Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/Uazv2cb4W3gpwZPYcpDlbzgFU_o.roa
File: Uazv2cb4W3gpwZPYcpDlbzgFU_o.roa (raw, json)
Hash identifier: PLmnLyiX8pqAtrYRAnfl+KB7O4Rp7l64PKuwC7FCm58=
Subject key identifier: 51:AC:EF:D9:C6:F8:5B:78:29:C1:93:D8:72:90:E5:6F:38:05:53:FA
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018572CC93C70F2F8CEC4DF2003A68FB4769
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/Uazv2cb4W3gpwZPYcpDlbzgFU_o.roa
Signing time: Mon 02 Jan 2023 14:04:47 +0000
ROA not before: Mon 02 Jan 2023 14:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 85.203.40.0/22 maxlen: 22
85.203.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:93:c7:0f:2f:8c:ec:4d:f2:00:3a:68:fb:47:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 2 14:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51acefd9c6f85b7829c193d87290e56f380553fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f4:8d:dd:3a:19:f8:14:8b:8f:62:f0:cd:4c:
23:1c:f8:da:c0:02:06:3e:f2:e0:f8:46:77:a4:fe:
d5:80:d9:a6:28:7c:cc:9a:4a:95:59:d0:99:54:f7:
5d:1d:5d:b7:80:b1:0e:33:a1:af:96:34:38:22:57:
dd:65:72:8c:ef:bd:53:fd:bc:65:b8:d9:3c:ba:61:
d6:ca:cf:57:a7:e3:27:16:b2:00:31:f1:44:7d:2e:
98:c5:a3:d1:80:18:95:ea:c1:88:ea:f0:5d:b2:de:
3b:1e:38:d6:f7:91:3a:74:a7:aa:56:da:7d:12:2a:
48:f0:8a:d6:39:1d:cf:7b:93:5b:4f:e8:8a:34:34:
21:ac:8d:6e:53:2e:16:4c:02:b9:8c:b7:6d:bf:ee:
04:b1:4d:74:1b:47:3f:1e:9e:dd:ee:49:7f:28:fc:
8a:f8:64:c6:83:3c:58:3f:75:e9:a5:d7:0e:a5:cc:
97:a1:45:cc:2c:38:4e:7c:96:16:cd:ba:dc:82:16:
e8:b2:77:04:2d:35:03:8e:ff:f6:7f:a9:eb:74:1d:
44:ad:a8:a2:dc:bc:0e:e2:fb:9f:84:b9:0a:aa:8a:
6d:2b:96:99:ba:31:26:eb:6e:7c:d2:30:91:0a:42:
bf:6b:ee:4d:f1:73:74:b0:45:20:f4:4f:87:c8:67:
39:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AC:EF:D9:C6:F8:5B:78:29:C1:93:D8:72:90:E5:6F:38:05:53:FA
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/Uazv2cb4W3gpwZPYcpDlbzgFU_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.26.0/24
85.203.40.0/22
Signature Algorithm: sha256WithRSAEncryption
17:bd:67:d8:57:d7:16:95:28:fa:9e:9c:6e:01:ae:9d:e2:9a:
4f:67:bf:57:8e:9f:66:e2:90:f3:e6:b2:32:ec:27:15:40:9a:
df:7b:06:1d:bc:ca:2c:33:e7:b4:6e:a2:7e:4a:d1:7c:00:8c:
c0:21:dc:83:e4:52:82:bd:dc:8b:2f:c1:c6:3a:df:81:f9:97:
e6:c8:68:5b:f5:d1:1e:1e:fd:d5:65:d2:a9:0d:7c:70:8e:a4:
5e:3e:71:11:69:0a:a9:86:e2:a9:d8:de:89:13:59:92:7b:73:
c6:5a:34:fa:3f:54:3c:b7:4f:6e:05:4a:1c:e2:e8:d8:26:3d:
b8:00:3f:83:ef:38:82:95:a3:4b:23:2d:e4:db:98:85:38:2c:
ae:f4:d5:a9:03:ba:27:ed:8f:55:63:32:4f:f0:2b:38:0a:91:
6f:79:90:16:de:61:33:6d:f4:33:bd:85:57:af:ec:7a:3c:52:
ae:1d:c7:f2:0d:8f:c4:33:49:8e:2a:49:46:c6:61:02:7e:b6:
98:a4:80:86:5a:06:66:b8:30:ef:aa:df:62:e4:be:17:93:57:
77:24:b2:fc:e6:be:61:65:62:6c:fc:71:16:35:e4:c2:61:37:
3b:d8:e4:3c:d1:74:bf:7e:5f:dd:e0:9c:24:64:73:4f:e5:95:
8f:1b:1b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:50 2023 by rpki-client on console-ams.rpki-client.org