Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/602137-dd40-4ef9-bb0f-4457fa20bcba/1/cYUvEofu1pXKLFXSWTtrfLnRmbo.roa
File: cYUvEofu1pXKLFXSWTtrfLnRmbo.roa (raw, json)
Hash identifier: 4191V4nbSsVTVWxGv+R2tRTrQ6+99Es6gm3zDJnAXOI=
Subject key identifier: 71:85:2F:12:87:EE:D6:95:CA:2C:55:D2:59:3B:6B:7C:B9:D1:99:BA
Certificate issuer: /CN=b77627cafe755785750bde5ba49e6c1091bf4247
Certificate serial: 018CC348FB6705FB87EF80862411945B7A51
Authority key identifier: B7:76:27:CA:FE:75:57:85:75:0B:DE:5B:A4:9E:6C:10:91:BF:42:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3Ynyv51V4V1C95bpJ5sEJG_Qkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/602137-dd40-4ef9-bb0f-4457fa20bcba/1/cYUvEofu1pXKLFXSWTtrfLnRmbo.roa
Signing time: Mon 01 Jan 2024 04:29:49 +0000
ROA not before: Mon 01 Jan 2024 04:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209302
IP address blocks: 85.209.248.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 11 Mar 2024 12:24:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:fb:67:05:fb:87:ef:80:86:24:11:94:5b:7a:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b77627cafe755785750bde5ba49e6c1091bf4247
Validity
Not Before: Jan 1 04:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71852f1287eed695ca2c55d2593b6b7cb9d199ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7b:34:5a:8c:5e:40:4f:a2:9f:23:ce:ac:14:
19:49:21:3c:54:46:d0:0e:48:f1:b2:a0:aa:57:ae:
c9:c2:ce:65:97:9d:aa:08:1c:8b:94:19:bc:7b:07:
98:b5:bb:18:cb:a6:7d:cf:ce:53:8b:a1:21:fd:a7:
08:f1:0a:d0:02:52:3b:78:1d:84:c2:68:0a:5b:71:
49:0d:b0:e2:2d:fe:3d:08:92:e6:81:24:cb:a5:ac:
ff:3e:61:0d:30:15:e5:fc:0c:4f:ab:48:00:7b:4a:
bc:9c:ad:05:6c:b9:1b:a1:8e:61:c5:46:e5:6d:46:
06:37:04:10:60:02:55:2b:fe:6f:dc:dd:0a:ad:95:
0c:77:bf:92:63:58:42:b1:5d:7f:7f:c1:7c:1e:53:
fe:e0:71:b4:6e:17:c9:2a:c8:aa:76:ef:ce:11:d3:
fc:57:69:b0:09:1c:5e:33:66:53:c6:d3:95:d9:e7:
10:53:8f:99:0e:f2:76:ee:99:03:8c:38:ca:d7:4f:
56:27:e3:a4:ce:d2:2d:d2:a6:92:66:18:46:fc:2c:
af:49:2e:68:9a:66:28:db:8e:eb:6b:d9:c2:43:05:
72:b6:ed:aa:de:7d:54:59:21:58:6e:42:0a:81:1d:
79:d9:84:61:12:f7:79:59:71:4a:87:d7:66:c3:6b:
07:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:85:2F:12:87:EE:D6:95:CA:2C:55:D2:59:3B:6B:7C:B9:D1:99:BA
X509v3 Authority Key Identifier:
keyid:B7:76:27:CA:FE:75:57:85:75:0B:DE:5B:A4:9E:6C:10:91:BF:42:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3Ynyv51V4V1C95bpJ5sEJG_Qkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/602137-dd40-4ef9-bb0f-4457fa20bcba/1/cYUvEofu1pXKLFXSWTtrfLnRmbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/602137-dd40-4ef9-bb0f-4457fa20bcba/1/t3Ynyv51V4V1C95bpJ5sEJG_Qkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.248.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:fc:a8:a5:b1:e1:76:7f:f9:ce:a1:fa:eb:03:88:b4:44:2d:
e5:f4:01:91:aa:b4:57:11:37:89:50:5d:78:c8:45:b6:27:db:
67:b8:99:f8:c5:13:49:4f:e8:4e:bd:20:2f:30:56:99:24:9c:
c4:48:ed:b2:2c:d5:b1:43:28:31:63:1a:0d:92:81:8a:48:94:
7f:75:ce:6b:44:ca:84:41:b2:0e:75:36:34:f5:a1:c2:64:fe:
c4:73:80:56:49:8c:dc:b2:f8:ac:a2:99:5f:25:d6:0f:b7:49:
46:30:32:db:63:83:ff:d8:f3:ce:67:b1:2f:45:50:e2:52:30:
3e:63:24:ea:cb:30:20:c4:ea:95:87:de:49:74:a5:48:b1:3a:
58:be:7e:6e:a2:43:f5:20:52:e1:04:31:97:89:df:53:ba:d9:
f1:f3:21:46:d1:f4:5b:99:c3:61:5c:55:5f:05:3d:8e:0f:de:
d8:3b:e3:f0:15:8f:d3:c2:81:55:1e:66:e4:cd:47:01:21:2e:
3a:dc:df:4a:c7:05:e3:61:e0:41:33:cf:b1:78:f1:60:eb:7a:
80:d6:af:4e:9a:48:d8:a9:47:b2:63:1e:e1:81:56:eb:1e:83:
96:2a:fd:57:4d:8b:a8:af:e3:f1:4e:8d:89:2e:4e:2d:1b:91:
5d:70:f9:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:31 2024 by rpki-client on console-fra.rpki-client.org