Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/497dd7-7f7c-494d-b886-52f850ca55c6/1/RWnD3au57-dPomBfN_4PgHDcDQ8.roa
File: RWnD3au57-dPomBfN_4PgHDcDQ8.roa (raw, json)
Hash identifier: fTlGhv/Z2gDzfL6BxFgZmkjImcfIkKEQsMKTroL04X4=
Subject key identifier: 45:69:C3:DD:AB:B9:EF:E7:4F:A2:60:5F:37:FE:0F:80:70:DC:0D:0F
Certificate issuer: /CN=b6a897c798f019b2477b1a9ce3b23bb5d76166c3
Certificate serial: 018571150AC36074196FC2A1FA4089E66449
Authority key identifier: B6:A8:97:C7:98:F0:19:B2:47:7B:1A:9C:E3:B2:3B:B5:D7:61:66:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tqiXx5jwGbJHexqc47I7tddhZsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/497dd7-7f7c-494d-b886-52f850ca55c6/1/RWnD3au57-dPomBfN_4PgHDcDQ8.roa
Signing time: Mon 02 Jan 2023 06:04:42 +0000
ROA not before: Mon 02 Jan 2023 06:04:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209345
IP address blocks: 85.208.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:0a:c3:60:74:19:6f:c2:a1:fa:40:89:e6:64:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6a897c798f019b2477b1a9ce3b23bb5d76166c3
Validity
Not Before: Jan 2 06:04:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4569c3ddabb9efe74fa2605f37fe0f8070dc0d0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:39:fe:10:65:5a:25:d3:51:4d:c8:d1:37:9e:
31:14:b4:1d:31:b4:ca:43:51:cd:af:85:b3:9e:92:
5e:03:9a:e0:65:39:88:6f:b7:ea:29:19:9b:6a:d3:
81:55:37:50:9a:b6:29:9e:a9:ae:fc:1e:2e:ce:54:
ff:b3:2d:d3:44:ee:41:51:d1:08:20:e2:a8:e8:f4:
97:b3:29:44:e5:77:01:84:f8:2a:27:3a:86:d1:72:
9a:d2:1c:35:1b:41:8e:71:dc:ad:64:77:0c:f0:c3:
e9:29:17:a3:3b:23:ed:cf:0e:42:31:66:a9:3a:b4:
9c:01:8f:a6:94:21:a5:73:75:af:b2:b7:9c:4c:c9:
d7:0e:10:2e:b2:69:46:89:62:12:9e:4f:f0:9b:9c:
69:bf:3d:75:6f:c3:3f:c9:15:45:bc:5b:67:64:27:
fd:cc:12:c9:f7:bf:3a:e1:bc:e6:06:8d:2b:9b:4f:
32:eb:de:e0:f3:b1:3d:4d:3c:a3:3a:56:f1:83:36:
b0:bb:6b:b8:89:be:c6:e8:48:8a:cc:a3:cd:fd:e2:
84:01:97:35:50:a8:d8:ac:08:b3:25:3f:59:fb:19:
03:36:28:90:d8:aa:99:af:79:6e:0a:99:ad:52:0e:
ee:5d:05:9a:2f:76:f7:e7:31:0a:39:1a:d7:2b:1e:
ed:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:69:C3:DD:AB:B9:EF:E7:4F:A2:60:5F:37:FE:0F:80:70:DC:0D:0F
X509v3 Authority Key Identifier:
keyid:B6:A8:97:C7:98:F0:19:B2:47:7B:1A:9C:E3:B2:3B:B5:D7:61:66:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tqiXx5jwGbJHexqc47I7tddhZsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/497dd7-7f7c-494d-b886-52f850ca55c6/1/RWnD3au57-dPomBfN_4PgHDcDQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/497dd7-7f7c-494d-b886-52f850ca55c6/1/tqiXx5jwGbJHexqc47I7tddhZsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.240.0/24
Signature Algorithm: sha256WithRSAEncryption
03:6a:36:fc:e4:73:e3:1c:c8:df:4d:be:85:a7:81:52:18:28:
82:71:7d:2c:fb:bc:95:87:71:1c:5a:38:cf:6d:d5:04:ff:0a:
e2:bc:92:dc:85:b5:d6:f6:84:55:18:fe:81:11:8e:bd:79:a1:
b6:15:35:b5:4c:0c:c6:02:a3:dd:b1:3c:ac:c3:ad:5b:f3:75:
8c:f4:0b:f1:79:30:32:21:26:80:4a:84:b9:cd:82:0d:ad:02:
12:04:a0:1a:a8:ed:bc:4c:9e:d5:4e:17:45:1e:98:ef:41:69:
24:2a:99:eb:96:66:fb:0e:36:5b:cd:0b:00:3d:42:6c:89:36:
6e:d0:8c:b7:a3:65:f4:16:fe:bc:04:63:2c:27:c2:d5:1a:82:
a6:65:f5:f7:5c:a3:0a:7f:d2:c1:32:3f:e2:11:30:56:db:29:
4f:65:c6:4a:be:c7:90:c8:38:dd:10:2c:1a:8e:76:ea:fa:e6:
be:cd:f9:ad:63:31:2c:c5:89:3e:10:02:ee:2e:39:29:99:7c:
fd:d1:84:b8:78:84:74:d8:53:ab:29:08:82:24:e6:34:68:4e:
90:6f:e4:14:a7:15:2c:85:60:fc:1f:e1:a1:46:0b:52:11:8a:
b1:7e:c1:6b:ec:dd:7b:51:ce:a1:c7:12:f5:9b:1a:18:81:04:
d1:52:be:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:41 2024 by rpki-client on console-fra.rpki-client.org