Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/lF4yVKTsv4BDm6cEBF-zmfVEkk8.roa
File: lF4yVKTsv4BDm6cEBF-zmfVEkk8.roa (raw, json)
Hash identifier: mViuADHVVdcj0mD/o1NPGbAAaJs4tpqAaH1i8vjeupY=
Subject key identifier: 94:5E:32:54:A4:EC:BF:80:43:9B:A7:04:04:5F:B3:99:F5:44:92:4F
Certificate issuer: /CN=5975d519de239cf164cb94a6660c2530ceaef254
Certificate serial: 018CC801220C4F300569E69D6639FC636406
Authority key identifier: 59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/lF4yVKTsv4BDm6cEBF-zmfVEkk8.roa
Signing time: Tue 02 Jan 2024 02:29:26 +0000
ROA not before: Tue 02 Jan 2024 02:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25211
IP address blocks: 85.11.163.0/24 maxlen: 24
85.11.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jan 2024 11:08:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:22:0c:4f:30:05:69:e6:9d:66:39:fc:63:64:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5975d519de239cf164cb94a6660c2530ceaef254
Validity
Not Before: Jan 2 02:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=945e3254a4ecbf80439ba704045fb399f544924f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6a:a2:7e:45:f5:14:28:c3:33:b2:19:e2:26:
ba:22:65:ae:ee:b4:89:99:a6:c6:c8:2f:16:52:c4:
39:b8:c0:6d:04:60:ed:de:3c:38:1b:48:07:6f:3b:
b2:1d:9c:83:07:2f:bc:b7:2c:0c:50:e7:54:42:3e:
2d:16:1b:22:31:27:07:5c:7a:ee:19:f0:32:96:ef:
c2:05:bf:4a:b4:68:ec:fb:a8:f0:99:cb:1d:83:ce:
5b:47:25:02:df:bf:31:a7:a6:53:8d:c7:dc:a9:ea:
43:50:44:d6:d7:02:26:d8:34:b9:69:62:b3:26:c3:
5b:d1:64:c6:dc:9a:c9:b7:b1:45:98:1e:17:8f:51:
f8:b3:c4:1c:c9:06:29:13:80:11:5d:82:d2:0e:92:
30:b6:37:3f:23:c7:c6:19:cc:b4:90:f9:16:cf:c2:
60:f5:8e:0b:35:bb:16:74:93:c2:da:0d:70:cc:cf:
85:a3:c4:82:61:a1:fa:d7:ea:9c:2e:41:fa:cc:5e:
c8:30:d2:05:99:31:c9:bb:52:83:a6:19:6c:76:5c:
b3:5d:96:b4:0f:07:62:be:d9:57:02:0a:c4:b9:bf:
c7:47:21:43:d4:80:4d:92:79:e2:09:c7:da:55:96:
18:0a:93:03:30:f6:85:ba:bb:c1:04:8e:4c:16:a2:
f8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:5E:32:54:A4:EC:BF:80:43:9B:A7:04:04:5F:B3:99:F5:44:92:4F
X509v3 Authority Key Identifier:
keyid:59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/lF4yVKTsv4BDm6cEBF-zmfVEkk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.11.161.0/24
85.11.163.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:c5:dc:3b:04:d6:92:28:2c:00:ee:c9:32:54:29:9e:78:23:
a1:48:37:91:51:6d:0b:b2:38:8f:8a:39:10:60:4a:d9:10:2a:
dc:08:00:59:be:13:97:61:73:3b:09:cf:09:07:d6:6b:98:b1:
ed:b9:bb:3a:a5:74:06:7f:16:37:7c:34:a1:cd:eb:b6:39:20:
03:bb:92:da:05:ac:81:b2:40:bd:29:85:23:2c:fb:86:bf:7b:
10:0a:60:db:fe:c7:f9:92:a9:c2:a3:3b:73:0c:d9:a9:44:93:
7e:d8:62:31:8b:3a:6e:e8:1c:91:b5:06:ca:94:8e:18:14:5f:
a1:88:72:91:d6:83:a6:e6:54:65:23:e7:cf:6d:da:95:23:e1:
f5:71:df:7c:4c:74:a0:d1:7f:4d:51:f0:46:3e:10:9f:92:98:
61:29:f0:3b:a5:57:b2:ba:bb:30:51:d6:ed:e5:14:6d:80:c9:
e1:89:c0:c2:63:0b:fc:90:ce:d2:58:02:ca:6d:f2:72:b6:bb:
fc:3a:e0:06:2d:8b:7d:89:8c:10:fc:d4:da:14:04:8e:b0:cc:
4a:36:b0:27:dc:40:77:df:92:66:67:91:35:dd:e4:e8:a1:4b:
cb:22:ea:e6:ed:f1:7d:ac:02:92:b6:ed:8d:78:25:da:fb:a3:
82:f8:cc:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:56 2024 by rpki-client on console-ams.rpki-client.org