Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/x5wdl5Pqb0OznWwFdlQl2U5gFkQ.roa
File: x5wdl5Pqb0OznWwFdlQl2U5gFkQ.roa (raw, json)
Hash identifier: s4JltncZyIORHgL/n1geJKvGcX36Rso2KgD9PtHHMuU=
Subject key identifier: C7:9C:1D:97:93:EA:6F:43:B3:9D:6C:05:76:54:25:D9:4E:60:16:44
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DC5D2079EDB7B95A4380C3D373DE6
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/x5wdl5Pqb0OznWwFdlQl2U5gFkQ.roa
Signing time: Sun 01 Jan 2023 23:14:48 +0000
ROA not before: Sun 01 Jan 2023 23:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51703
IP address blocks: 85.153.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:c5:d2:07:9e:db:7b:95:a4:38:0c:3d:37:3d:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c79c1d9793ea6f43b39d6c05765425d94e601644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:17:67:54:1a:68:26:1f:46:47:cf:c0:dc:23:
c4:31:fb:9d:f7:6d:49:6f:c0:68:49:92:10:6c:bd:
be:fb:4f:9d:bf:34:a8:fb:56:77:cc:cf:33:21:5b:
ab:ed:af:ac:5d:d2:dc:c2:5a:55:fe:96:04:86:ef:
9f:48:1c:c9:8e:e8:a8:96:82:31:8a:0d:17:54:32:
26:dc:3c:7c:cd:5a:ef:c7:b5:16:81:15:73:1e:c3:
e6:10:76:63:3d:61:a6:27:85:55:c3:cd:3f:2f:f3:
47:26:d3:8e:a1:a8:d1:e2:62:b3:bc:77:18:3c:ce:
db:d1:bb:cf:86:df:cc:d8:6d:55:fe:ef:a4:96:41:
7b:43:33:8d:61:36:fb:6b:77:4f:09:39:0d:9b:3a:
d4:07:d6:3b:42:42:ae:7c:3b:52:f2:67:f7:a3:1f:
b1:8b:02:8c:49:a1:b2:f3:62:0c:7b:cd:29:7b:a6:
e7:4d:9d:59:03:5b:b9:dd:8c:6b:0c:5f:b8:d6:6e:
ea:09:b6:e8:eb:7b:90:0b:15:3f:72:95:53:3f:22:
b2:f0:b9:d0:7f:88:b8:74:5e:a7:2f:4e:48:6c:c9:
df:bf:15:5b:be:6c:d4:7b:22:a6:26:45:49:5f:a2:
af:86:6b:a4:80:e4:6e:81:c4:b4:d6:3f:d7:2e:52:
38:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:9C:1D:97:93:EA:6F:43:B3:9D:6C:05:76:54:25:D9:4E:60:16:44
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/x5wdl5Pqb0OznWwFdlQl2U5gFkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.131.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:64:cb:b8:51:cf:4d:4f:fa:64:41:c3:be:c2:1f:51:76:16:
8d:e0:9b:53:b2:40:d3:77:91:65:7f:58:2b:8f:67:25:ec:9e:
ec:dd:34:21:8d:37:0d:e2:39:9e:51:96:fc:37:3b:88:43:c0:
5e:ab:13:d3:6f:4f:b1:4e:25:8c:a1:ec:ae:64:40:f9:3d:90:
cc:61:83:ae:01:61:d8:a3:1f:93:bf:52:21:d2:07:02:9a:9e:
7c:75:7f:6c:c3:e0:0e:6e:84:f7:b5:dd:3b:2b:14:fa:87:61:
a5:92:bb:c9:4b:c4:07:f3:93:4b:6a:81:39:47:5b:18:97:28:
67:43:6b:07:ea:cf:41:81:36:58:ee:82:9a:12:c0:d3:1c:83:
cc:fd:90:1e:3c:0c:05:f0:cf:0a:c2:77:ef:bf:56:5d:d4:87:
a3:82:c5:c6:22:ec:25:95:c0:7b:f2:86:b8:67:1e:92:16:cf:
72:fc:0b:33:6b:96:b3:9b:18:ae:6d:04:ba:15:85:c2:a1:8c:
7a:1a:ef:f6:ba:6c:c0:cb:a0:8b:81:a4:b6:67:79:1c:0c:5a:
d0:04:44:c0:82:eb:2b:3d:c5:a2:fc:93:58:30:b6:32:ff:a6:
c0:e3:a8:36:3f:a5:c5:5a:f4:98:cb:59:4f:a7:dc:18:0e:15:
3c:8e:1b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org