Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/eDkjJ0u6yS_D5Lc9l_lJ16Ct1iI.roa
File: eDkjJ0u6yS_D5Lc9l_lJ16Ct1iI.roa (raw, json)
Hash identifier: YIEf9WcKCYGingBv3BIDBA2Pj70mzEuI4jFgkT0q/Qg=
Subject key identifier: 78:39:23:27:4B:BA:C9:2F:C3:E4:B7:3D:97:F9:49:D7:A0:AD:D6:22
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018573900B7055172664F8596F4F970820DE
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/eDkjJ0u6yS_D5Lc9l_lJ16Ct1iI.roa
Signing time: Mon 02 Jan 2023 17:38:18 +0000
ROA not before: Mon 02 Jan 2023 17:38:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211266
IP address blocks: 85.202.160.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:90:0b:70:55:17:26:64:f8:59:6f:4f:97:08:20:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=783923274bbac92fc3e4b73d97f949d7a0add622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:9c:6d:b6:cc:57:0b:28:58:bd:89:7a:40:00:
ec:be:53:17:c4:c6:6f:8c:ed:92:32:1d:78:c8:08:
6f:74:5a:1e:28:74:fe:10:1c:73:da:91:a2:71:c1:
dc:b4:24:9d:a0:e9:97:5a:f6:6d:b3:93:5a:72:f2:
f6:e6:bb:9e:ee:61:01:86:ef:54:ee:5a:b0:a6:95:
1f:c0:3f:5e:bf:d8:5e:d9:26:a1:35:e5:1b:1e:7c:
e6:01:f6:b4:f0:cd:1a:0a:a6:8a:82:af:fa:c8:24:
7f:12:84:7d:cc:a1:db:94:71:76:74:00:35:e5:f7:
7d:b7:e5:21:93:e7:db:6f:13:66:88:5a:d3:12:35:
03:f1:8a:05:ca:1d:71:51:73:82:19:42:4a:45:a6:
9e:da:8f:06:19:72:1c:63:ec:04:36:86:c8:43:88:
24:42:42:ea:3f:ff:73:3c:e5:d8:37:4b:c2:20:44:
01:5d:9d:ee:f1:6c:1e:20:8b:00:2c:61:34:a6:ed:
0c:af:5f:39:df:80:51:a8:b7:8c:ff:be:db:18:68:
d3:38:56:92:08:0b:51:ce:b3:dc:17:69:63:8c:0c:
25:8c:31:29:30:d1:7c:c7:0d:80:3f:97:df:f0:14:
73:3f:51:0d:dd:69:eb:8b:ca:8c:20:96:46:88:17:
2b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:39:23:27:4B:BA:C9:2F:C3:E4:B7:3D:97:F9:49:D7:A0:AD:D6:22
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/eDkjJ0u6yS_D5Lc9l_lJ16Ct1iI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.160.0/24
Signature Algorithm: sha256WithRSAEncryption
80:5a:bc:da:38:9d:86:c9:64:fa:e1:ac:20:f5:08:e7:97:60:
58:24:f5:2b:37:96:17:78:cc:f2:08:5e:b7:e2:04:60:06:2b:
27:4a:e5:0a:bb:db:dd:09:8b:f0:8f:36:6d:55:6d:cd:9a:1f:
51:47:61:d6:e4:ab:40:f3:c2:e4:0a:ab:38:d3:be:3c:6c:db:
6b:95:47:d8:a3:61:2a:b2:70:16:1a:57:3d:2e:66:bd:b0:48:
d4:a3:bf:47:64:55:64:a0:f8:56:de:1c:3f:7a:16:30:8f:3a:
8f:b9:ce:e6:0f:0d:15:40:73:63:3a:d0:84:ce:1b:93:a9:73:
af:e2:b1:a7:f4:b0:55:fe:5b:12:12:69:9f:e0:a1:03:ac:73:
51:dd:6d:11:ba:f5:c8:9e:7d:78:49:84:e0:19:a4:c7:25:42:
84:01:ae:16:36:33:e0:7c:6a:5b:49:39:1f:15:2d:ba:48:51:
27:47:0a:8d:b0:0c:65:02:ee:a8:db:67:ee:31:d0:e7:6d:f2:
eb:58:4c:b7:70:2e:6a:2e:c6:66:ab:80:19:ab:45:80:b1:ca:
92:14:bd:c1:6e:06:44:9b:5c:13:d6:59:c4:bf:aa:40:ba:9d:
46:57:eb:b3:dc:f3:0f:77:8a:60:85:50:da:54:96:83:33:78:
77:ef:3a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:21 2024 by rpki-client on console-fra.rpki-client.org