Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/DTEXgm010wlnvy6BUdF8mQrmg2o.roa
File: DTEXgm010wlnvy6BUdF8mQrmg2o.roa (raw, json)
Hash identifier: gkM3tMh2+nzMwJ0mDIXVYo6EyLujNEQK8eLnZ42CBKY=
Subject key identifier: 0D:31:17:82:6D:35:D3:09:67:BF:2E:81:51:D1:7C:99:0A:E6:83:6A
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 018570E74B3CC10E0E8662B1EEF86CC7BE91
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/DTEXgm010wlnvy6BUdF8mQrmg2o.roa
Signing time: Mon 02 Jan 2023 05:14:44 +0000
ROA not before: Mon 02 Jan 2023 05:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5522
IP address blocks: 85.206.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Apr 2023 05:36:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:4b:3c:c1:0e:0e:86:62:b1:ee:f8:6c:c7:be:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 2 05:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d3117826d35d30967bf2e8151d17c990ae6836a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:31:f3:ff:f9:84:e6:15:62:fe:dc:01:18:18:
a6:e6:c2:e4:32:6f:fe:a2:27:76:70:49:da:3b:12:
dc:e1:4b:e8:cb:23:e5:d1:ef:f4:fb:45:b0:5b:f3:
09:9e:d9:fc:27:9d:b8:43:d8:87:1f:47:2e:b5:52:
56:b9:b7:ca:94:e9:be:22:61:63:62:fa:c1:3d:a6:
f0:3b:b1:d4:d0:be:b5:be:8d:f6:cb:63:17:c5:22:
0b:58:ff:2e:e4:1f:fd:a2:31:69:99:c3:20:47:a0:
f3:c2:28:70:b7:83:e0:8f:a3:64:bf:d5:5c:5e:67:
41:19:44:4f:dc:61:96:47:1f:02:50:55:88:7f:9b:
36:21:4e:c0:a9:72:66:30:f5:7f:e9:d6:d8:03:76:
c5:4c:65:65:f0:c9:68:b5:3e:c0:ab:39:36:9a:00:
90:d9:0c:bd:ba:ec:5d:22:01:5c:b6:fd:16:bc:a4:
59:69:b7:44:87:fd:2a:76:f9:31:69:20:85:df:66:
4c:97:50:c2:6b:36:6b:67:6c:fc:b1:62:8a:2f:e1:
40:3f:92:b9:e9:63:4d:bd:14:19:97:2c:b2:c4:8e:
90:f3:44:89:c4:c5:a1:d1:c0:34:7c:60:80:43:02:
bd:61:4a:a6:8d:f1:be:77:31:f1:94:f5:f4:e7:0d:
d4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:31:17:82:6D:35:D3:09:67:BF:2E:81:51:D1:7C:99:0A:E6:83:6A
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/DTEXgm010wlnvy6BUdF8mQrmg2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.206.40.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:54:30:ab:6c:1d:8e:f1:c8:57:78:35:d1:b4:0f:5c:7b:e0:
91:32:67:df:bf:b8:1a:a8:fe:bf:93:c7:69:05:57:72:1a:24:
29:1c:be:c8:bb:34:92:2c:a8:f7:6f:4f:95:46:bb:35:38:b3:
85:99:e4:12:3a:95:7c:6a:a6:58:82:4f:51:f3:e6:3b:84:6f:
58:ab:ab:8f:a0:ce:04:bf:7c:23:7d:ab:cc:ad:e6:4f:da:ab:
ce:88:ff:3b:a4:4f:1b:93:c3:da:2e:c5:ed:5c:1b:ed:9c:83:
48:6b:9b:e5:a3:2a:22:85:f1:78:a1:0b:6a:40:a9:c3:8a:c5:
38:7d:a5:10:39:16:c0:ea:e1:37:18:35:f6:19:9f:e6:7a:90:
f9:5c:32:7f:10:58:7c:7e:0a:3f:8f:3d:5c:7c:6f:f0:e4:f4:
45:27:46:11:29:25:e5:c2:2a:c8:58:9f:c0:e4:5a:e7:61:b2:
e2:ef:d8:43:9a:0e:0a:c0:a0:0f:cc:2e:3a:60:2a:b6:94:8f:
db:26:06:a8:9c:03:2d:4f:c0:32:f3:d7:a4:8c:c8:e7:70:bd:
3a:21:72:4b:1e:32:c5:ca:1c:68:56:04:f7:e0:f6:b3:1a:01:
29:d4:87:b4:f3:62:24:71:6c:7d:73:02:19:07:f8:c6:aa:71:
02:a0:2c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:18 2024 by rpki-client on console-fra.rpki-client.org