Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/ea71a0-6941-4276-9589-8124bd949b0e/1/Lfiz0X46cEJwBKFiSw0ysb_Kk48.roa
File: Lfiz0X46cEJwBKFiSw0ysb_Kk48.roa (raw, json)
Hash identifier: 97OMUr7IDwWNLP4vjg5K07N9LvHUanq5kyfLVXcwI7A=
Subject key identifier: 2D:F8:B3:D1:7E:3A:70:42:70:04:A1:62:4B:0D:32:B1:BF:CA:93:8F
Certificate issuer: /CN=01d50b9807150da396322b9d4dcfc0d2fb2b6520
Certificate serial: 018C1A1D5E31C9BF0B9559E46ADFB6A5A376
Authority key identifier: 01:D5:0B:98:07:15:0D:A3:96:32:2B:9D:4D:CF:C0:D2:FB:2B:65:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AdULmAcVDaOWMiudTc_A0vsrZSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/ea71a0-6941-4276-9589-8124bd949b0e/1/Lfiz0X46cEJwBKFiSw0ysb_Kk48.roa
Signing time: Wed 29 Nov 2023 08:06:21 +0000
ROA not before: Wed 29 Nov 2023 08:06:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1241
IP address blocks: 85.209.236.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:1d:5e:31:c9:bf:0b:95:59:e4:6a:df:b6:a5:a3:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01d50b9807150da396322b9d4dcfc0d2fb2b6520
Validity
Not Before: Nov 29 08:06:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2df8b3d17e3a70427004a1624b0d32b1bfca938f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:77:87:46:f5:6b:3f:5a:a9:7e:71:64:f6:fc:
03:2c:4f:01:0f:d7:08:d6:c6:97:ff:36:95:07:e3:
e1:d7:b1:d9:a8:c2:66:4b:74:37:53:77:b9:a8:95:
9a:0e:8c:8b:79:09:de:88:07:3e:f6:83:1c:09:aa:
16:fd:4a:db:cd:d6:d4:1c:38:2e:90:48:7e:e5:81:
18:f7:61:71:6d:ec:a3:75:8e:8c:8c:b2:66:11:06:
66:04:0f:da:94:4c:68:45:11:fa:22:ad:b0:c0:c4:
13:14:02:49:af:c5:f5:a7:3b:58:d2:ca:c9:b2:e2:
12:f1:ac:41:46:87:6c:26:e3:12:50:61:79:12:30:
24:bf:1a:e8:eb:51:8a:62:19:83:aa:24:46:fe:03:
b6:81:26:1d:55:87:f6:7c:3b:2c:82:7b:eb:39:b4:
7f:a7:70:36:31:a1:51:df:1a:ec:84:62:6b:df:c0:
dc:b5:c7:7a:13:7d:6e:1f:c8:07:62:be:67:ea:e9:
76:91:ac:7c:72:d0:52:e3:45:cc:96:d5:e7:29:89:
a2:6a:7b:d0:14:67:32:94:e4:e1:17:3b:0a:87:c1:
e4:4d:a4:51:db:8b:82:a8:88:44:de:94:c9:8b:f3:
87:97:7f:cf:3b:41:cb:69:da:fc:a4:c7:d7:dd:99:
03:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F8:B3:D1:7E:3A:70:42:70:04:A1:62:4B:0D:32:B1:BF:CA:93:8F
X509v3 Authority Key Identifier:
keyid:01:D5:0B:98:07:15:0D:A3:96:32:2B:9D:4D:CF:C0:D2:FB:2B:65:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AdULmAcVDaOWMiudTc_A0vsrZSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/ea71a0-6941-4276-9589-8124bd949b0e/1/Lfiz0X46cEJwBKFiSw0ysb_Kk48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/ea71a0-6941-4276-9589-8124bd949b0e/1/AdULmAcVDaOWMiudTc_A0vsrZSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.236.0/22
Signature Algorithm: sha256WithRSAEncryption
58:bf:40:eb:56:87:53:a2:67:01:79:99:b9:38:69:56:6e:d3:
90:9b:ab:59:57:5a:f6:76:9f:82:24:37:ab:b2:8e:bd:93:08:
8e:47:4d:92:7a:c0:6b:9e:99:23:ad:84:7d:27:37:ea:a4:23:
75:3c:b1:1e:df:d1:21:2b:75:3a:fd:dc:13:41:48:e0:45:a8:
e0:5f:92:b1:32:6a:a1:f0:eb:85:79:b9:ed:27:47:74:ad:2a:
b1:04:15:ac:db:33:27:b9:a9:b5:b3:00:08:f2:fc:06:93:73:
ea:e2:a6:f5:07:fe:02:3f:0b:04:be:c8:a9:52:70:5f:55:36:
6c:6f:4a:7b:47:1c:fd:cf:33:99:06:34:8c:2c:ca:bd:68:0e:
71:2a:b7:1f:dc:96:6b:ed:05:a2:fc:f1:e0:0f:ab:6a:bb:7f:
b7:5c:bf:1d:8f:2f:2a:8f:41:ce:53:d1:33:b0:e0:a9:b3:ff:
3e:b5:67:6f:45:ee:e2:3d:b7:43:8d:ff:40:12:2f:4b:b2:a7:
8a:c5:da:f2:31:da:17:2a:c3:9a:cd:64:cd:de:bf:1e:43:00:
34:1a:96:77:66:60:62:b2:4a:47:79:24:f5:a5:4e:31:11:4e:
a2:d8:11:4f:01:af:a4:cb:f1:e9:fa:44:40:1b:33:b0:5e:c0:
8f:65:e6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:21 2024 by rpki-client on console-ams.rpki-client.org