Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/8FAJrsIDNzhOMRyd_HY0Gez7jxY.roa
File: 8FAJrsIDNzhOMRyd_HY0Gez7jxY.roa (raw, json)
Hash identifier: RviLODmPf6JKdOZeb4Y1tmHdlgL6Y/jnFaKZIX41sBE=
Subject key identifier: F0:50:09:AE:C2:03:37:38:4E:31:1C:9D:FC:76:34:19:EC:FB:8F:16
Certificate issuer: /CN=5975d519de239cf164cb94a6660c2530ceaef254
Certificate serial: 018AB1E3D2636CA46EC1C36E0EE7F7EDD3A3
Authority key identifier: 59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/8FAJrsIDNzhOMRyd_HY0Gez7jxY.roa
Signing time: Wed 20 Sep 2023 09:20:12 +0000
ROA not before: Wed 20 Sep 2023 09:20:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 85.11.163.0/24 maxlen: 24
85.11.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Sep 2023 21:13:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b1:e3:d2:63:6c:a4:6e:c1:c3:6e:0e:e7:f7:ed:d3:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5975d519de239cf164cb94a6660c2530ceaef254
Validity
Not Before: Sep 20 09:20:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f05009aec20337384e311c9dfc763419ecfb8f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d1:e4:92:66:bf:95:0f:2e:cc:71:b0:aa:5b:
65:eb:51:47:99:52:2c:16:75:54:76:f5:e6:b6:50:
bd:01:fe:19:4f:74:f5:25:78:c9:a2:65:be:18:5a:
18:57:cd:8f:b0:98:96:31:3d:c4:e4:7f:2a:06:48:
cd:ac:3d:e5:b1:26:0b:af:a8:cf:06:f0:a0:ae:cc:
26:c6:c7:9f:a2:e8:0f:cf:16:74:57:ae:b8:a3:cf:
f9:c8:9f:38:f3:57:67:9c:eb:2d:0f:c1:b0:ac:87:
92:84:97:4b:81:2e:9f:64:dd:6c:dc:39:7c:e3:df:
54:9a:77:d7:f7:6e:2e:c4:b1:b1:61:9e:91:0e:3d:
02:89:98:cd:3a:1c:4f:a1:56:ba:9a:22:fb:a9:57:
b3:46:df:2b:ca:5b:17:a6:7c:3c:18:9b:da:3f:68:
a0:c4:69:e1:79:e8:7f:88:14:66:00:ee:49:2c:69:
b7:c4:56:53:0c:e8:1a:1a:16:be:18:37:98:b8:9c:
55:0b:5a:a0:bb:da:d2:f1:8f:38:4b:6b:cc:4e:fa:
2a:4f:78:2e:ef:dc:a2:48:ed:5a:fa:7d:59:1a:52:
04:21:0b:75:62:63:55:37:33:82:7c:b3:4f:82:e1:
c8:c8:21:04:6f:d4:77:20:66:6a:94:1d:81:3d:e2:
45:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:50:09:AE:C2:03:37:38:4E:31:1C:9D:FC:76:34:19:EC:FB:8F:16
X509v3 Authority Key Identifier:
keyid:59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/8FAJrsIDNzhOMRyd_HY0Gez7jxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.11.161.0/24
85.11.163.0/24
Signature Algorithm: sha256WithRSAEncryption
68:12:0c:77:63:2f:77:f6:3e:d2:e6:70:19:0d:d5:21:6d:f8:
ce:4a:4f:2b:23:84:48:2e:92:ca:cb:05:7b:86:1e:31:ae:29:
e9:4f:60:81:a3:f6:7b:04:b3:b3:15:85:de:4e:1c:f1:32:51:
23:59:94:ab:2c:92:0d:f3:50:49:63:22:6d:b4:81:22:78:9d:
b3:68:58:9d:c5:91:ef:17:eb:d1:6b:da:83:c5:4f:2d:99:aa:
22:0d:8a:f9:b5:96:0b:e4:bf:79:8f:cf:53:46:43:7e:1a:f8:
78:6f:9d:4d:e9:fc:02:01:0a:e5:e6:6e:c8:1f:9e:cb:e6:78:
91:0d:2d:4a:fc:03:0e:99:a0:66:d6:8a:d8:47:26:b4:5c:29:
e9:30:3f:95:29:74:e8:40:ef:96:ad:2b:77:0f:46:42:af:4f:
87:81:40:3f:3c:a0:eb:e1:9e:55:38:f3:56:29:37:1c:5a:19:
58:54:d7:d6:d7:57:d0:a1:c4:d6:2d:de:4d:2b:9c:16:7a:9e:
78:2c:c7:9b:bb:d9:15:18:38:5a:b1:dd:97:52:ee:80:d7:2d:
8c:23:3d:99:41:d6:55:1f:42:f5:84:42:77:a4:a2:c7:44:36:
d6:97:8b:35:c2:c4:6a:bb:db:3b:b0:fa:1e:b0:a0:9a:6d:bd:
27:c4:8e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:56 2024 by rpki-client on console-ams.rpki-client.org