Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/9p0RAMI6OPuiWjeOtr5LsV0ohXA.roa
File: 9p0RAMI6OPuiWjeOtr5LsV0ohXA.roa (raw, json)
Hash identifier: 00NzVwpFWpOuOVQDVK0cV5p90NjoDZ2MQ27s9DgdI+0=
Subject key identifier: F6:9D:11:00:C2:3A:38:FB:A2:5A:37:8E:B6:BE:4B:B1:5D:28:85:70
Certificate issuer: /CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Certificate serial: 01879CA39F6D148D1A54FAE9BA5244FAEB8A
Authority key identifier: 4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/9p0RAMI6OPuiWjeOtr5LsV0ohXA.roa
Signing time: Thu 20 Apr 2023 03:09:41 +0000
ROA not before: Thu 20 Apr 2023 03:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25381
IP address blocks: 85.234.108.0/24 maxlen: 24
85.234.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 03:36:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9c:a3:9f:6d:14:8d:1a:54:fa:e9:ba:52:44:fa:eb:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Validity
Not Before: Apr 20 03:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f69d1100c23a38fba25a378eb6be4bb15d288570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c0:f7:34:61:ce:31:f2:a7:22:89:68:c3:23:
e8:bd:44:ed:b8:cb:be:cc:b8:89:55:6e:0a:b2:4b:
ce:86:a8:20:af:c0:eb:ae:7f:26:cf:71:a5:23:5a:
30:bd:16:08:53:45:ec:d5:9a:89:1f:91:1b:b5:82:
76:91:fe:6a:e6:0b:cf:b9:cf:8e:cf:d6:3d:0d:6a:
80:92:fc:98:ec:63:67:f7:97:3a:01:3e:dc:14:f6:
60:cd:25:55:4b:d0:17:ec:1d:cd:2a:89:2a:28:8e:
b9:68:1d:ab:c7:30:75:3c:43:89:a8:ac:0a:a3:2b:
81:0e:64:90:a2:29:1c:03:b1:af:59:87:e9:23:12:
98:55:26:48:af:4b:11:23:db:e1:d0:5d:69:f7:8a:
4e:06:1f:dd:5c:af:3d:c3:d6:1a:75:74:a0:f0:1c:
fc:3b:1a:fb:e0:e3:a0:00:dd:80:07:d4:04:ea:0f:
61:9b:cb:c6:fe:94:f9:91:3c:1f:e3:40:77:2e:2b:
27:4e:38:b3:e7:9d:ab:cd:c2:9c:53:ec:49:ea:40:
44:49:73:73:dd:96:fb:51:87:8e:57:b3:cf:8d:72:
54:bc:13:6c:ed:86:c2:e7:b7:ab:87:1d:02:70:36:
95:e9:d1:30:c2:34:d6:2a:a1:b7:04:ff:dd:9e:f9:
24:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:9D:11:00:C2:3A:38:FB:A2:5A:37:8E:B6:BE:4B:B1:5D:28:85:70
X509v3 Authority Key Identifier:
keyid:4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/9p0RAMI6OPuiWjeOtr5LsV0ohXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/TCuJw8V6PilqpAYelihAvnro8Bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.234.108.0/23
Signature Algorithm: sha256WithRSAEncryption
89:3b:31:e9:4e:af:f4:f9:3d:fc:12:61:57:11:e7:51:13:9b:
e1:22:6f:42:f5:58:a5:74:59:e5:75:10:0b:ad:41:c6:0a:ae:
39:73:7e:a6:19:72:33:8f:9e:52:9b:39:0d:26:29:36:db:2a:
f0:9b:a6:96:73:8d:c1:7b:01:7a:ec:07:80:38:00:37:77:fb:
6c:23:25:d8:b9:aa:ed:32:4f:2f:25:5c:c4:c1:6c:1d:35:df:
6e:85:cd:bd:6a:d0:e6:9e:ef:57:f4:5e:c0:4d:ef:96:a2:94:
69:09:be:43:4f:dc:7c:2e:61:21:36:76:67:61:04:a7:53:91:
fd:39:8c:ff:86:f1:46:c2:0b:9d:c2:18:a6:97:06:56:11:bd:
a7:cf:18:6d:d1:67:4f:a1:83:0f:d0:cd:4f:93:2d:06:95:0e:
51:5e:f7:11:b7:d4:93:aa:ce:86:fd:4e:9d:53:a1:23:f1:a8:
6f:a5:e9:67:74:3a:c9:f3:0a:56:34:64:9b:69:28:f1:94:32:
bc:9b:bb:93:82:74:dd:b6:36:cf:29:f7:b8:07:22:f2:0f:6a:
74:68:0f:1d:72:d3:80:d7:ca:43:03:19:bb:c1:5e:01:f1:d9:
a8:eb:0c:aa:d6:11:88:59:de:4c:61:eb:3f:42:6f:18:20:a1:
d1:cb:dc:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org