ff:dc:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org