Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/7yhOP-CV89A51U0edqbx1Hpqnwc.roa
File: 7yhOP-CV89A51U0edqbx1Hpqnwc.roa (raw, json)
Hash identifier: E6+ZrG1s0lphnsIzG28L2jEfy42z5DG/IVrLqBR/4O8=
Subject key identifier: EF:28:4E:3F:E0:95:F3:D0:39:D5:4D:1E:76:A6:F1:D4:7A:6A:9F:07
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 01856B81143F8FA57B7C301C01C91A253DB0
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/7yhOP-CV89A51U0edqbx1Hpqnwc.roa
Signing time: Sun 01 Jan 2023 04:04:59 +0000
ROA not before: Sun 01 Jan 2023 04:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35334
IP address blocks: 85.31.210.0/24 maxlen: 24
85.31.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:14:3f:8f:a5:7b:7c:30:1c:01:c9:1a:25:3d:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Jan 1 04:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef284e3fe095f3d039d54d1e76a6f1d47a6a9f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:58:b5:f8:65:21:2c:87:35:15:7c:b4:4d:71:
97:f6:ad:64:f7:85:aa:f1:67:4b:99:8a:c5:7f:4f:
db:3f:a1:4a:da:e9:5c:fa:07:cf:58:9d:50:3e:5b:
85:62:7b:ec:11:fd:64:cd:b6:cd:b5:72:8c:9c:8d:
d3:36:cd:50:b1:7c:06:a7:f3:f6:34:ed:45:e0:b4:
f8:18:dd:68:a0:d9:f7:ec:9c:61:76:c0:b8:e1:3c:
19:7c:7c:8e:77:a6:fa:63:11:e0:aa:3c:04:6d:e1:
02:c2:9a:d7:85:5e:57:f6:cc:f9:50:71:f7:23:34:
ce:e5:2d:30:2a:08:64:aa:ae:7b:82:ca:37:c1:bd:
2a:29:79:e8:0b:b8:6c:f6:53:36:5d:5d:3b:a7:35:
55:bf:d6:89:ca:b8:33:3a:74:b7:11:fb:46:5f:7c:
c6:6e:b3:24:fb:2f:a7:d9:8b:32:20:43:b9:ea:6d:
9b:fe:04:c5:11:c1:9e:69:d7:1b:32:30:65:49:b5:
09:00:ca:0c:40:d9:76:04:f9:16:85:36:7c:92:55:
4f:60:66:8c:8b:a2:75:a2:ee:ad:bc:15:d4:6b:11:
17:b2:b8:2b:88:f7:8f:2d:5e:23:d4:74:6c:ef:80:
11:e6:25:63:83:f7:dc:4e:ce:62:f6:32:8e:5b:f0:
1f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:28:4E:3F:E0:95:F3:D0:39:D5:4D:1E:76:A6:F1:D4:7A:6A:9F:07
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/7yhOP-CV89A51U0edqbx1Hpqnwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.210.0/24
85.31.222.0/24
Signature Algorithm: sha256WithRSAEncryption
94:3d:b5:99:f5:dd:7e:24:34:f9:bb:66:b2:19:bb:3b:3d:7c:
f0:d9:3b:8d:e5:7f:5e:d9:b5:34:80:b4:8b:ec:86:9e:81:6f:
0f:d1:1d:c1:16:f6:f2:37:c3:dc:e0:7c:b3:02:4f:3d:ce:b7:
8a:5b:f9:63:15:cc:17:03:49:d8:3c:a4:3b:7f:53:f4:5c:ec:
a0:e6:48:04:48:5c:6b:2c:a4:2a:df:14:1b:27:c6:c9:f7:7a:
96:2c:3a:a1:40:f9:78:6d:3c:f5:be:cb:5d:bd:ff:f3:cf:16:
85:63:b4:43:da:6a:ea:9e:3f:57:ff:3f:ed:c5:22:6f:7b:95:
09:19:6a:50:ee:74:a4:06:a5:ad:4d:fa:cd:50:d6:cc:cd:ed:
e7:9d:90:e8:e9:a0:19:11:bc:a2:20:a2:fb:2a:79:d4:42:a6:
76:c5:27:8c:0f:f1:f3:b2:05:0e:eb:d8:e6:b7:ef:cc:4c:0d:
69:d1:80:76:e4:11:42:05:39:1e:6e:4c:5f:c6:07:c0:59:cc:
e9:ba:2e:9b:c0:97:a1:d5:ea:57:a4:13:d0:dc:85:aa:2e:77:
1a:c3:42:cb:1d:c4:ba:ee:ae:9c:e7:12:a7:b6:3e:52:94:d2:
7d:f5:5a:02:bb:2b:25:63:5f:ba:0e:97:ae:8a:51:32:4d:b8:
6b:f6:1c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org