Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/Rg5ZbdzRojIW-jSRDokg8FYV-iI.roa
File: Rg5ZbdzRojIW-jSRDokg8FYV-iI.roa (raw, json)
Hash identifier: Ly3VXMQVSYgrKffAZXqFr9xcSnvJ1x9tmGWJPS4P7Kc=
Subject key identifier: 46:0E:59:6D:DC:D1:A2:32:16:FA:34:91:0E:89:20:F0:56:15:FA:22
Certificate issuer: /CN=5975d519de239cf164cb94a6660c2530ceaef254
Certificate serial: 018AB1E5775B7C56E097F0047447A2AA3635
Authority key identifier: 59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/Rg5ZbdzRojIW-jSRDokg8FYV-iI.roa
Signing time: Wed 20 Sep 2023 09:22:00 +0000
ROA not before: Wed 20 Sep 2023 09:22:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16589
IP address blocks: 85.11.167.0/24 maxlen: 24
85.11.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Sep 2023 08:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b1:e5:77:5b:7c:56:e0:97:f0:04:74:47:a2:aa:36:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5975d519de239cf164cb94a6660c2530ceaef254
Validity
Not Before: Sep 20 09:22:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=460e596ddcd1a23216fa34910e8920f05615fa22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ca:d1:0d:56:96:92:a0:0c:5c:37:8c:c0:8b:
b2:11:6d:bd:99:fd:cd:5b:1f:62:e0:d2:3b:39:34:
74:5c:fd:dc:1c:98:08:38:9b:29:98:6b:24:ef:f4:
78:05:36:70:cf:ac:7f:69:93:9a:0e:6c:03:3e:c6:
36:45:19:7d:51:12:06:6a:c0:ca:e1:a2:75:d1:09:
cf:8f:6f:6e:4d:b0:31:58:ff:eb:4b:34:9c:e6:bb:
86:a8:c5:42:e8:10:aa:6d:54:63:5c:7f:a4:8e:fe:
af:8b:42:1a:67:c3:78:0c:ca:dd:0f:ce:17:cf:8c:
66:37:a0:60:e0:95:59:f6:aa:b3:6f:90:14:b1:24:
eb:f8:d8:b7:e7:0a:bb:b6:6e:26:d1:58:75:26:55:
11:61:14:a1:cc:00:5b:96:15:18:cc:6a:21:01:91:
c1:28:76:1f:eb:97:b8:87:30:27:de:5b:b2:e6:f6:
04:d4:98:d2:f3:5f:4e:37:a9:ca:9d:da:0d:df:d8:
bc:13:4a:41:d8:07:2f:ad:04:a7:41:93:92:4b:a8:
43:d4:90:ec:fe:47:af:af:8d:a4:a4:39:40:30:03:
19:c6:14:87:e4:70:07:b4:b3:24:86:dc:4e:73:29:
9c:05:8d:ce:60:c4:8b:65:f2:d4:68:b0:f8:1c:6d:
b6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0E:59:6D:DC:D1:A2:32:16:FA:34:91:0E:89:20:F0:56:15:FA:22
X509v3 Authority Key Identifier:
keyid:59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/Rg5ZbdzRojIW-jSRDokg8FYV-iI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.11.167.0/24
85.11.190.0/24
Signature Algorithm: sha256WithRSAEncryption
99:13:ae:b4:9e:77:8e:a1:14:7a:6b:0c:c6:6c:50:bf:cc:b3:
2f:d6:ef:55:86:a4:61:e7:8b:a2:36:ef:d6:57:c4:0f:42:bd:
93:8a:41:b0:c5:f7:6e:93:23:18:c6:ea:53:c0:88:4b:e9:50:
39:a0:92:82:45:d7:34:a0:41:a8:d1:20:e2:27:cf:1b:5f:a2:
56:e8:fc:f4:d6:28:9c:f5:62:f4:87:3d:4b:09:08:fa:ce:af:
e9:99:92:06:32:d6:56:38:64:50:3b:9f:dd:87:e2:eb:e6:03:
e6:0d:42:30:9f:50:f2:2a:8f:96:8e:97:af:ad:37:4a:20:82:
c5:1b:09:d3:71:df:9a:b7:c6:7c:30:0c:c6:95:6c:fd:66:3f:
ad:4e:22:ca:1f:ac:09:db:92:8e:0b:fa:0e:b0:12:d6:f6:65:
97:26:cb:16:73:4a:50:17:dd:a9:5f:c1:86:03:15:96:10:3b:
df:ad:50:52:e6:9b:e3:80:01:66:80:db:6e:f9:bd:81:b5:ed:
31:dc:8a:e4:93:fd:43:8d:34:fa:13:6e:e6:2a:ec:fa:43:59:
6e:26:aa:af:a4:bc:b3:b7:df:23:f3:68:f3:f3:f5:fd:82:97:
c8:47:53:4a:44:bc:b2:ea:be:fa:1f:6a:1b:46:38:07:bd:74:
0a:d1:94:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:27 2024 by rpki-client on console-fra.rpki-client.org