Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/pbIrNPUaa9zmxaAN9hYG9dAK5Rs.roa
File: pbIrNPUaa9zmxaAN9hYG9dAK5Rs.roa (raw, json)
Hash identifier: 7QequxMjUEfOKiVIye9SEJctVeNn73yJ8nXH9juVEIY=
Subject key identifier: A5:B2:2B:34:F5:1A:6B:DC:E6:C5:A0:0D:F6:16:06:F5:D0:0A:E5:1B
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9EC3682BD0F379EB3FD685086FB25
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/pbIrNPUaa9zmxaAN9hYG9dAK5Rs.roa
Signing time: Mon 02 Jan 2023 09:04:48 +0000
ROA not before: Mon 02 Jan 2023 09:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5822
IP address blocks: 85.185.48.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:ec:36:82:bd:0f:37:9e:b3:fd:68:50:86:fb:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5b22b34f51a6bdce6c5a00df61606f5d00ae51b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0e:8a:cb:b6:fd:0c:c0:f0:14:14:2e:ef:c4:
45:28:7f:73:b6:c9:df:a6:da:f2:b1:2b:af:d3:ce:
b2:de:c3:aa:20:5b:46:e4:bc:e9:3b:77:07:9b:59:
ce:78:64:81:e9:d8:d8:a2:8b:a7:ba:96:95:2f:dc:
b3:00:6a:ba:69:b5:db:06:a8:37:82:c8:87:81:74:
f7:8d:84:ce:1f:d3:ec:69:b7:be:5a:b4:ea:ad:ba:
04:61:41:9e:35:48:a8:99:02:92:3c:fe:5d:e9:4b:
d5:04:f3:e5:25:f0:59:31:c8:f9:24:dd:b0:9b:fe:
68:3c:f0:3c:cc:09:1c:48:d1:4b:13:72:17:4d:48:
7d:4c:6d:06:b3:9a:bf:2f:7c:8b:77:8a:b4:ac:03:
30:fd:a0:11:c1:fc:ba:6f:d9:15:ac:eb:31:3b:f1:
c7:60:1b:ba:34:e7:3e:70:dd:74:27:72:ce:40:f0:
86:cb:8b:54:bd:79:6d:6d:c5:c6:07:a6:62:3d:8c:
66:8e:9f:33:6d:21:45:6f:f5:79:0e:6e:0e:29:05:
94:06:bc:f7:37:4a:ef:12:dd:d2:f8:55:45:f3:b3:
cf:42:90:90:ab:31:8d:ec:06:5a:8b:bd:ef:43:93:
3c:a2:2e:4f:3f:82:0c:ce:2b:0b:97:bd:66:b2:18:
d9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B2:2B:34:F5:1A:6B:DC:E6:C5:A0:0D:F6:16:06:F5:D0:0A:E5:1B
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/pbIrNPUaa9zmxaAN9hYG9dAK5Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.185.48.0/20
Signature Algorithm: sha256WithRSAEncryption
02:75:47:25:68:f0:c9:c1:30:7f:fc:be:12:3e:18:f0:48:5f:
36:d9:89:9f:14:40:8c:a0:d7:d5:1a:5f:4c:80:7c:56:9e:6e:
71:8c:9e:7b:3b:a1:c1:3a:a6:87:08:b9:bb:9b:fc:cf:df:da:
6e:23:08:4a:8e:7e:f3:a6:85:9a:f4:de:ba:67:8d:60:f9:5a:
1d:72:1d:15:e2:85:72:5d:28:96:9c:53:6e:5f:06:ae:c8:9e:
5d:1a:16:36:cd:17:08:5d:4d:8d:98:ed:05:8a:17:ba:84:61:
3c:c3:eb:77:26:7a:04:29:74:da:9a:59:f5:fd:c8:74:da:35:
ca:8d:b2:6b:51:08:f9:cf:79:57:54:d3:a8:b6:a5:45:f9:28:
e6:51:41:3b:eb:33:59:17:8b:18:e5:34:2b:8c:b0:9e:54:81:
67:40:12:83:e5:2f:68:b4:c1:e4:d1:0f:79:98:eb:46:b2:da:
28:35:76:ff:7a:03:83:71:94:ae:0a:70:94:8b:6f:df:36:76:
9c:bb:5c:23:6c:98:a2:06:74:47:cf:8b:b9:74:81:10:ec:80:
03:31:65:b5:55:81:98:e0:3f:e3:ce:f7:3e:80:b8:aa:45:22:
db:1a:6a:89:23:37:92:7e:ed:a1:c9:7b:66:af:88:13:a9:5f:
d7:ce:62:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org