Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/RDrQgp3mjMsmQXTK-pD8E1-wJWc.roa
File: RDrQgp3mjMsmQXTK-pD8E1-wJWc.roa (raw, json)
Hash identifier: uOE74Vu1BEBuGhh1YXPbfLs3qhYpnf6NgELhHKg8Xmo=
Subject key identifier: 44:3A:D0:82:9D:E6:8C:CB:26:41:74:CA:FA:90:FC:13:5F:B0:25:67
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 01856EAFC4590336E8C5679B6E107EB19815
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/RDrQgp3mjMsmQXTK-pD8E1-wJWc.roa
Signing time: Sun 01 Jan 2023 18:54:50 +0000
ROA not before: Sun 01 Jan 2023 18:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42926
IP address blocks: 85.153.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:c4:59:03:36:e8:c5:67:9b:6e:10:7e:b1:98:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Jan 1 18:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=443ad0829de68ccb264174cafa90fc135fb02567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:bc:56:90:9f:79:ab:bd:df:f7:f2:f2:ef:4e:
61:f4:b2:30:6d:bf:f9:7a:4a:ea:e0:e0:04:20:31:
50:a1:96:40:27:74:b1:52:84:ca:df:c4:2f:11:e8:
fd:b4:e2:ef:8b:eb:cb:2f:04:41:3d:51:ef:75:2a:
99:8a:bb:b0:1a:55:1c:82:ea:06:43:da:8a:04:39:
5e:d8:bf:b5:da:c0:bf:04:14:4d:3f:62:c8:b2:97:
5d:8e:8c:3a:15:8d:5a:43:aa:89:20:26:72:62:fd:
53:10:0a:ba:66:f5:b2:80:c5:8e:32:db:e3:b8:49:
4f:94:11:bc:66:5a:13:1c:f8:6a:2d:45:fd:d3:74:
9b:9a:e0:ad:c8:a4:71:16:c6:1c:3a:a2:98:d2:67:
3b:b7:5f:9f:5a:ca:a2:a5:92:e3:85:ff:54:7f:45:
a6:f8:50:ce:12:fb:59:02:58:6b:a8:e6:56:36:a2:
8b:41:ab:43:aa:64:dc:36:1d:b2:00:34:67:e4:ef:
6c:65:b8:70:11:c4:17:57:ae:0c:6f:85:13:82:e4:
aa:e4:2e:92:da:9d:c4:d4:1a:2f:c8:7a:b9:e8:0e:
b3:84:85:5a:df:93:f8:28:62:0a:9c:54:98:a7:38:
1f:7e:d4:19:69:2b:c9:69:86:40:6c:57:ba:64:42:
f9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:3A:D0:82:9D:E6:8C:CB:26:41:74:CA:FA:90:FC:13:5F:B0:25:67
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/RDrQgp3mjMsmQXTK-pD8E1-wJWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.64.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:90:a0:01:0b:8c:c0:bf:9b:e5:d2:47:28:0e:ee:5e:5b:3e:
5d:3e:85:67:fa:03:78:82:c6:9e:e4:65:aa:e7:ba:17:33:51:
a1:00:20:3d:93:a4:3e:1f:1e:09:1b:17:bb:e6:d7:00:3a:d0:
6d:d7:64:d4:89:26:9f:56:70:0d:06:80:82:f0:10:78:95:b7:
b5:87:55:6b:f2:42:5a:38:7f:90:ea:73:59:bc:42:43:6a:03:
59:8b:45:81:1c:9c:4a:41:54:fc:be:44:eb:a8:dd:a7:f8:dc:
c3:3a:85:b4:3b:16:1c:82:47:7a:e1:a6:22:e2:b3:8c:78:f6:
41:93:a1:b0:17:c2:78:cb:ac:7e:24:af:ab:ac:70:75:77:c5:
2b:af:06:53:e2:66:ce:7a:72:09:a6:dc:35:3c:06:ac:7a:61:
8d:bf:4b:62:e8:55:46:7e:eb:0d:03:47:7e:97:fe:f5:26:3a:
a4:3a:0a:c8:98:be:7e:73:65:6b:7b:53:13:c2:17:b3:1e:ca:
15:02:f8:7b:3f:a7:6c:d5:7e:04:af:50:b0:f2:34:72:88:69:
48:1b:18:84:c9:74:0e:3d:a1:b4:1a:b4:ef:a7:00:c8:11:69:
33:3d:2b:42:53:d3:5f:c7:0c:34:85:8d:98:97:31:42:90:a4:
1b:ab:15:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:43 2024 by rpki-client on console-fra.rpki-client.org