Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e116b6-3c6d-485f-afcd-a41e620ba3eb/1/xui82UHggKketQtRDaKJgbL1T1I.roa
File: xui82UHggKketQtRDaKJgbL1T1I.roa (raw, json)
Hash identifier: 9C3PWK1mTNP6IqEUDgN7U0HD5w8GQS5nFOFqIHzfPF8=
Subject key identifier: C6:E8:BC:D9:41:E0:80:A9:1E:B5:0B:51:0D:A2:89:81:B2:F5:4F:52
Certificate issuer: /CN=dcd246e1830567ab115231db775f2879d99af0a0
Certificate serial: 018F7218E70EA5B41DE04D5862FA083D7380
Authority key identifier: DC:D2:46:E1:83:05:67:AB:11:52:31:DB:77:5F:28:79:D9:9A:F0:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3NJG4YMFZ6sRUjHbd18oedma8KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e116b6-3c6d-485f-afcd-a41e620ba3eb/1/xui82UHggKketQtRDaKJgbL1T1I.roa
Signing time: Mon 13 May 2024 13:16:25 +0000
ROA not before: Mon 13 May 2024 13:16:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42314
IP address blocks: 85.114.96.0/24 maxlen: 24
85.114.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 14:21:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:72:18:e7:0e:a5:b4:1d:e0:4d:58:62:fa:08:3d:73:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcd246e1830567ab115231db775f2879d99af0a0
Validity
Not Before: May 13 13:16:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6e8bcd941e080a91eb50b510da28981b2f54f52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:97:21:19:84:10:38:f6:cd:56:e1:14:89:dd:
d2:12:82:52:06:63:5f:b8:02:d9:cc:f8:60:b5:e1:
3e:9e:d8:74:6d:bd:05:9f:b7:69:93:74:bf:58:8a:
99:cf:f8:fe:42:c4:68:fc:af:6a:77:36:7e:2a:a7:
ce:c9:b5:d0:af:ee:28:c3:cc:b6:2a:25:6f:b5:0a:
d7:0e:19:08:6f:19:a0:bb:16:24:47:8b:b9:59:a0:
1c:75:81:58:56:a2:de:74:76:68:be:ba:54:3e:a4:
3f:b5:8b:bf:dd:e0:b7:a9:75:b5:30:76:01:77:4c:
c8:a7:b7:c1:88:9b:8e:75:81:6e:28:0a:4d:e1:0d:
1b:55:f3:7a:5c:53:48:34:94:eb:1e:af:d6:9a:16:
2b:14:63:de:52:f1:8e:a5:06:7f:65:7c:ad:ba:73:
1b:7b:dc:85:cc:3e:9d:44:c8:79:92:e1:bc:f1:59:
c1:91:38:39:b8:85:c5:95:bc:7e:0a:ee:45:f2:1a:
f7:38:7c:9d:cb:4c:96:fa:71:11:2d:03:68:f7:7c:
fc:32:22:83:57:25:ee:7c:e5:34:fe:71:48:aa:66:
ae:63:57:d8:13:b2:09:b8:ff:e8:23:8b:5a:f5:9e:
57:30:e0:d2:56:8f:f7:13:d8:90:31:a5:0b:41:a5:
82:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E8:BC:D9:41:E0:80:A9:1E:B5:0B:51:0D:A2:89:81:B2:F5:4F:52
X509v3 Authority Key Identifier:
keyid:DC:D2:46:E1:83:05:67:AB:11:52:31:DB:77:5F:28:79:D9:9A:F0:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3NJG4YMFZ6sRUjHbd18oedma8KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e116b6-3c6d-485f-afcd-a41e620ba3eb/1/xui82UHggKketQtRDaKJgbL1T1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e116b6-3c6d-485f-afcd-a41e620ba3eb/1/3NJG4YMFZ6sRUjHbd18oedma8KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.114.96.0/24
85.114.106.0/24
Signature Algorithm: sha256WithRSAEncryption
34:d2:49:8a:d7:88:c1:56:bb:94:2c:87:58:30:9b:a2:d8:aa:
d7:13:4e:7b:dd:b5:13:78:cc:fb:c4:db:bb:a7:b7:9d:75:33:
09:b2:c2:b0:64:fe:f8:13:c3:42:cc:95:36:cf:b7:5a:69:85:
4c:cd:98:97:1e:4a:12:6a:2f:1f:93:17:f8:04:d8:88:62:88:
36:8d:03:81:70:62:ad:6c:32:7b:ae:3a:dd:69:50:19:4e:e9:
08:e7:db:d3:7e:73:ba:2d:1c:df:3b:63:bb:db:0c:95:76:b7:
31:26:b0:4c:ca:c4:a2:d4:d5:e3:5f:80:8c:65:12:a4:2c:b7:
33:17:cf:1b:2e:c1:0b:b8:9c:5a:d3:f5:2d:88:26:3e:3a:e0:
50:16:c9:1a:bd:82:c8:ad:24:82:b4:70:1b:74:8a:62:47:bf:
76:ea:19:81:bd:08:d2:25:c9:ee:ca:3f:89:9d:06:a7:cd:63:
b4:4a:55:12:31:40:29:60:4e:e8:76:0d:0e:35:82:e1:ad:d4:
53:0f:83:8f:8b:e4:6d:8f:c4:22:9d:25:a4:36:a1:fb:fd:10:
1c:71:07:a6:0d:32:a3:b7:48:b4:f7:a1:9b:91:7e:80:3d:64:
73:63:05:9d:24:6f:c1:cc:ce:38:18:34:12:6a:8d:71:e4:e1:
c0:5a:f9:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 17:58:38 2024 by rpki-client on console-fra.rpki-client.org