Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/p1X0myaie63H5hU2VRGgHbSupDI.roa
File: p1X0myaie63H5hU2VRGgHbSupDI.roa (raw, json)
Hash identifier: dKD6p4i2TNZy/W8JjAj4VrLdaZTqEhe3iJTj2ReNZcM=
Subject key identifier: A7:55:F4:9B:26:A2:7B:AD:C7:E6:15:36:55:11:A0:1D:B4:AE:A4:32
Certificate issuer: /CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Certificate serial: 0185724C9303DE837DD8D389519FC39DE0DE
Authority key identifier: 66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/p1X0myaie63H5hU2VRGgHbSupDI.roa
Signing time: Mon 02 Jan 2023 11:44:59 +0000
ROA not before: Mon 02 Jan 2023 11:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51335
IP address blocks: 85.118.36.0/24 maxlen: 24
85.118.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:93:03:de:83:7d:d8:d3:89:51:9f:c3:9d:e0:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Validity
Not Before: Jan 2 11:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a755f49b26a27badc7e615365511a01db4aea432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:78:35:ea:b7:66:99:c8:b9:6b:b7:19:11:0b:
3a:7c:a6:83:8d:5e:5e:c2:28:aa:9e:47:53:dd:67:
c3:26:74:4e:eb:d0:90:ac:d4:67:f9:b7:09:5a:64:
e1:64:a0:4a:30:88:18:10:62:62:46:cc:35:1e:90:
5b:d4:d7:9a:50:7e:9a:78:9a:36:45:f4:7e:55:7b:
01:9c:91:00:5f:e6:7b:aa:fb:75:d3:bf:78:99:a2:
0b:a3:a0:b5:01:df:35:a1:bc:41:48:26:81:f2:a6:
df:51:2c:a7:df:6e:13:0e:81:70:2a:e7:06:68:66:
e9:a5:5a:0c:4e:53:20:fe:04:67:d5:3a:3a:5f:c2:
f4:e0:e0:bd:f4:cb:1f:30:e6:1d:d6:b7:95:80:b7:
b9:23:89:d8:7a:19:df:bb:97:e2:9d:8d:d7:91:47:
91:5c:42:b5:96:cc:e7:d2:1f:6f:f0:25:a9:f6:b7:
94:b1:4a:77:35:f0:28:6a:c0:a3:b4:26:be:f5:9c:
d1:89:db:ba:de:c7:5d:41:0c:d1:47:4c:07:a2:91:
93:c6:87:ba:be:dd:82:f9:67:86:33:40:fa:e6:62:
72:e5:d9:19:48:7a:8d:16:7c:9c:22:23:84:57:7b:
4d:2f:94:07:75:85:87:17:07:38:73:0c:7c:0f:bf:
b5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:55:F4:9B:26:A2:7B:AD:C7:E6:15:36:55:11:A0:1D:B4:AE:A4:32
X509v3 Authority Key Identifier:
keyid:66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/p1X0myaie63H5hU2VRGgHbSupDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/Zt4dnc2yXB5TLFybad-nV-MGIQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.36.0/24
85.118.39.0/24
Signature Algorithm: sha256WithRSAEncryption
97:ea:6d:9b:a8:a7:ec:81:95:65:e5:94:45:c0:22:ba:a5:8f:
01:01:23:ba:11:68:37:36:a0:de:dc:55:dd:51:b9:05:18:9d:
e5:7b:df:5d:ec:a1:16:75:ec:9b:c3:00:88:5b:f2:da:4d:0a:
55:af:26:66:1f:be:e0:31:ee:29:92:07:72:ce:c3:b2:95:eb:
5d:62:bb:68:c1:ac:ff:ec:ab:56:63:25:23:9f:ba:77:96:24:
e6:a6:b6:37:85:3b:39:a4:95:21:65:0d:8c:6b:bb:3e:6f:8e:
c0:87:7c:59:68:f5:a8:fd:75:ac:29:85:2e:0c:3a:08:21:7c:
db:26:17:3e:57:6c:9f:70:07:6d:55:6e:2f:72:72:e0:2a:fb:
cc:76:7e:f5:8a:ac:b0:20:a5:1f:67:16:5a:2c:15:fd:ba:52:
92:d9:e4:10:d6:19:e9:49:84:5f:48:b3:5f:99:65:55:ef:5a:
c2:c1:14:14:0d:86:bb:04:49:b7:2f:c0:3d:e2:7b:c5:60:99:
92:fc:e8:c0:a2:fc:93:ad:83:e4:bf:c4:b1:7b:aa:31:71:4c:
74:8d:28:73:9c:d2:48:8e:7d:b8:ea:be:35:dd:4e:5b:12:d1:
f9:2a:42:1d:e9:8f:04:3f:dd:67:9e:e9:9f:3a:78:ad:97:1b:
fc:ae:1f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:48 2024 by rpki-client on console-fra.rpki-client.org