Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/tP9hrMR8Hru1CV97Etbz-wHjBbs.roa
File: tP9hrMR8Hru1CV97Etbz-wHjBbs.roa (raw, json)
Hash identifier: ecgEpN4DgBQqOIGASDrUD91OheluJAXqlUVDT1w64Pg=
Subject key identifier: B4:FF:61:AC:C4:7C:1E:BB:B5:09:5F:7B:12:D6:F3:FB:01:E3:05:BB
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 01865ECE82C12DBE3C052775886AB160EE4C
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/tP9hrMR8Hru1CV97Etbz-wHjBbs.roa
Signing time: Fri 17 Feb 2023 09:57:17 +0000
ROA not before: Fri 17 Feb 2023 09:57:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 85.153.76.0/22 maxlen: 22
85.153.96.0/22 maxlen: 22
85.153.112.0/24 maxlen: 24
85.153.116.0/24 maxlen: 24
85.153.117.0/24 maxlen: 24
85.153.114.0/24 maxlen: 24
85.153.115.0/24 maxlen: 24
85.153.16.0/22 maxlen: 22
85.153.22.0/24 maxlen: 24
85.153.23.0/24 maxlen: 24
85.153.20.0/24 maxlen: 24
85.153.21.0/24 maxlen: 24
85.153.31.0/24 maxlen: 24
85.153.30.0/24 maxlen: 24
85.153.28.0/24 maxlen: 24
85.153.44.0/24 maxlen: 24
85.153.47.0/24 maxlen: 24
85.153.45.0/24 maxlen: 24
85.153.46.0/24 maxlen: 24
85.153.57.0/24 maxlen: 24
85.115.206.0/24 maxlen: 24
85.115.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Mar 2023 11:52:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5e:ce:82:c1:2d:be:3c:05:27:75:88:6a:b1:60:ee:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Feb 17 09:57:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4ff61acc47c1ebbb5095f7b12d6f3fb01e305bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ae:05:65:b0:75:45:8c:e8:2a:f9:df:16:16:
b5:45:65:95:3e:90:db:2f:0f:ad:0c:3d:f2:16:c3:
7d:97:85:75:17:60:96:be:58:93:c2:a5:2a:56:95:
b8:d6:af:b1:00:d0:63:76:a8:27:00:b9:4f:47:ef:
70:74:b9:99:e4:d5:22:66:c8:dc:79:9b:b1:33:c5:
27:bc:42:6e:6f:2f:a8:fd:fa:97:59:5d:c6:a8:e0:
fd:f1:fa:1a:66:1f:fc:a6:bd:8d:67:c0:27:ef:ce:
16:44:7e:c8:6b:b8:82:24:90:00:36:a6:44:1c:46:
8f:ae:f6:f8:79:0f:d5:58:d9:cc:dd:90:b8:be:05:
96:d1:36:a5:df:0d:61:1a:c5:78:72:d1:44:4d:62:
ef:59:1b:33:4b:c9:00:9d:9c:80:5a:ef:4b:ba:0b:
00:83:d0:db:2e:8c:80:3b:bc:d0:7e:4f:8a:66:3f:
00:32:f5:df:20:da:fa:78:36:c3:29:4e:e7:0e:c3:
72:eb:df:59:33:49:a9:d6:a5:21:07:11:16:0a:d9:
ef:7a:5e:6d:dc:7e:0b:f8:d2:80:ab:1b:7c:cc:6e:
16:3d:0b:18:72:40:b7:33:18:24:40:ce:c5:b7:e7:
3b:be:06:b7:26:c1:49:33:2c:02:52:07:84:fa:19:
b7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:FF:61:AC:C4:7C:1E:BB:B5:09:5F:7B:12:D6:F3:FB:01:E3:05:BB
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/tP9hrMR8Hru1CV97Etbz-wHjBbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.205.0-85.115.206.255
85.153.16.0/21
85.153.28.0/24
85.153.30.0/23
85.153.44.0/22
85.153.57.0/24
85.153.76.0/22
85.153.96.0/22
85.153.112.0/24
85.153.114.0-85.153.117.255
Signature Algorithm: sha256WithRSAEncryption
95:7c:71:4c:c2:4e:e6:47:73:7b:11:7b:ba:a9:4c:de:86:d6:
5e:3f:ab:06:b4:e7:e1:9d:12:69:3c:e1:f4:77:3d:8f:b1:69:
e6:26:57:04:27:fb:8f:db:05:ad:a6:1d:f4:eb:71:01:20:f7:
66:50:f8:55:86:23:71:ac:66:ef:2f:b0:f9:99:d1:bd:aa:d6:
3a:ea:3b:cc:df:41:04:1b:fa:76:20:7d:f9:22:f3:6e:5b:a7:
40:65:45:af:d9:b4:fd:2b:23:eb:da:3e:a3:ee:3b:a0:5b:70:
cf:e7:bc:fc:c5:5d:4d:40:4e:bc:42:85:8e:b7:ac:d5:5b:52:
2b:48:f7:be:81:a1:7b:71:d4:1c:5f:82:84:c9:da:ab:99:c7:
7d:53:3e:81:fb:2c:f1:35:5e:45:a4:9b:37:87:4d:5d:7c:f9:
7a:9a:64:58:d7:b5:d1:84:59:1d:99:74:76:ca:4d:7b:e1:c4:
e1:1b:e3:2e:1d:ce:6b:1a:31:72:80:27:a0:37:b7:e4:17:09:
6a:0b:7b:d9:a5:0a:fb:c8:c0:f3:49:aa:ae:43:d5:15:af:79:
a4:1e:71:41:23:e1:60:a2:4d:67:ad:e5:4c:03:0d:3b:ac:70:
fc:e4:57:a5:6c:03:6b:9d:29:6a:a8:30:83:1e:ce:02:01:14:
03:0d:79:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:43 2024 by rpki-client on console-fra.rpki-client.org