Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/DziwCDttHZOxyvXx267gYJJLHTs.roa
File: DziwCDttHZOxyvXx267gYJJLHTs.roa (raw, json)
Hash identifier: 1b2cRAVB5wQ30uDMAugl7GKFXs4FVpaUUKz1GgAdRCs=
Subject key identifier: 0F:38:B0:08:3B:6D:1D:93:B1:CA:F5:F1:DB:AE:E0:60:92:4B:1D:3B
Certificate issuer: /CN=58d2d2715f43f747bea762dce166bca4b8e965eb
Certificate serial: 018A3B7BBC601BC8FF680438F4DD81A9F2B3
Authority key identifier: 58:D2:D2:71:5F:43:F7:47:BE:A7:62:DC:E1:66:BC:A4:B8:E9:65:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WNLScV9D90e-p2Lc4Wa8pLjpZes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/DziwCDttHZOxyvXx267gYJJLHTs.roa
Signing time: Mon 28 Aug 2023 09:31:19 +0000
ROA not before: Mon 28 Aug 2023 09:31:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51862
IP address blocks: 85.215.32.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3b:7b:bc:60:1b:c8:ff:68:04:38:f4:dd:81:a9:f2:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58d2d2715f43f747bea762dce166bca4b8e965eb
Validity
Not Before: Aug 28 09:31:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f38b0083b6d1d93b1caf5f1dbaee060924b1d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f0:60:5d:30:12:ef:5e:a0:f3:de:57:56:73:
bd:d4:1f:59:b1:dc:1e:9a:23:d8:17:ba:1d:43:18:
35:12:62:d1:31:55:6d:df:88:ed:86:1a:74:1d:d3:
e6:95:f4:1c:54:6e:d3:e8:b7:13:c2:8c:b3:90:0b:
c6:32:8a:f0:9a:c5:48:b8:b6:0c:aa:4c:5a:1b:6b:
e6:38:e6:e1:fd:5f:6b:b5:1c:e1:62:83:3e:c5:9d:
f7:59:cb:06:3a:01:f4:e6:1b:9b:9c:c5:c2:63:3a:
8a:2b:52:3c:ea:a5:a6:e2:e7:6f:27:ea:b7:5a:d1:
bd:cd:64:9b:96:0d:25:09:e2:b8:ca:44:a8:18:4c:
58:75:2c:7d:b0:d5:4b:40:e6:5c:80:d8:f2:82:58:
8d:59:51:32:f6:da:5c:cb:9d:fb:4f:f4:c9:fe:9d:
14:a8:1b:e5:f1:99:24:99:8b:4c:4c:e1:2e:1a:8f:
57:0a:a5:b2:67:f8:ef:ea:7b:02:6b:2f:14:cb:f1:
6f:b6:a8:4b:d6:6a:a3:3b:2e:98:50:dc:76:31:b7:
2f:e2:4d:7b:17:91:38:8c:ce:e6:44:60:3d:1b:f4:
1f:b0:a5:47:01:f4:d8:f2:1c:dc:37:47:21:1a:94:
6a:16:5a:3e:b9:82:90:5c:2b:b2:34:04:c3:d8:25:
2b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:38:B0:08:3B:6D:1D:93:B1:CA:F5:F1:DB:AE:E0:60:92:4B:1D:3B
X509v3 Authority Key Identifier:
keyid:58:D2:D2:71:5F:43:F7:47:BE:A7:62:DC:E1:66:BC:A4:B8:E9:65:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WNLScV9D90e-p2Lc4Wa8pLjpZes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/DziwCDttHZOxyvXx267gYJJLHTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d67b7b-c798-4901-80f9-e3834516fc08/1/WNLScV9D90e-p2Lc4Wa8pLjpZes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.215.32.0/19
Signature Algorithm: sha256WithRSAEncryption
24:fc:56:8c:4d:93:ca:6a:eb:aa:b1:78:8d:71:fc:fa:9b:6f:
89:53:a8:1d:95:7e:6f:b6:71:1b:3e:8d:b5:44:93:61:45:d1:
08:58:5e:a5:31:59:95:07:b2:8e:42:5d:3b:09:73:e9:1f:f1:
ab:ee:40:3a:49:31:c6:9a:f7:5b:cb:63:ec:ba:a2:11:35:30:
88:9e:a4:f4:ea:fd:e6:8b:bd:a8:dd:b6:a4:28:24:15:88:3a:
52:d1:55:c6:94:f4:25:60:98:c5:00:81:16:38:3b:9f:27:23:
82:51:26:f0:7e:a5:9b:3e:cf:12:48:46:73:73:dc:b5:97:cb:
76:0d:0d:d7:b0:1d:5a:fc:63:c3:67:bb:7e:86:8c:aa:d4:29:
f4:c5:85:73:62:7d:bf:d8:2d:5f:90:a8:70:2e:23:34:4c:d4:
49:15:ac:e4:57:c9:9e:6c:0c:d2:3c:b8:ec:8b:85:b8:8e:74:
b2:af:8f:8a:ec:b2:71:34:b5:e8:47:14:10:4f:e2:15:e8:a8:
41:bf:67:de:1b:d8:31:c3:c8:5e:29:f1:05:8c:1f:c2:49:7e:
30:90:62:ea:d5:ff:2e:fd:a3:ac:86:f0:da:ac:47:be:da:cd:
31:81:48:0d:5c:65:20:5d:39:83:a1:ba:a1:77:7e:fe:c1:39:
e4:39:75:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:37 2024 by rpki-client on console-ams.rpki-client.org