Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/kJ58x0cx-DxE-nNN1Z975s80O8E.roa
File: kJ58x0cx-DxE-nNN1Z975s80O8E.roa (raw, json)
Hash identifier: k6LqZ4i8vcLVheMpxqXxYEMKuM7njU53ZmwP1l8RPuk=
Subject key identifier: 90:9E:7C:C7:47:31:F8:3C:44:FA:73:4D:D5:9F:7B:E6:CF:34:3B:C1
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01867E3A5406860ED4AC7243F251CFA4D9EF
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/kJ58x0cx-DxE-nNN1Z975s80O8E.roa
Signing time: Thu 23 Feb 2023 12:23:17 +0000
ROA not before: Thu 23 Feb 2023 12:23:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61418
IP address blocks: 85.153.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 05:25:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7e:3a:54:06:86:0e:d4:ac:72:43:f2:51:cf:a4:d9:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Feb 23 12:23:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=909e7cc74731f83c44fa734dd59f7be6cf343bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:70:e3:74:a7:0b:a3:ed:7e:ae:31:b6:6d:ea:
2d:c4:2f:74:82:31:d0:a5:74:9f:ee:11:c4:b5:98:
73:0f:d9:34:af:eb:fa:7b:8a:4f:be:9c:6d:e3:0d:
4f:d4:f4:db:97:d7:06:a9:c7:48:c8:4c:87:de:a6:
b0:2d:78:cf:bd:19:90:ce:31:03:1f:0e:f3:5d:2f:
42:fa:78:25:fa:13:c7:2d:69:21:84:f8:f7:eb:1e:
22:36:28:2e:aa:35:e2:00:7d:8c:82:75:fe:0d:3a:
49:07:08:0a:a3:1b:a0:08:59:39:16:81:a3:f4:ac:
4d:06:48:6f:66:ff:4c:44:40:43:7b:57:82:a7:a0:
64:51:19:f6:d2:93:99:fe:0a:fc:f6:d6:f5:2d:73:
d6:d9:e7:da:d5:46:61:98:9e:61:ca:d3:1f:ee:a8:
d5:2c:5b:b4:a6:ba:66:65:ae:72:57:c0:4e:d8:7b:
3b:a3:aa:97:1e:81:62:41:d6:6e:34:c9:1c:c5:2f:
12:e6:a4:ff:27:4a:ac:6d:e1:cf:87:9e:d0:87:c4:
22:be:90:59:7a:c6:20:5a:29:0f:7d:e4:10:13:a1:
04:63:ff:ab:1c:d3:47:f5:f6:1f:16:8b:2a:c9:68:
58:12:3c:00:9c:a8:04:e7:b0:6f:29:0f:ab:33:f0:
20:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:9E:7C:C7:47:31:F8:3C:44:FA:73:4D:D5:9F:7B:E6:CF:34:3B:C1
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/kJ58x0cx-DxE-nNN1Z975s80O8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.172.0/24
Signature Algorithm: sha256WithRSAEncryption
25:80:2e:01:b6:17:23:7b:67:d9:9e:8d:5e:ad:49:db:9c:8a:
1e:f1:ee:0e:0c:a0:2e:94:be:b8:f2:10:b3:86:db:aa:dd:46:
4f:bd:1d:b2:e0:ed:59:91:86:87:68:b3:19:e7:1a:db:98:aa:
46:47:93:3a:18:c9:38:6b:af:1e:9d:3d:dd:47:d5:3e:90:da:
5c:b6:87:40:75:12:25:07:0a:c2:21:50:4d:46:2d:0b:be:8f:
40:c4:25:3f:9e:29:74:3d:be:a6:13:de:4e:fa:86:ba:56:98:
19:70:56:d8:e3:57:07:b0:5a:38:4f:3c:e0:1c:69:a7:ef:b8:
43:83:f3:4c:08:29:78:48:12:9d:f0:3b:f6:46:78:d2:69:e4:
64:6f:da:aa:93:17:ee:e0:ab:84:17:33:1a:9d:7d:b9:e3:e3:
8e:f4:d6:58:ba:39:20:dd:41:20:ff:66:e0:ba:cd:de:41:e2:
9c:23:d2:8f:4c:a2:af:32:b5:c3:a2:1e:7a:d3:3d:a1:f6:67:
bb:4a:1f:d2:93:b1:fe:a3:03:c7:66:ff:c2:db:86:97:ce:01:
c9:29:71:47:eb:74:84:05:4d:f1:4f:3f:17:d7:09:b8:22:4b:
6f:7c:6b:37:ed:73:cd:a8:4d:4b:9b:b3:11:b3:18:0f:2c:41:
da:7b:c5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org