Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/3J5TmGeafk0XHkP1qq763prCi3o.roa
File: 3J5TmGeafk0XHkP1qq763prCi3o.roa (raw, json)
Hash identifier: jBe6s+bWGAl7xQtwdxD/anz5II7VYKw3MGH7MWHnfGg=
Subject key identifier: DC:9E:53:98:67:9A:7E:4D:17:1E:43:F5:AA:AE:FA:DE:9A:C2:8B:7A
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018CC42565653D2F6E54E197F349CB9705D4
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/3J5TmGeafk0XHkP1qq763prCi3o.roa
Signing time: Mon 01 Jan 2024 08:30:34 +0000
ROA not before: Mon 01 Jan 2024 08:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200482
IP address blocks: 85.202.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 14:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:65:65:3d:2f:6e:54:e1:97:f3:49:cb:97:05:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 08:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc9e5398679a7e4d171e43f5aaaefade9ac28b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3d:77:1e:96:75:74:6e:0f:a9:81:3c:de:1d:
79:23:97:25:49:45:b4:16:2d:71:07:d6:d7:0c:6c:
0d:af:9a:a0:2a:18:94:d8:e9:f2:73:5a:04:a2:64:
d8:57:e4:22:1b:6d:67:31:07:03:5f:74:9a:a3:b9:
41:d5:d0:ac:a9:57:7e:55:ef:af:6e:b1:f5:a3:b7:
3e:19:db:39:57:b3:c4:f9:78:dd:7e:63:80:48:bd:
b5:7f:66:39:d1:e6:cd:8b:4f:19:ed:71:3d:e0:7b:
fa:81:c6:36:94:31:fe:0b:d7:0e:fe:98:8e:e7:4a:
34:f9:ff:96:a6:a2:cd:d6:17:e1:a9:82:0c:4e:d7:
d7:a1:03:7f:51:e4:5f:87:fb:f2:16:84:b4:4f:66:
2d:62:f0:7b:08:a2:09:42:15:13:bb:13:67:e2:bc:
35:c3:d9:51:a6:c6:9a:2a:32:95:c1:0c:95:68:5d:
20:6d:5e:8b:9e:9b:6c:b2:f2:3e:df:cd:5b:78:c7:
9e:f5:26:3a:64:9d:ce:9b:46:6d:39:88:be:e7:7d:
17:94:09:4b:67:70:cd:dd:e0:29:90:70:cf:00:6d:
11:75:03:58:6a:73:fc:c8:c7:93:0b:25:cd:92:d5:
00:fe:03:b7:05:6e:00:be:03:ed:04:f1:57:1e:b0:
ec:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:9E:53:98:67:9A:7E:4D:17:1E:43:F5:AA:AE:FA:DE:9A:C2:8B:7A
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/3J5TmGeafk0XHkP1qq763prCi3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.163.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:25:3e:eb:aa:f3:d1:48:17:c1:1c:45:2b:83:e8:2e:be:6d:
e7:2c:89:a8:32:f0:24:1d:ad:07:5e:a8:8f:8a:fe:55:c4:13:
8f:70:cf:71:8a:11:26:38:3d:da:02:08:c9:f1:48:9d:82:7d:
ed:db:eb:cb:bd:1a:94:ff:86:44:a7:ac:6e:04:d4:e3:45:ed:
93:42:94:46:e3:0e:ad:d1:ca:1b:b5:98:96:30:47:f6:d6:64:
3a:73:91:6f:a3:3c:f1:cc:48:30:78:6e:c9:9f:c9:7d:82:11:
03:5f:76:0b:a7:e4:02:ee:76:df:d6:55:40:28:b2:f2:11:50:
ff:0e:91:f8:62:56:aa:03:52:3a:25:e2:59:36:33:98:b9:d3:
ce:14:b5:21:07:92:5f:bc:c6:b5:bb:c4:d4:72:42:f4:67:6a:
66:e5:a4:74:e4:4e:95:a6:89:23:3b:a2:7b:db:ff:54:b6:74:
65:7e:85:2d:82:b2:c9:68:82:78:98:60:06:4e:7f:dc:12:4e:
39:24:35:bc:90:8c:b4:56:cf:3a:5d:c9:cd:d3:30:23:81:c7:
ec:cb:fc:13:63:e2:68:7f:fd:83:da:cb:c6:cc:62:cb:ef:fb:
e3:76:d8:f8:62:79:4b:11:b4:03:c3:08:f9:92:78:3d:79:bc:
7e:ee:62:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:48 2024 by rpki-client on console-fra.rpki-client.org