Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/94VHFBj8KJiQdS2BVwyUSu3HUrs.roa
File: 94VHFBj8KJiQdS2BVwyUSu3HUrs.roa (raw, json)
Hash identifier: nj1B7d7KuMCk3ub5yia15iPWeIBoaDKoA+IJ9MHrJgc=
Subject key identifier: F7:85:47:14:18:FC:28:98:90:75:2D:81:57:0C:94:4A:ED:C7:52:BB
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 01856B40CD66029FD778674AF68910D39C69
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/94VHFBj8KJiQdS2BVwyUSu3HUrs.roa
Signing time: Sun 01 Jan 2023 02:54:47 +0000
ROA not before: Sun 01 Jan 2023 02:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211717
IP address blocks: 188.85.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:cd:66:02:9f:d7:78:67:4a:f6:89:10:d3:9c:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 02:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f785471418fc289890752d81570c944aedc752bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:98:c4:d0:04:a0:47:c4:7d:65:90:77:c9:be:
18:4b:ae:f1:90:6b:7b:7f:2b:b5:c1:46:8b:76:52:
06:a4:be:06:1c:8e:25:cb:7b:2c:26:fc:26:85:fb:
69:f5:0a:a3:8c:9a:be:cc:cd:7a:d8:e7:58:4f:54:
80:e5:35:12:6a:7c:08:76:a7:cd:f2:5a:a1:d6:ec:
d7:ca:0a:0e:0e:ac:b2:7c:a6:6d:c3:66:3d:85:e5:
4b:73:d4:06:68:9f:bb:99:c4:64:07:46:25:d4:5d:
66:4e:dd:d6:42:af:df:48:a3:bc:1c:89:27:59:c8:
0b:34:d0:28:64:1a:16:b4:d1:a6:c8:e0:cb:1e:0e:
8e:56:87:5e:e8:18:0e:20:1c:66:39:eb:a1:81:01:
7a:f2:39:2f:4b:8f:a3:6e:70:5e:e4:ed:2a:22:a8:
10:1f:dd:b0:85:df:90:32:d9:8d:b0:d5:d3:9f:89:
6b:c6:b7:e8:ad:c3:51:1c:7c:42:78:f6:11:61:af:
49:da:ff:ba:f5:3e:41:9e:33:f1:08:93:a9:1e:f6:
bb:0b:02:33:8d:6d:07:58:de:10:57:0c:74:e7:b1:
be:b2:a9:f2:54:a3:8e:02:c3:2d:d9:92:8e:80:17:
7d:c2:c3:f8:fe:cb:a7:5c:0e:7b:66:44:09:be:0f:
8f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:85:47:14:18:FC:28:98:90:75:2D:81:57:0C:94:4A:ED:C7:52:BB
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/94VHFBj8KJiQdS2BVwyUSu3HUrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.85.153.0/24
Signature Algorithm: sha256WithRSAEncryption
78:74:88:0b:5c:97:ad:c4:c5:b1:73:bf:ba:78:b6:f0:1c:09:
51:76:c9:d7:ad:b0:4c:a3:f2:f7:ea:43:10:ca:a0:ba:bb:24:
15:17:95:e5:03:e7:1d:a7:c4:11:8b:20:79:9a:f8:e6:4e:de:
fa:fd:85:3e:eb:7a:d8:3d:f7:a6:c3:76:7b:72:f0:56:1c:e0:
7d:93:85:a0:47:fa:f4:09:91:06:f6:19:4c:70:e3:1a:f8:d3:
9b:6a:d2:b7:ff:c7:ff:a4:32:2e:f7:98:77:68:20:20:ff:33:
22:44:dc:cf:c4:9d:a1:11:5c:75:ec:f9:d0:36:f6:37:6e:6d:
3b:26:90:9d:9e:c0:b9:f4:23:ad:db:71:38:7a:60:d4:ec:15:
9a:a7:18:80:79:85:92:69:84:41:8b:0a:52:b7:cb:f5:59:63:
70:b9:5a:93:d6:7d:a7:9b:5a:59:ad:f5:b6:20:59:f9:e0:44:
db:ec:18:97:5a:92:4b:d2:ef:6d:09:48:8a:6b:7a:e2:87:fa:
05:30:d6:a5:8a:f3:b8:cb:69:d1:76:86:58:5a:56:e6:98:06:
48:7f:83:d8:e6:4e:f6:f8:08:62:ca:c3:2b:26:c1:52:86:7b:
08:62:8a:b8:d7:40:69:2c:e0:f5:a7:6a:d6:c5:62:74:7d:0c:
cf:6c:ce:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:01 2024 by rpki-client on console-fra.rpki-client.org