Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/MOvN1DYxxVRMBzqdYB8quITWuM8.roa
File: MOvN1DYxxVRMBzqdYB8quITWuM8.roa (raw, json)
Hash identifier: 0VjLiUDSNa7YwtNteMR+LNqfYIAU0gOvPjNDpNRS0p4=
Subject key identifier: 30:EB:CD:D4:36:31:C5:54:4C:07:3A:9D:60:1F:2A:B8:84:D6:B8:CF
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DB8C6BC0ABC2ABAE9D59DDA77AE68
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/MOvN1DYxxVRMBzqdYB8quITWuM8.roa
Signing time: Sun 01 Jan 2023 23:14:45 +0000
ROA not before: Sun 01 Jan 2023 23:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12978
IP address blocks: 85.153.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:b8:c6:bc:0a:bc:2a:ba:e9:d5:9d:da:77:ae:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30ebcdd43631c5544c073a9d601f2ab884d6b8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:71:0d:8e:29:9c:b4:99:e8:65:a0:b5:67:d7:
37:ae:eb:40:5e:8a:21:93:68:4c:28:9e:8b:b1:bb:
0c:3f:a0:6b:34:53:21:39:84:dc:cc:05:c0:4b:e9:
df:fb:49:23:27:01:7a:85:dd:25:b1:d6:84:c3:64:
85:cb:25:fe:a6:4b:5f:54:d1:fc:26:a6:b8:b5:4b:
b8:ff:ee:cf:89:94:8f:92:1a:5e:44:dc:02:78:0c:
98:5b:0c:d1:f4:1c:45:18:15:9f:3a:d1:4e:b2:ad:
4b:d7:7e:8c:75:6f:09:9d:72:79:ec:89:e9:1c:cf:
f7:03:f2:f9:0e:9c:89:ec:92:17:cc:28:d7:02:60:
8a:1e:95:24:33:b9:80:f9:98:40:0c:c7:d1:d9:61:
67:8e:8a:d8:59:e5:91:58:ff:0a:0b:f8:0f:c6:33:
31:d9:28:f0:51:4d:a0:1b:57:b4:26:f3:05:8c:64:
fd:33:2f:8b:dc:22:9e:37:f6:52:d1:cc:e4:52:0c:
6d:dc:10:1e:74:f7:61:c8:7b:78:74:80:66:e0:9e:
28:e3:9a:a4:c1:f1:3b:48:a0:46:4d:1a:d6:8a:73:
24:85:7d:55:6e:f1:4c:53:90:47:e7:e7:2c:c8:4d:
74:6c:41:6c:df:10:bb:c2:ed:e1:7d:52:35:cd:74:
d9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EB:CD:D4:36:31:C5:54:4C:07:3A:9D:60:1F:2A:B8:84:D6:B8:CF
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/MOvN1DYxxVRMBzqdYB8quITWuM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.160.0/24
Signature Algorithm: sha256WithRSAEncryption
82:f1:4f:c9:1a:28:20:c0:89:f0:10:33:e4:18:ec:cf:cc:dc:
c4:aa:44:c2:4e:18:b5:5b:3c:99:49:a5:3a:fd:77:91:b8:4b:
ef:88:40:9a:22:1a:1f:b2:99:47:1a:9e:29:72:b7:44:65:50:
1f:c3:60:67:62:71:75:c5:4e:5d:50:70:c7:1a:e3:10:96:fb:
d6:2d:1c:d5:b5:fd:a0:bd:5c:0d:59:b3:6b:02:ae:76:86:64:
3b:4a:21:87:0b:72:dd:ef:8f:de:47:98:af:e9:3b:5a:c9:4a:
3d:b9:7b:10:42:4c:e6:29:c8:70:fa:6d:09:e2:44:37:14:04:
40:6f:45:ef:3e:53:9f:8d:36:88:ea:0a:9b:ea:f7:f9:ee:05:
d3:96:e8:2f:21:d0:c1:35:57:c7:19:dd:78:90:5f:f4:ae:49:
96:6a:f5:2a:94:f5:34:38:68:a9:47:41:0e:f5:47:93:7b:cd:
9f:05:17:09:dc:ef:54:67:cd:ed:d4:f8:a6:ed:20:5a:af:c0:
d3:93:a1:35:da:bb:8b:cd:96:e4:cb:ae:14:85:67:6f:c0:49:
6e:ed:04:1c:2b:a3:f1:c2:04:f7:a1:fe:30:51:e1:37:70:2d:
a6:50:63:20:69:f8:21:1e:9e:92:c6:d4:fa:1d:32:41:76:f7:
17:01:e7:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org