Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/t9YMmY5c1qnr_RYaJHquvUdubPc.roa
File: t9YMmY5c1qnr_RYaJHquvUdubPc.roa (raw, json)
Hash identifier: RCsKUXj+o5ImJMrKTrpEK+VlThLsu1mPnKjkSgMFhaY=
Subject key identifier: B7:D6:0C:99:8E:5C:D6:A9:EB:FD:16:1A:24:7A:AE:BD:47:6E:6C:F7
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA78AE0E3A570BFB889927E5B2CCD5
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/t9YMmY5c1qnr_RYaJHquvUdubPc.roa
Signing time: Mon 02 Jan 2023 13:45:01 +0000
ROA not before: Mon 02 Jan 2023 13:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30725
IP address blocks: 85.232.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:78:ae:0e:3a:57:0b:fb:88:99:27:e5:b2:cc:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7d60c998e5cd6a9ebfd161a247aaebd476e6cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:36:16:c1:3d:dc:1b:32:05:59:1a:60:6c:ac:
68:37:3e:94:a2:25:2c:8e:fd:ca:b7:bb:10:67:72:
6b:4b:ba:c3:7c:f2:54:05:a8:30:ee:8d:0a:04:c7:
f4:74:5f:07:8b:6b:fc:50:b4:48:66:6a:9d:33:e5:
7d:5f:0a:ce:6e:96:bd:ad:76:32:86:d3:ca:07:fd:
f0:ff:0f:58:01:1e:3f:d3:7f:50:7a:4e:81:3c:33:
02:8f:f8:56:a0:11:99:37:28:3c:80:10:a1:2a:69:
b6:76:0d:19:c1:f9:2d:61:48:a3:29:8d:fd:6e:d9:
70:c9:c3:14:a6:4b:b1:04:64:fe:dd:9b:fe:3a:63:
4a:6a:cf:c5:1c:0e:66:98:3a:64:d0:ce:ba:0b:51:
12:a1:8f:c9:03:78:4c:95:32:07:43:bd:e3:80:8d:
f6:56:4e:c1:ae:c2:87:24:89:af:c2:a0:17:0d:15:
d1:51:bb:3e:20:46:f4:f6:9a:bb:50:14:38:7c:af:
0d:e8:f2:11:d7:c2:13:97:6c:4c:65:ed:c7:d0:7e:
d6:10:5c:10:2e:22:12:f7:6b:2f:5b:4f:c2:bf:52:
f0:c1:c1:f2:44:89:81:7a:c8:20:cb:e6:db:47:a6:
88:42:b6:24:aa:1a:7e:27:e6:1f:2f:41:38:0a:55:
12:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:D6:0C:99:8E:5C:D6:A9:EB:FD:16:1A:24:7A:AE:BD:47:6E:6C:F7
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/t9YMmY5c1qnr_RYaJHquvUdubPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.232.244.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:22:b1:07:cd:4c:38:2b:58:d3:b6:da:f8:e3:7e:5d:e4:c1:
f9:ee:e0:22:61:c8:56:fa:17:45:29:b7:cc:bc:c5:3a:6d:5d:
b5:21:f0:de:68:f8:3d:26:db:61:7f:f2:a8:41:b6:16:8c:ba:
00:d5:9f:e9:aa:c8:a4:23:98:e8:a2:47:95:7f:a8:dc:45:47:
df:a4:06:b4:a2:f9:67:a4:b8:40:6b:b8:b3:d8:2e:68:22:79:
98:18:0c:6f:43:71:97:57:78:fa:ea:78:64:ce:a8:8f:3f:47:
ef:bb:33:52:5a:8e:36:02:a8:68:83:cf:b5:5d:5f:c2:a3:a0:
b4:a1:21:c8:e3:3e:05:54:d9:64:2f:10:de:21:58:60:88:14:
d0:da:bd:b8:3e:c1:4d:96:86:ee:42:23:9c:3b:44:c6:35:6b:
7d:fd:94:42:d1:69:d3:0b:cc:78:b6:fc:26:5a:5b:ec:a0:44:
8e:36:b8:dd:3a:98:5f:a1:06:64:7d:97:19:03:70:a9:34:48:
a1:3d:61:b3:91:11:9e:27:8d:e8:96:b4:c9:71:79:fd:1c:2b:
05:2b:e0:8b:2c:d7:7c:b7:ae:a7:6a:82:a0:b5:ec:76:0b:7b:
c9:a9:6d:3e:c8:51:cd:dd:85:0b:6b:b2:6f:4a:60:84:6e:22:
11:2d:47:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org