Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/62ckr2-WKcz4pRPQKGJKArAv-ag.roa
File: 62ckr2-WKcz4pRPQKGJKArAv-ag.roa (raw, json)
Hash identifier: 3U69UvSiBzX0ntq0AQBX5nYuRP2Mly/fhCcKmq6PbxQ=
Subject key identifier: EB:67:24:AF:6F:96:29:CC:F8:A5:13:D0:28:62:4A:02:B0:2F:F9:A8
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 0189B14B1BC141B382016EA334D8FB17ECB7
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/62ckr2-WKcz4pRPQKGJKArAv-ag.roa
Signing time: Tue 01 Aug 2023 13:30:36 +0000
ROA not before: Tue 01 Aug 2023 13:30:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 85.153.47.0/24 maxlen: 24
85.153.112.0/24 maxlen: 24
85.153.116.0/24 maxlen: 24
85.153.117.0/24 maxlen: 24
85.153.114.0/24 maxlen: 24
85.153.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 10:34:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b1:4b:1b:c1:41:b3:82:01:6e:a3:34:d8:fb:17:ec:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Aug 1 13:30:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb6724af6f9629ccf8a513d028624a02b02ff9a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:52:f3:f7:26:13:3b:f6:86:69:be:d2:78:37:
ef:cf:6e:a6:b1:e2:10:03:12:8c:c7:d6:0f:68:11:
8e:92:52:89:e0:9c:2e:87:a7:e2:03:be:9a:a9:65:
2f:6b:7f:31:7a:9d:f2:db:f5:7e:c5:bc:6f:aa:3b:
06:51:fa:9e:27:1b:54:07:98:73:38:26:5c:c4:f5:
67:c3:fa:23:71:d7:e4:bf:fc:49:8b:30:36:19:c2:
23:b6:93:88:c6:2d:5e:bd:2c:d7:48:cd:21:a6:cc:
13:4c:d4:e0:74:7e:27:7b:63:53:11:87:2f:84:e9:
84:ee:81:a1:f8:32:02:41:7f:9a:ca:4f:c6:5d:d1:
b1:5e:34:43:87:fd:7e:bd:42:49:c8:8a:a1:64:3d:
52:38:59:b2:1a:37:7c:68:14:76:02:de:49:db:dd:
14:60:ca:f5:98:c8:0d:29:57:50:f1:e8:b9:7c:05:
16:43:52:d4:9b:a6:f7:1e:64:89:bb:ee:c8:96:db:
98:6e:f6:24:73:4f:5f:f4:0f:5a:6b:32:cf:e4:d7:
95:e9:c7:15:72:21:b4:02:8b:e1:04:00:06:92:f9:
32:e3:86:66:6d:a5:67:8e:20:e8:c9:15:1b:e8:30:
82:ad:dd:c2:ec:27:de:b4:cf:dd:f3:b3:d4:cc:67:
0c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:67:24:AF:6F:96:29:CC:F8:A5:13:D0:28:62:4A:02:B0:2F:F9:A8
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/62ckr2-WKcz4pRPQKGJKArAv-ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.47.0/24
85.153.112.0/24
85.153.114.0-85.153.117.255
Signature Algorithm: sha256WithRSAEncryption
41:dd:e4:5f:ba:be:70:63:27:20:f6:16:11:86:f3:72:1c:bc:
c5:8b:35:58:9b:82:84:93:ea:e6:b8:91:0e:52:e9:4a:ea:e9:
f2:d1:76:cf:0c:8b:37:73:69:96:d4:b7:37:b2:2b:a0:05:d4:
3f:b8:f5:74:da:86:a8:87:ef:55:d7:8f:a8:e5:e5:82:60:ee:
9b:08:15:cf:ca:57:92:8e:05:0a:0e:f4:05:2e:47:5a:72:3e:
97:49:c7:a7:bd:c8:93:83:c6:7b:d5:a9:cb:a8:bc:b1:30:3d:
dc:d4:c0:72:15:2a:e1:16:5e:d1:00:15:92:d7:85:b0:c6:ef:
9f:44:53:c2:56:6b:c6:ad:4d:74:35:4e:d7:54:e2:49:81:ef:
61:73:06:86:31:6c:b6:86:e8:7a:6d:bd:fc:a0:3e:eb:b1:d5:
dc:62:a1:02:ee:a4:06:31:b0:0e:e7:f9:8e:2c:49:42:64:e5:
2e:5b:d0:3d:b8:1a:9f:ec:44:5e:3d:1e:88:cd:0f:47:2f:4a:
dc:1a:55:47:03:81:3f:37:72:d4:75:82:ca:31:bf:0e:b9:3f:
ee:96:87:5e:ab:a5:66:98:86:b2:df:1c:94:83:f5:05:f5:88:
b0:b0:d7:6a:93:0a:88:8a:20:a3:cc:c9:f6:ff:19:c8:ea:28:
79:d0:38:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:40 2024 by rpki-client on console-ams.rpki-client.org