Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/jqV9bLy5gkoIeUfe105MBxyDvfc.roa
File: jqV9bLy5gkoIeUfe105MBxyDvfc.roa (raw, json)
Hash identifier: nPETi/yE4LVIA5IUyk818VgYKirpNKiG7Iy6oPB0HA4=
Subject key identifier: 8E:A5:7D:6C:BC:B9:82:4A:08:79:47:DE:D7:4E:4C:07:1C:83:BD:F7
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 01856EAFC3EA2293EC9DC616D6FAEB0D3AB7
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/jqV9bLy5gkoIeUfe105MBxyDvfc.roa
Signing time: Sun 01 Jan 2023 18:54:50 +0000
ROA not before: Sun 01 Jan 2023 18:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 85.153.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:c3:ea:22:93:ec:9d:c6:16:d6:fa:eb:0d:3a:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Jan 1 18:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ea57d6cbcb9824a087947ded74e4c071c83bdf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8d:4d:f8:fd:72:a4:c0:0f:61:a0:49:71:e4:
3b:18:26:0e:fe:c2:c0:a9:7f:a8:7c:10:35:f3:75:
2e:16:ac:9a:37:76:1f:2d:4d:57:33:b2:5e:44:54:
a9:48:af:ce:2c:b4:7f:47:86:f8:11:3e:20:e5:d5:
5f:95:44:fe:5d:19:a3:61:cf:51:5d:35:a7:c3:9b:
ee:0f:ac:4d:1a:3d:c4:62:09:fb:31:7a:36:4c:37:
b3:ff:61:20:e7:13:60:7f:1d:7b:c1:13:2d:18:9f:
88:a7:44:b6:3f:56:c7:48:58:a6:7b:1e:5a:7e:7b:
b5:0b:e5:3c:cf:24:36:3c:84:0b:31:d2:8d:99:9d:
dc:cb:e8:00:ef:c9:e9:85:de:10:f5:90:61:45:eb:
1a:c0:63:79:12:e2:e6:64:fe:31:69:ca:2b:93:fa:
65:c4:d6:03:54:30:4a:ba:aa:4c:2f:da:d3:7d:aa:
a0:60:0e:ed:93:4d:07:6e:20:3a:98:8c:d0:f7:83:
6a:b1:c2:64:1c:2a:8e:75:5f:20:f7:f4:43:c1:ca:
fa:dd:9d:48:6a:c2:f1:81:2c:f9:f8:f2:78:7b:09:
0c:83:28:7d:fe:e5:92:10:80:20:39:38:3a:31:bd:
18:df:b6:1f:7e:56:db:d4:5b:40:fc:ba:91:0d:91:
82:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A5:7D:6C:BC:B9:82:4A:08:79:47:DE:D7:4E:4C:07:1C:83:BD:F7
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/jqV9bLy5gkoIeUfe105MBxyDvfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.11.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:8b:8c:8e:4b:93:07:c4:81:46:8f:4e:33:76:e0:74:3f:1d:
e4:74:a8:ae:d1:03:93:bd:eb:14:a9:e7:ab:a7:2e:c9:b4:47:
91:ce:3a:a3:6d:1d:ed:a9:33:64:75:53:0a:c1:f6:ce:f7:51:
09:19:0e:93:83:88:40:83:71:4c:f4:ce:19:5a:dd:ce:77:8c:
50:a4:54:2c:72:3a:4b:ea:41:d5:7e:53:65:fd:57:74:98:f3:
12:36:e3:ef:25:86:60:6c:2b:51:11:b7:9d:1b:a0:6f:e9:49:
b5:02:8a:9a:4f:47:70:7a:bd:ad:90:5d:ac:75:a6:14:dc:42:
44:0a:95:f5:23:11:84:be:4a:53:dd:1d:55:ad:b1:62:31:a3:
86:22:d6:df:83:c8:11:8f:f2:d1:a8:ee:d4:8d:04:02:82:88:
e5:ae:51:97:73:1c:9a:98:4d:c9:a4:19:92:07:b3:76:bb:db:
66:54:c5:b0:e3:2b:9e:c3:fd:19:fb:18:8f:11:b3:a5:3e:17:
dc:05:1b:df:3c:de:8c:1d:61:a2:d9:cc:49:50:a2:a8:67:f3:
80:4d:48:03:aa:91:0c:a9:b4:c7:ea:a4:4a:d7:6a:43:6e:e3:
d3:8b:75:1c:06:84:04:b8:eb:48:e1:0e:fb:89:fb:f7:55:5a:
50:ac:c4:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:40 2024 by rpki-client on console-ams.rpki-client.org