Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/Gj3xF7SCNu3dDa1vLvZAeJulEW8.roa
File: Gj3xF7SCNu3dDa1vLvZAeJulEW8.roa (raw, json)
Hash identifier: /2tyZq5rpg+CghdgWcJiJ56fC6KgTuG+/nlFTvSgPF0=
Subject key identifier: 1A:3D:F1:17:B4:82:36:ED:DD:0D:AD:6F:2E:F6:40:78:9B:A5:11:6F
Certificate issuer: /CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Certificate serial: 0185724C90E16677277F2AC62F84A3DFF420
Authority key identifier: 66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/Gj3xF7SCNu3dDa1vLvZAeJulEW8.roa
Signing time: Mon 02 Jan 2023 11:44:58 +0000
ROA not before: Mon 02 Jan 2023 11:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34783
IP address blocks: 85.118.48.0/23 maxlen: 23
85.118.60.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:90:e1:66:77:27:7f:2a:c6:2f:84:a3:df:f4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Validity
Not Before: Jan 2 11:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a3df117b48236eddd0dad6f2ef640789ba5116f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b4:68:7b:86:40:f1:cc:da:ea:1b:69:f3:04:
74:9d:62:f9:a0:1a:fe:90:3b:18:b4:eb:3c:39:1d:
81:3f:a6:68:56:ec:90:62:aa:77:ca:84:3b:ac:5d:
56:59:a3:ce:a5:65:bb:d6:40:8d:2f:ce:da:26:9e:
8b:75:07:af:ca:7b:48:06:d7:8b:da:4f:a0:ee:c6:
c0:0d:48:a8:a1:e1:b5:1a:7a:6b:bb:c4:d5:8e:ed:
d7:07:19:89:10:9c:59:b3:f9:60:f9:c5:35:90:15:
54:72:da:b9:3a:9e:9d:bc:e6:8a:e0:4b:71:2f:dd:
11:55:ba:62:7f:3d:5d:d6:34:23:f6:79:b8:74:f1:
62:d6:6b:19:15:1b:61:83:37:0c:26:3d:bf:02:19:
0c:03:ce:57:d0:bc:6d:1b:cc:e1:88:2b:7f:3e:e7:
3c:76:c7:d0:6b:ca:32:e7:95:2e:d9:34:72:4c:f9:
b4:cd:00:fc:3a:11:d2:33:8f:2e:68:4b:5d:d4:0a:
6a:fd:31:d5:3a:89:1d:5b:fb:85:77:ff:19:0e:ff:
93:16:60:5c:33:6a:f8:7f:a2:56:57:92:d5:60:c8:
5d:39:2f:05:01:2d:60:71:02:e7:48:fb:54:d3:89:
db:87:11:7e:7f:db:61:64:a1:e3:43:1a:76:77:08:
22:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:3D:F1:17:B4:82:36:ED:DD:0D:AD:6F:2E:F6:40:78:9B:A5:11:6F
X509v3 Authority Key Identifier:
keyid:66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/Gj3xF7SCNu3dDa1vLvZAeJulEW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/Zt4dnc2yXB5TLFybad-nV-MGIQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.48.0/23
85.118.60.0/22
Signature Algorithm: sha256WithRSAEncryption
13:98:e3:3a:b8:b0:a1:0a:5c:95:ba:57:88:28:56:35:4b:b7:
ac:03:e5:23:98:8e:85:3d:ab:48:d2:ed:d3:3e:90:2d:79:d6:
90:87:22:6d:76:26:f8:43:36:41:9c:66:ed:21:89:28:9e:39:
98:18:4a:cd:80:a9:83:5f:04:a1:8c:74:13:89:68:4e:3e:bc:
ac:fb:9b:d9:88:29:c0:cf:ad:ac:5b:ff:5a:5a:c5:be:ad:55:
17:6f:76:dc:d7:0b:df:c9:ee:3e:02:7c:aa:88:5b:e3:9a:66:
da:5b:bc:db:df:77:c6:7a:50:9e:a7:96:3e:fc:4e:c4:4b:4c:
1a:36:f4:a2:c3:83:10:42:b0:98:91:d8:4b:5f:4d:a9:8a:96:
37:fa:32:c4:4f:ad:f7:ff:a3:a5:d2:c1:f1:4b:cb:2a:ae:18:
f4:c9:d6:02:9c:75:56:87:f9:7a:1f:56:41:ec:41:54:d9:4f:
5f:a2:7b:30:12:0c:d7:4f:63:ec:23:9c:34:90:65:69:59:b4:
35:95:e2:ba:78:96:96:55:53:d5:2e:f2:36:f6:2c:95:93:22:
19:fb:7b:b5:d0:d0:2d:47:2e:e3:44:d9:0e:6e:48:89:76:45:
d8:4a:50:29:a5:f6:78:f1:4a:02:be:90:97:52:26:3f:ae:6f:
29:ee:8c:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:02 2024 by rpki-client on console-fra.rpki-client.org