Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/29199f-f6cc-448a-bfd4-581db87c821e/1/p1jnu9B50xDimw3_sUPFrt1JivY.roa
File: p1jnu9B50xDimw3_sUPFrt1JivY.roa (raw, json)
Hash identifier: ZMUtMbESwViKOBWmGsJ5yLNh0wwVNdJls/E1S+HTHJ8=
Subject key identifier: A7:58:E7:BB:D0:79:D3:10:E2:9B:0D:FF:B1:43:C5:AE:DD:49:8A:F6
Certificate issuer: /CN=17dbd5acf1f9c75d18a1f75031114c48f0b23363
Certificate serial: 0188D88217C211CF0AF530225BC63B8E0EBB
Authority key identifier: 17:DB:D5:AC:F1:F9:C7:5D:18:A1:F7:50:31:11:4C:48:F0:B2:33:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9vVrPH5x10YofdQMRFMSPCyM2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/29199f-f6cc-448a-bfd4-581db87c821e/1/p1jnu9B50xDimw3_sUPFrt1JivY.roa
Signing time: Tue 20 Jun 2023 11:13:04 +0000
ROA not before: Tue 20 Jun 2023 11:13:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42985
IP address blocks: 85.116.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:82:17:c2:11:cf:0a:f5:30:22:5b:c6:3b:8e:0e:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17dbd5acf1f9c75d18a1f75031114c48f0b23363
Validity
Not Before: Jun 20 11:13:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a758e7bbd079d310e29b0dffb143c5aedd498af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a6:dc:8c:fe:70:04:e3:29:12:3b:06:e3:c2:
6a:61:27:8b:67:43:e7:b8:77:25:35:ee:93:ae:82:
42:84:0b:9f:40:c9:0e:56:79:22:42:b8:a5:86:df:
d6:e7:ad:bb:3e:4e:9e:85:42:15:39:cb:01:b0:fe:
60:4b:12:ea:db:b2:8c:57:37:a8:b6:80:13:4e:65:
99:de:7e:37:09:88:fa:57:b1:1a:67:b5:31:5a:b1:
71:f2:a5:c4:28:5d:37:8d:c9:20:fc:40:a5:3f:8a:
09:00:55:4e:fb:7d:0b:8c:88:3a:97:7c:66:5a:4d:
9c:15:c0:34:c7:90:34:87:6f:b2:89:8a:4a:22:22:
bc:a7:26:73:5e:8f:9f:32:18:51:36:f4:fe:5f:c0:
ef:f6:d5:c2:b9:a6:4b:14:ab:14:ce:4f:00:32:a6:
86:1e:b1:0e:9f:bf:8f:eb:97:e9:32:9d:22:84:c5:
94:47:b0:a9:ae:28:e9:c7:fd:1f:23:bc:63:e5:70:
37:1b:f2:9c:fd:5c:ca:d0:dc:80:e6:dd:ad:45:91:
dc:b7:77:a9:c9:fb:44:b3:5b:44:8d:25:a5:f1:54:
2a:27:2f:dd:86:c9:03:56:6b:60:c7:dd:41:7f:71:
37:9a:f4:3e:86:23:fb:5b:3d:a3:66:dc:4f:8b:bd:
cf:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:58:E7:BB:D0:79:D3:10:E2:9B:0D:FF:B1:43:C5:AE:DD:49:8A:F6
X509v3 Authority Key Identifier:
keyid:17:DB:D5:AC:F1:F9:C7:5D:18:A1:F7:50:31:11:4C:48:F0:B2:33:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9vVrPH5x10YofdQMRFMSPCyM2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/29199f-f6cc-448a-bfd4-581db87c821e/1/p1jnu9B50xDimw3_sUPFrt1JivY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/29199f-f6cc-448a-bfd4-581db87c821e/1/F9vVrPH5x10YofdQMRFMSPCyM2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.116.255.0/24
Signature Algorithm: sha256WithRSAEncryption
03:d7:bc:93:12:ba:95:e4:a0:34:7a:43:27:7d:11:94:37:a9:
37:43:52:35:8f:6d:af:9d:c3:d8:92:6d:f5:06:a9:e4:dc:d8:
d3:0f:60:56:a5:21:fa:95:8f:cb:87:b3:7c:af:72:82:41:ee:
bf:87:cb:aa:7e:08:01:9b:b8:38:14:f8:8a:59:d6:13:48:c1:
17:63:bb:e6:b7:7d:09:9d:02:8d:46:73:98:f9:eb:21:e4:b1:
16:dd:8c:d8:71:f4:db:70:3e:49:84:9d:05:71:22:f5:7c:49:
5c:f5:f1:c6:b6:d1:af:74:62:bc:59:c2:cd:20:5d:0e:15:29:
38:88:b7:87:85:ea:5e:65:b9:a6:96:8d:e0:9b:2e:76:95:53:
ef:1b:f2:17:ba:aa:df:e2:ee:91:06:23:22:2a:78:94:f0:95:
c7:2a:de:09:7f:fb:08:3f:2f:0c:0b:eb:4d:b5:bd:b2:22:39:
f5:e4:49:99:0d:46:96:33:be:9a:8c:9f:6d:7e:77:12:14:6b:
1a:f3:19:35:f7:5c:8f:c4:89:1c:e8:45:ca:de:c8:42:81:10:
b7:fe:07:0a:b1:57:29:29:fc:f8:f6:c5:42:8b:ab:8c:67:36:
28:26:2d:33:9c:58:0d:87:e4:6b:35:97:f9:0f:d0:99:83:7c:
99:41:6e:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:12 2024 by rpki-client on console-fra.rpki-client.org