Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/c0a326-88e1-42b4-9d56-0921d1bbf349/1/ruR55Tb_d9_PmuIkiz2GYcd4QDA.roa
File: ruR55Tb_d9_PmuIkiz2GYcd4QDA.roa (raw, json)
Hash identifier: Lr7p9ZuF5mKT0Rz1O6HttrVol0/yGXxxntGydavuOgQ=
Subject key identifier: AE:E4:79:E5:36:FF:77:DF:CF:9A:E2:24:8B:3D:86:61:C7:78:40:30
Certificate issuer: /CN=1e02b2489f4713962d105112b25276eb81f1ac90
Certificate serial: 018CC9BC33594896B0E43CDAD70252D86259
Authority key identifier: 1E:02:B2:48:9F:47:13:96:2D:10:51:12:B2:52:76:EB:81:F1:AC:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgKySJ9HE5YtEFESslJ264HxrJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/c0a326-88e1-42b4-9d56-0921d1bbf349/1/ruR55Tb_d9_PmuIkiz2GYcd4QDA.roa
Signing time: Tue 02 Jan 2024 10:33:23 +0000
ROA not before: Tue 02 Jan 2024 10:33:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396982
IP address blocks: 85.208.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 13:37:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:33:59:48:96:b0:e4:3c:da:d7:02:52:d8:62:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e02b2489f4713962d105112b25276eb81f1ac90
Validity
Not Before: Jan 2 10:33:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aee479e536ff77dfcf9ae2248b3d8661c7784030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:69:fe:6e:e9:0c:24:5b:89:e8:c7:4b:b4:01:
d9:e2:41:ab:21:56:99:9a:2f:35:be:40:40:63:e6:
b8:e9:0e:78:b3:0d:7d:d7:34:41:07:37:ab:f6:71:
12:24:ba:a1:22:4f:ad:32:89:22:9b:26:98:7a:79:
b9:f2:9e:96:a4:8d:c3:ec:f4:31:d5:0c:2b:a2:20:
a4:4e:be:d9:d5:21:8f:05:41:e1:89:7d:79:43:db:
ef:16:8e:65:8b:aa:cb:af:e7:3a:f6:bb:3d:17:8d:
c9:b3:ff:e1:d2:67:86:a3:bd:76:17:35:f8:8b:ba:
d0:73:55:52:2b:44:c0:64:fd:2c:e6:76:3a:b3:81:
dd:95:cc:ab:6c:b2:ce:ea:eb:a9:69:2e:80:c2:4c:
e1:41:c9:c3:20:17:4f:c0:9b:e2:99:7b:01:75:b7:
d9:96:2d:6a:fe:60:f0:26:68:77:4e:22:09:53:4d:
9d:60:80:bd:84:60:08:f1:6c:a4:19:71:ed:2d:db:
d2:7e:3c:43:e9:29:67:19:a5:52:c3:96:7b:05:54:
d4:65:03:6e:29:0c:10:cb:9c:77:54:d0:3a:4a:1c:
38:05:1f:c4:60:58:43:31:1c:3c:6b:6b:11:3a:62:
e6:7e:ff:ad:a2:0d:e8:9d:fd:c5:e4:47:bc:9c:47:
13:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E4:79:E5:36:FF:77:DF:CF:9A:E2:24:8B:3D:86:61:C7:78:40:30
X509v3 Authority Key Identifier:
keyid:1E:02:B2:48:9F:47:13:96:2D:10:51:12:B2:52:76:EB:81:F1:AC:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgKySJ9HE5YtEFESslJ264HxrJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c0a326-88e1-42b4-9d56-0921d1bbf349/1/ruR55Tb_d9_PmuIkiz2GYcd4QDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c0a326-88e1-42b4-9d56-0921d1bbf349/1/HgKySJ9HE5YtEFESslJ264HxrJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.67.0/24
Signature Algorithm: sha256WithRSAEncryption
08:17:21:36:b1:bc:d0:e0:31:28:c2:c5:77:2f:75:8d:b4:62:
df:5f:24:df:93:12:5d:9a:9a:3e:30:21:a9:1e:21:c6:e7:fa:
67:95:51:f3:02:88:d5:36:07:83:7d:f5:74:eb:c2:6c:f2:a7:
39:31:98:b1:8b:25:ef:7e:19:9a:fd:05:00:c2:4d:5c:41:e4:
f7:9d:c5:6c:76:dd:18:43:72:95:8b:46:9f:57:2c:76:5d:3c:
37:09:e7:b5:ae:f7:fe:9d:bc:04:8b:03:7a:6a:e5:bd:7b:e8:
39:27:ed:ae:8e:6f:01:35:72:54:37:37:bd:cb:d1:2a:90:c0:
20:40:72:0d:7b:4b:9a:16:5e:ca:f7:1c:c9:a3:6c:96:b8:d7:
c6:87:ec:f9:41:da:01:69:24:ca:0c:fb:19:7a:91:57:eb:51:
a2:90:6a:50:4d:4e:cb:fa:6a:f2:99:d0:44:69:5a:3b:12:a9:
e1:65:95:9d:98:7a:6c:99:38:ac:6d:0a:aa:82:7f:5e:a3:48:
de:e1:64:61:eb:94:70:c7:45:5f:59:71:e4:ee:bd:dd:1a:94:
14:b9:d0:1b:60:e8:60:03:45:7c:e2:bb:01:91:a6:a1:c9:65:
ff:96:a9:e0:e5:fc:16:f9:7b:81:de:d2:fd:4c:6d:c1:b3:59:
01:2a:b3:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 17:17:06 2024 by rpki-client on console-ams.rpki-client.org