Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/tLOzy18kejzcYnLS_RYs9xSGIoE.roa
File: tLOzy18kejzcYnLS_RYs9xSGIoE.roa (raw, json)
Hash identifier: Wm09+IwiexQmJhhh2y7RjEXAMQ4A/cmXDoJBz9DVzGg=
Subject key identifier: B4:B3:B3:CB:5F:24:7A:3C:DC:62:72:D2:FD:16:2C:F7:14:86:22:81
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018E8459DB0664E993878990B99A5D319761
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/tLOzy18kejzcYnLS_RYs9xSGIoE.roa
Signing time: Thu 28 Mar 2024 09:17:45 +0000
ROA not before: Thu 28 Mar 2024 09:17:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 85.203.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 19:35:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:84:59:db:06:64:e9:93:87:89:90:b9:9a:5d:31:97:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Mar 28 09:17:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4b3b3cb5f247a3cdc6272d2fd162cf714862281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ce:0f:2e:4e:cf:d6:ce:ac:56:0e:26:6d:2d:
51:d8:d2:bc:05:23:79:63:c0:4a:d2:59:e2:32:e8:
9d:4e:43:af:cf:e0:e5:a7:7a:42:36:31:89:ed:08:
8d:70:34:86:65:c9:83:c3:9f:03:29:36:f4:75:f5:
9e:d0:8c:d7:cd:27:15:ef:cf:26:d5:9e:78:3c:35:
d6:e6:7b:67:88:cf:a6:d3:e2:f4:98:26:2f:8b:93:
05:f1:02:78:f1:5c:5e:92:9a:a4:e0:f3:52:69:b8:
79:3f:9e:70:ac:7c:0e:96:4c:50:74:9d:0d:4c:17:
a0:07:89:1a:97:74:ea:b1:46:de:32:9a:17:15:6e:
f2:e3:81:6f:5f:f8:5c:11:a1:1b:7d:4a:9f:30:4f:
18:03:51:c4:0f:37:84:00:02:58:02:39:be:47:f3:
2b:36:40:1c:d5:97:aa:43:83:62:25:64:22:82:72:
3a:19:91:89:04:be:4b:37:95:ae:03:31:8d:c4:05:
98:42:f1:9d:0d:92:1d:be:ab:a9:72:48:01:e6:f8:
d5:3b:dc:4e:67:b0:a5:4c:35:34:e8:a7:58:6c:b7:
ea:30:bf:88:86:4e:14:9d:29:36:8f:38:ca:0c:40:
12:3c:f5:52:55:bd:fa:fb:c6:63:e9:a3:97:21:f4:
a3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B3:B3:CB:5F:24:7A:3C:DC:62:72:D2:FD:16:2C:F7:14:86:22:81
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/tLOzy18kejzcYnLS_RYs9xSGIoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.32.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:e8:91:dc:ca:64:96:5a:59:ec:50:56:f9:6a:f2:aa:86:c9:
a1:8b:2d:18:d2:9a:3c:1b:5f:a4:9d:56:f3:3f:fe:a7:5c:6f:
67:4a:7e:46:d7:b8:c4:a1:71:29:46:b8:f5:3f:33:ce:bf:f6:
02:3f:08:1a:eb:55:52:16:ad:11:6e:bc:4b:99:92:33:fd:e8:
e5:e2:7f:bf:c3:b5:c4:7c:ff:fe:41:94:6c:76:b5:b9:01:78:
33:3e:8b:ca:af:ec:bc:5b:fe:3f:51:a0:d9:0a:8e:0d:6c:8a:
47:ae:b2:a2:19:0e:4a:b0:d7:49:86:5e:a7:24:54:17:b8:4a:
ea:29:ae:14:39:48:50:24:90:ba:1c:ea:ea:06:9a:d7:5f:de:
86:1e:fe:aa:71:0e:b9:60:1c:86:d7:47:e6:88:c6:80:6a:d1:
91:5a:69:ef:b1:d6:bd:b9:54:2d:96:82:3f:17:cc:df:1e:ef:
81:e0:38:aa:43:b4:4e:ed:70:56:bf:ee:eb:2b:0b:5a:18:51:
5f:84:7a:ce:cc:64:e7:5c:5e:29:ae:75:94:8e:1c:81:7b:09:
d5:9a:aa:26:a6:f5:13:2f:07:7c:4f:12:35:13:8d:ba:f0:95:
05:aa:32:5d:ae:22:5b:36:32:c3:03:00:41:4f:34:67:a9:76:
22:60:c3:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 22:13:27 2024 by rpki-client on console-ams.rpki-client.org