Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/602137-dd40-4ef9-bb0f-4457fa20bcba/1/hIQB_sv1kR1bg6bkYsHcC5huVTw.roa
File: hIQB_sv1kR1bg6bkYsHcC5huVTw.roa (raw, json)
Hash identifier: V6L4dKVAVPGbZ/cVM7tjv6u80saEty5rFH/zdH8oCRI=
Subject key identifier: 84:84:01:FE:CB:F5:91:1D:5B:83:A6:E4:62:C1:DC:0B:98:6E:55:3C
Certificate issuer: /CN=b77627cafe755785750bde5ba49e6c1091bf4247
Certificate serial: 018C392F10FB65C53F97DD4C5ED77FC93DCC
Authority key identifier: B7:76:27:CA:FE:75:57:85:75:0B:DE:5B:A4:9E:6C:10:91:BF:42:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3Ynyv51V4V1C95bpJ5sEJG_Qkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/602137-dd40-4ef9-bb0f-4457fa20bcba/1/hIQB_sv1kR1bg6bkYsHcC5huVTw.roa
Signing time: Tue 05 Dec 2023 08:53:54 +0000
ROA not before: Tue 05 Dec 2023 08:53:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209302
IP address blocks: 85.209.248.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:39:2f:10:fb:65:c5:3f:97:dd:4c:5e:d7:7f:c9:3d:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b77627cafe755785750bde5ba49e6c1091bf4247
Validity
Not Before: Dec 5 08:53:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=848401fecbf5911d5b83a6e462c1dc0b986e553c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4e:fe:4a:85:f9:46:9e:af:b3:73:a0:09:01:
17:10:4e:34:f2:60:21:c9:d4:37:9b:b9:61:70:5f:
e2:67:fc:7e:a2:2e:05:6d:26:db:10:6b:d3:8f:d0:
1d:13:9d:39:40:fb:22:fa:e2:79:97:66:95:bd:15:
75:9f:81:f7:90:fe:11:6d:7e:3d:2a:1f:04:2c:e8:
65:91:98:8d:5a:f9:d1:72:71:24:2c:d9:c6:28:30:
ba:61:28:dd:6c:18:0e:75:f4:b2:97:fa:5f:2d:17:
4e:30:d6:98:5a:14:f3:32:fe:d1:05:2d:a1:6b:b1:
01:aa:63:e0:9b:21:07:c3:9f:fb:04:b8:5d:0b:52:
c2:e2:e9:f9:ed:db:56:ce:77:54:2f:f4:ed:75:f3:
26:c4:21:f7:6c:f6:e5:32:e0:39:6b:dc:20:aa:ff:
a8:c4:fd:01:37:1e:fc:ec:be:81:ae:f8:6d:06:55:
b2:95:21:f4:19:92:92:11:b0:8c:e5:84:af:e6:e6:
19:46:7e:73:6e:27:55:7a:e1:93:d5:7a:c3:70:85:
d6:fc:f2:07:50:c8:8b:b8:c1:ed:e8:09:ed:6c:a0:
06:bb:16:a4:96:61:fb:b8:37:b6:8c:12:a1:1f:e1:
2d:fc:62:5a:81:0f:91:f3:e5:e1:1f:eb:e8:14:75:
6a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:84:01:FE:CB:F5:91:1D:5B:83:A6:E4:62:C1:DC:0B:98:6E:55:3C
X509v3 Authority Key Identifier:
keyid:B7:76:27:CA:FE:75:57:85:75:0B:DE:5B:A4:9E:6C:10:91:BF:42:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3Ynyv51V4V1C95bpJ5sEJG_Qkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/602137-dd40-4ef9-bb0f-4457fa20bcba/1/hIQB_sv1kR1bg6bkYsHcC5huVTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/602137-dd40-4ef9-bb0f-4457fa20bcba/1/t3Ynyv51V4V1C95bpJ5sEJG_Qkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.248.0/22
Signature Algorithm: sha256WithRSAEncryption
78:40:48:ff:80:45:83:42:26:47:e6:98:ca:90:be:e7:66:43:
8e:46:e7:17:20:ce:5d:30:ac:86:85:85:46:43:13:e8:40:b0:
72:9b:35:4b:58:44:0a:03:83:83:e2:d2:a4:2a:f2:f2:73:eb:
c8:c0:07:01:88:13:06:d7:5c:26:85:d0:0e:0d:22:5c:af:ca:
54:12:16:d5:8c:1c:27:3b:d7:a3:36:4a:93:2d:d4:cb:4a:68:
af:35:ed:a2:3b:1e:e9:40:bc:d8:09:d4:0f:8a:d0:3d:91:3b:
fc:ed:aa:34:1e:38:88:ce:8a:0a:9a:e0:f2:be:e5:38:b3:a4:
43:96:35:63:c5:bd:c9:25:af:23:a1:a8:90:b2:73:da:18:95:
0f:8a:df:57:c2:2e:a7:df:6e:10:0b:c8:7d:5c:86:58:d0:bb:
34:02:3c:12:40:a7:6b:32:59:fb:71:2a:b7:19:c0:9e:04:6f:
fb:88:0d:0b:88:0c:8b:e0:f9:45:72:0f:48:19:18:d9:5d:4f:
29:86:8f:1c:63:9f:ce:75:1d:99:f8:6a:b9:8b:31:43:4c:82:
db:ef:17:ca:d8:01:4e:76:4d:f0:f1:58:6c:f3:ab:38:77:05:
6f:34:dc:44:7c:65:03:db:c6:51:1b:3d:03:03:15:7c:5c:5a:
a9:b5:53:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:31 2024 by rpki-client on console-fra.rpki-client.org