Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/cB3ozN7ApRHPOcDjAvifqfPYYWQ.roa
File: cB3ozN7ApRHPOcDjAvifqfPYYWQ.roa (raw, json)
Hash identifier: h8H7z7GAkazPc2fxMbtHjhVsgb40hHZWfqcUzf1rKDQ=
Subject key identifier: 70:1D:E8:CC:DE:C0:A5:11:CF:39:C0:E3:02:F8:9F:A9:F3:D8:61:64
Certificate issuer: /CN=5975d519de239cf164cb94a6660c2530ceaef254
Certificate serial: 0187EA84EA92EB513B83F1A21D072776A6BA
Authority key identifier: 59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/cB3ozN7ApRHPOcDjAvifqfPYYWQ.roa
Signing time: Fri 05 May 2023 06:06:32 +0000
ROA not before: Fri 05 May 2023 06:06:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 85.11.163.0/24 maxlen: 24
85.11.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Sep 2023 13:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ea:84:ea:92:eb:51:3b:83:f1:a2:1d:07:27:76:a6:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5975d519de239cf164cb94a6660c2530ceaef254
Validity
Not Before: May 5 06:06:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=701de8ccdec0a511cf39c0e302f89fa9f3d86164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0b:7f:f9:53:2b:1f:6a:28:37:1a:a0:47:ed:
64:d7:23:ed:a2:88:f4:e1:01:58:d6:6e:cb:7c:4f:
61:1a:e9:01:8c:72:9e:77:41:3d:07:72:23:b7:1c:
c6:28:7e:a2:ab:bd:6b:89:70:b0:90:64:ea:10:75:
d1:94:e8:0b:15:4a:ee:f9:e0:d7:89:78:16:e0:e9:
3e:41:6a:ce:e3:7a:a5:62:8b:19:9a:05:69:e8:f8:
72:a2:72:1c:e5:e9:e3:3b:cf:ef:73:cb:4f:c9:50:
d6:dc:c7:56:6e:de:c0:98:08:d9:64:47:87:97:8d:
f9:fc:6a:75:20:db:5d:36:ba:5d:f1:56:87:88:33:
2a:28:1c:2a:20:c8:40:d3:d0:4f:ae:c9:f3:9a:3d:
17:98:d9:50:60:1f:6c:7d:e6:0f:10:85:b5:e2:2a:
2e:8e:40:f8:6c:55:19:18:ec:bf:9d:e7:1f:45:52:
62:55:56:23:ae:0d:81:2a:fd:e7:92:d9:29:94:e0:
a4:fe:de:26:62:fd:ff:05:8e:29:12:c7:0c:ce:03:
4d:96:5e:3f:5e:72:16:48:33:36:36:da:c5:c5:13:
db:7b:f8:28:7e:02:42:3e:57:ce:27:07:b5:a6:5d:
c3:9b:6d:56:4e:e8:1b:d9:00:c1:ba:1b:2f:9b:22:
52:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1D:E8:CC:DE:C0:A5:11:CF:39:C0:E3:02:F8:9F:A9:F3:D8:61:64
X509v3 Authority Key Identifier:
keyid:59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/cB3ozN7ApRHPOcDjAvifqfPYYWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.11.161.0/24
85.11.163.0/24
Signature Algorithm: sha256WithRSAEncryption
79:5c:8a:f5:cc:5e:5f:24:ea:b0:4d:19:b3:a1:ab:74:9f:3e:
d0:30:2a:95:2a:80:52:79:f8:2e:b0:43:ae:08:54:3f:a9:a4:
5c:57:8d:c2:c7:94:87:f3:2c:0e:f7:11:25:92:6a:b7:7c:b2:
59:f8:6d:e8:4e:1b:79:67:fb:c1:fe:77:20:e6:7d:87:94:23:
83:57:76:2b:0e:35:5b:c7:26:4f:be:0f:3a:54:82:24:4d:e6:
ee:28:99:47:59:63:8c:68:0d:bf:d1:f7:90:de:4b:d5:e0:a8:
1c:40:ee:db:66:8c:c2:73:78:5a:ab:24:78:71:3c:71:54:01:
39:6d:48:b0:46:e1:e0:54:32:c8:1d:15:9b:5a:b3:53:a7:da:
a8:b7:8f:a5:af:da:91:32:a5:a4:fc:62:64:fa:9f:fd:e0:dc:
6f:d0:8b:06:16:40:96:65:ca:2e:91:b0:2b:b4:7b:5f:74:73:
71:ef:d9:a5:54:e1:86:b2:d9:1d:81:33:be:ef:f1:18:11:fa:
0d:66:c4:2f:98:34:f9:2b:73:ca:09:d0:f9:46:4f:46:19:a0:
0c:b0:2d:bd:ba:a9:02:c5:67:20:7c:be:a5:6c:2d:08:c4:b7:
90:de:c1:38:21:14:b8:2c:4c:fd:eb:a7:32:5a:27:0d:dd:5d:
b1:61:ad:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:27 2024 by rpki-client on console-fra.rpki-client.org