Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/B_I_vSnjqPVcI0EK2fLedznUMZw.roa
File: B_I_vSnjqPVcI0EK2fLedznUMZw.roa (raw, json)
Hash identifier: /4ByWjXK4jXsRos4HKW5rLnlBxArIlHn51iyzSdS/ZU=
Subject key identifier: 07:F2:3F:BD:29:E3:A8:F5:5C:23:41:0A:D9:F2:DE:77:39:D4:31:9C
Certificate issuer: /CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Certificate serial: 018EC84A77128BA04FBCC09E13AE2C517E18
Authority key identifier: 4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/B_I_vSnjqPVcI0EK2fLedznUMZw.roa
Signing time: Wed 10 Apr 2024 13:55:06 +0000
ROA not before: Wed 10 Apr 2024 13:55:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25381
IP address blocks: 85.234.108.0/24 maxlen: 24
85.234.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 08:04:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c8:4a:77:12:8b:a0:4f:bc:c0:9e:13:ae:2c:51:7e:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c2b89c3c57a3e296aa4061e962840be7ae8f018
Validity
Not Before: Apr 10 13:55:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07f23fbd29e3a8f55c23410ad9f2de7739d4319c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b9:86:a7:cf:19:6c:87:72:b0:73:ec:20:59:
4d:e1:25:5c:cb:e4:9b:05:33:2a:56:85:c0:aa:90:
14:e7:d4:5e:ba:4a:34:c1:3e:32:59:ff:12:cc:28:
3e:3c:cb:0e:c2:74:ae:95:73:ae:18:a4:f6:a1:32:
d1:cf:20:11:8b:f6:5d:eb:9a:6a:08:66:a7:ec:ff:
9c:5c:84:60:a2:78:0a:c9:08:f7:23:ea:4b:29:de:
e0:3b:67:1c:b6:86:17:7f:6f:1b:79:4c:db:e7:14:
e1:49:ac:64:1b:07:15:99:35:41:fb:21:31:a6:43:
ab:1c:95:ef:d2:c4:61:cb:20:74:88:05:c2:b4:68:
21:cd:d4:56:c5:2f:6b:5b:cb:bb:60:5c:18:c4:68:
a5:d1:09:28:e4:ef:43:7b:eb:02:44:6e:c2:bf:2b:
68:87:f8:f9:9f:3d:d1:00:c0:f7:e4:5e:ec:dd:72:
13:4d:3c:6c:d2:47:66:ee:66:73:e3:a2:f6:e8:64:
1e:56:c3:38:4d:02:66:84:e3:96:81:92:c4:49:e2:
a9:16:3f:5c:17:05:77:42:8b:a3:6d:88:2d:28:7e:
02:ec:42:10:e9:f3:bc:bc:1d:21:d8:a4:ed:89:b4:
e6:64:2d:6a:c9:3b:8b:26:c7:ac:4a:b0:ec:75:89:
2a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:F2:3F:BD:29:E3:A8:F5:5C:23:41:0A:D9:F2:DE:77:39:D4:31:9C
X509v3 Authority Key Identifier:
keyid:4C:2B:89:C3:C5:7A:3E:29:6A:A4:06:1E:96:28:40:BE:7A:E8:F0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TCuJw8V6PilqpAYelihAvnro8Bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/B_I_vSnjqPVcI0EK2fLedznUMZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/72155a-d109-4c2d-b974-1128e5ce6a5b/1/TCuJw8V6PilqpAYelihAvnro8Bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.234.108.0/23
Signature Algorithm: sha256WithRSAEncryption
75:00:26:84:21:72:45:6b:6f:52:11:8c:ab:0b:43:8d:3e:3c:
88:5e:34:43:ae:7d:f7:02:04:dd:91:df:47:ab:06:73:1c:3c:
11:e5:73:d6:15:a5:08:0e:3e:7f:72:a3:45:57:b1:4e:cc:b5:
e0:9c:10:40:5a:c1:67:ba:ae:da:9d:25:ec:f5:e8:10:85:36:
4a:01:ca:ca:31:fc:5e:b5:d1:05:31:05:5f:c1:c7:00:36:9c:
c6:b2:d0:b7:cc:b9:4a:8f:b3:c4:c2:f9:2e:18:aa:f0:a0:da:
00:9f:84:3d:3b:e3:14:c9:09:dc:08:79:f0:22:76:39:d5:ad:
b4:c5:22:72:09:f7:52:ab:8e:a8:23:3d:34:15:c9:17:f7:10:
f3:20:54:81:b5:84:de:49:c1:ba:9e:b3:ba:40:a8:09:ca:59:
92:2d:30:a6:b9:60:ab:e4:3c:00:87:d2:0f:73:a7:82:45:2c:
58:1f:47:ae:29:6a:ef:65:a2:b4:62:b6:f1:6a:3a:40:04:ae:
20:45:ae:6a:dd:c8:e9:c7:0b:26:db:a8:1e:7b:d1:70:14:ad:
50:f4:2f:e5:d2:77:99:0e:43:42:7b:14:72:c8:b6:88:c5:67:
40:0c:10:82:88:ae:d8:bb:dd:cf:34:d7:7b:55:0e:49:27:a6:
46:c7:f8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org