Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/vRSDcenpymxFhKTImoBKW8uTOM8.roa
File: vRSDcenpymxFhKTImoBKW8uTOM8.roa (raw, json)
Hash identifier: oG4gNRI7sUBSsrTcZBwjCe7jWFwR0ESE2TOyy51haek=
Subject key identifier: BD:14:83:71:E9:E9:CA:6C:45:84:A4:C8:9A:80:4A:5B:CB:93:38:CF
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 01856EAFC50121D94ABA65925280823654F0
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/vRSDcenpymxFhKTImoBKW8uTOM8.roa
Signing time: Sun 01 Jan 2023 18:54:50 +0000
ROA not before: Sun 01 Jan 2023 18:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 85.153.127.0/24 maxlen: 24
85.153.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Mar 2023 11:52:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:c5:01:21:d9:4a:ba:65:92:52:80:82:36:54:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Jan 1 18:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd148371e9e9ca6c4584a4c89a804a5bcb9338cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:09:e2:d6:17:0d:48:a5:ea:ff:3d:b6:cc:d6:
58:e7:74:2e:ba:5a:cf:b5:d8:ef:75:70:64:93:90:
f9:50:2b:7e:d3:46:1e:af:01:b7:94:6b:57:2c:47:
ea:20:08:4e:0c:95:59:55:bf:f0:67:04:26:06:ec:
8c:87:a8:e1:01:c8:68:e5:4a:9d:cc:61:18:e6:a7:
25:81:de:20:7a:c0:89:c7:a6:e1:2d:cf:8f:73:17:
e4:71:d3:1a:b4:23:47:44:89:35:c7:5f:36:72:32:
86:c4:e5:15:8d:8e:31:c0:cb:52:52:2e:db:ed:13:
ac:9a:96:e1:f9:fe:25:4c:39:9f:80:a0:cf:f8:df:
b4:4d:53:32:bb:72:ae:58:b8:04:6a:18:1c:ce:5c:
c9:2b:f6:49:ae:72:8a:b3:43:2f:f7:87:ca:ca:64:
11:3c:13:46:b9:5a:d6:b4:42:7f:ae:ba:db:4c:07:
0e:2d:bb:d2:04:3a:d2:d2:0e:41:ad:91:a7:63:79:
64:87:8d:94:07:d4:7c:1b:b4:e4:9a:b1:f5:b4:27:
61:c2:77:aa:75:76:cb:61:ec:ef:51:cd:05:ea:16:
8b:a7:1d:84:5e:d8:ee:97:ed:20:8a:72:e0:23:e6:
3c:bd:dc:17:7d:f2:b3:b7:9f:35:1b:68:fa:08:e1:
b0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:14:83:71:E9:E9:CA:6C:45:84:A4:C8:9A:80:4A:5B:CB:93:38:CF
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/vRSDcenpymxFhKTImoBKW8uTOM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.9.0/24
85.153.127.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:e6:21:40:bc:ff:2c:fd:12:3e:dd:cb:1a:ff:a3:ef:23:1e:
07:b0:ed:fc:84:63:d6:19:8f:f6:81:1a:d2:cc:ca:1f:83:c2:
24:91:6e:fc:ed:a7:60:17:a2:e1:12:96:b2:1b:df:bf:f8:96:
09:43:c9:00:e7:c7:49:1c:f1:ba:50:2c:1d:1f:2d:64:07:19:
c8:49:35:eb:88:e2:a0:de:a0:28:a7:38:91:26:7e:a2:ee:16:
be:19:ca:f3:24:71:bf:2b:86:0c:22:ec:7b:54:29:98:0a:d1:
f4:24:a8:8d:bc:4b:86:bc:f8:8a:df:30:34:36:eb:cc:be:58:
ba:52:7c:49:d9:55:09:e5:76:53:f8:ac:cc:d5:5f:55:d0:73:
28:3b:58:b4:f1:82:00:c3:61:99:5d:38:fe:74:63:f5:43:35:
77:52:e4:08:ae:0b:b9:0d:6f:79:86:00:64:83:42:89:cc:c4:
10:10:d2:12:b4:e0:af:13:f6:30:ca:79:6c:45:d0:93:e5:14:
b3:8c:9e:43:40:f0:4e:ea:1b:bb:82:8d:04:24:64:78:5f:85:
af:d7:04:3b:6d:a0:94:ca:dd:bb:4d:2a:ff:b0:ea:92:42:e6:
ef:f0:0b:33:11:a2:79:fc:53:9f:59:b6:70:e4:67:35:e6:40:
a3:d3:19:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:43 2024 by rpki-client on console-fra.rpki-client.org