Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/CC752AO1g3SECo0YNHu84n1NVFI.roa
File: CC752AO1g3SECo0YNHu84n1NVFI.roa (raw, json)
Hash identifier: yUITZb3zP1cDdXXD7AhZT0W88ConU4qY68dGMfvMdP0=
Subject key identifier: 08:2E:F9:D8:03:B5:83:74:84:0A:8D:18:34:7B:BC:E2:7D:4D:54:52
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018CC94DFCB8CE7E2ACA1AFC22AE3EC78811
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/CC752AO1g3SECo0YNHu84n1NVFI.roa
Signing time: Tue 02 Jan 2024 08:33:00 +0000
ROA not before: Tue 02 Jan 2024 08:33:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 85.204.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:fc:b8:ce:7e:2a:ca:1a:fc:22:ae:3e:c7:88:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 2 08:33:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=082ef9d803b58374840a8d18347bbce27d4d5452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:23:c7:70:7f:f0:6e:60:21:69:2c:7e:f7:25:
33:9e:82:c9:30:7f:c5:7c:6a:89:20:a8:94:b1:e0:
ba:50:24:7a:6c:b6:80:f4:b3:19:06:9b:94:26:65:
4c:29:ea:57:68:fa:d0:0c:22:ea:3a:57:22:e9:1a:
82:a1:92:2e:cf:c4:63:6f:18:53:b5:c1:58:be:e1:
8b:14:b0:a1:d6:62:1c:b8:df:d6:c1:65:88:9a:21:
c3:9b:0c:9f:9d:f4:0e:d9:e1:df:93:77:ec:79:b5:
61:ab:3f:dd:64:17:09:fc:82:1a:60:02:10:ad:92:
28:29:0d:6c:6d:70:2c:5e:52:96:b7:9d:eb:f7:95:
e8:99:dc:6e:7e:0b:d8:cd:55:5b:e9:7a:91:8c:36:
15:63:c5:ff:53:3f:b2:5f:3f:81:0e:f2:b8:6c:11:
7c:89:71:9c:df:27:c3:0b:56:01:71:b0:ba:31:c2:
75:94:98:d8:bf:53:2a:e7:5a:d9:ec:a4:5d:78:d4:
3e:c1:7e:74:54:55:ab:13:10:28:75:2c:f6:d8:7a:
a0:e0:05:e9:4a:a8:5b:90:41:71:7f:a5:72:bb:50:
0b:da:94:56:74:dd:ce:a0:df:e8:31:4a:01:fc:ee:
80:c5:75:49:a1:92:e9:53:70:4b:22:e3:3b:0f:72:
7e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:2E:F9:D8:03:B5:83:74:84:0A:8D:18:34:7B:BC:E2:7D:4D:54:52
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/CC752AO1g3SECo0YNHu84n1NVFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
Signature Algorithm: sha256WithRSAEncryption
49:3d:9d:f5:26:98:42:33:ff:7d:67:0e:06:7b:4b:c3:59:aa:
51:ca:5b:fc:9d:74:33:29:8e:90:74:04:bf:54:a9:9c:60:13:
e5:fa:2d:62:ab:1e:e0:c6:52:aa:c1:2f:c9:84:61:24:a0:86:
26:b6:bc:ab:30:aa:29:55:86:82:4d:2a:c5:49:32:23:c5:10:
56:03:d8:0a:db:24:05:42:0f:c0:0f:7f:03:b6:00:f2:81:ae:
dc:f3:89:29:f3:f4:23:5c:04:3a:82:e8:9d:88:34:95:be:fb:
44:f1:af:17:fa:0d:b1:33:16:ca:53:b0:0e:ea:86:5a:50:a2:
13:fe:a6:05:07:3b:34:69:9c:bd:c1:78:20:e0:72:28:8a:6d:
28:20:c1:a7:b4:f7:f2:ba:9f:86:dd:d4:3f:17:f6:a7:15:b3:
d9:0e:e4:aa:2d:1a:3e:0a:32:6b:3d:fd:0f:37:29:2f:82:b0:
11:63:f5:ad:04:26:36:f3:d8:a3:53:7b:d0:6d:d1:3a:9d:a2:
09:eb:3a:80:07:25:bc:be:eb:72:9c:df:90:f9:8a:72:2f:35:
35:ab:0f:a9:95:ac:e7:8d:10:a6:2b:1e:45:93:be:0a:f9:f3:
18:ea:11:f1:b5:19:ea:34:f2:87:97:ba:8c:c2:65:2f:f3:77:
79:f2:e0:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 4 13:20:10 2024 by rpki-client on console-ams.rpki-client.org