Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/aWFm8IAjhUeRIc-MyWvpwOihieE.roa
File: aWFm8IAjhUeRIc-MyWvpwOihieE.roa (raw, json)
Hash identifier: 4naQcCMjSn7KB8jNmfpO63zdpNp41gbe7YI6CBBnTyw=
Subject key identifier: 69:61:66:F0:80:23:85:47:91:21:CF:8C:C9:6B:E9:C0:E8:A1:89:E1
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018CC7277DDFFAA15518C13F3C2E202CFFE6
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/aWFm8IAjhUeRIc-MyWvpwOihieE.roa
Signing time: Mon 01 Jan 2024 22:31:43 +0000
ROA not before: Mon 01 Jan 2024 22:31:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207184
IP address blocks: 85.143.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Apr 2024 15:10:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:7d:df:fa:a1:55:18:c1:3f:3c:2e:20:2c:ff:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 22:31:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=696166f0802385479121cf8cc96be9c0e8a189e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:54:17:00:78:fd:0f:6e:f0:03:31:33:ed:31:
e7:05:4a:22:8f:e3:5d:0e:10:e5:d8:fe:6c:b9:34:
2f:85:fa:05:ae:51:ad:8e:69:6b:00:e2:c4:b1:53:
07:7e:3c:e7:90:40:c1:e4:a1:82:50:0e:8f:7d:cb:
e4:ca:6a:1d:a6:5d:98:4d:ba:88:e9:bc:a0:27:41:
c8:0c:25:e4:8a:bb:09:10:49:31:ec:76:19:ed:9a:
08:63:d0:a2:f3:eb:c8:8b:16:85:bb:7f:48:42:c6:
dc:d3:be:71:fa:69:88:b8:6b:29:89:a1:28:98:81:
14:f9:6e:c6:f3:9d:46:a1:7f:6c:76:79:85:05:4f:
e1:01:3c:16:38:b7:27:36:57:b2:13:77:8c:0c:a6:
aa:b3:bd:d3:e3:13:55:4a:47:cf:0a:64:9c:15:ee:
62:a4:79:41:a9:21:08:5f:91:0f:e5:92:db:04:9a:
af:50:38:06:33:52:99:eb:10:fe:28:cb:a8:17:47:
79:5d:9c:93:a3:c6:27:ec:42:58:a2:cf:94:e2:93:
2d:49:1b:cc:ae:24:31:e7:76:23:b0:c0:3d:85:b8:
3b:88:ba:a8:a4:33:9e:a4:23:8f:03:3c:f9:69:6c:
6d:0c:68:51:12:15:10:ca:87:8e:6b:74:5f:ad:7d:
13:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:61:66:F0:80:23:85:47:91:21:CF:8C:C9:6B:E9:C0:E8:A1:89:E1
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/aWFm8IAjhUeRIc-MyWvpwOihieE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.250.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:54:b7:1d:34:72:66:65:01:fe:a0:76:26:fa:a7:8b:8e:b7:
08:4c:9e:02:62:08:d2:9c:4e:b9:8e:34:3c:70:f8:79:4d:ec:
2a:79:4c:de:f6:87:7a:94:a5:e4:00:f9:45:d6:7d:cf:06:34:
24:b0:dd:3b:f3:bf:33:73:ee:c7:a3:f8:cd:9d:1e:0a:86:22:
04:83:0c:35:28:a2:00:36:95:f8:55:17:a8:ad:48:c2:b4:d8:
12:de:b2:98:c5:a0:a5:3d:fb:e5:32:47:b4:72:84:7b:70:5a:
d9:fd:91:ab:1b:f7:25:d4:7e:ad:11:42:b8:ea:f1:06:c5:6d:
4c:c7:37:93:ed:c6:2f:ad:fb:04:52:b0:c4:c6:77:16:76:c9:
7f:91:19:57:3f:99:7d:a9:ca:d7:79:68:21:34:82:5d:29:f2:
b9:6e:96:b0:95:fe:44:40:c1:5d:34:74:a4:1c:e1:7d:00:ed:
cc:18:b1:2d:59:1e:e8:e9:78:13:db:37:36:6c:7a:3b:34:6c:
15:4e:c8:bd:38:31:35:fe:6c:c7:49:75:d0:9e:5f:16:77:c6:
05:cc:a0:4a:68:97:e8:43:17:b7:09:e3:5b:6a:b6:a8:d8:4a:
9b:63:8d:2b:8e:1f:f2:7a:fb:36:eb:2f:bd:31:0d:57:a4:cb:
90:8e:46:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org