Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/bNQSRGitn8Rf35xJBaHhTDfB8DE.roa
File: bNQSRGitn8Rf35xJBaHhTDfB8DE.roa (raw, json)
Hash identifier: 4v9CBZtPH5F3hZ3yocD+vAuakIcOWt/D2y6OfBrpV0U=
Subject key identifier: 6C:D4:12:44:68:AD:9F:C4:5F:DF:9C:49:05:A1:E1:4C:37:C1:F0:31
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018ED7E2296AD30E09643426598772C15630
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/bNQSRGitn8Rf35xJBaHhTDfB8DE.roa
Signing time: Sat 13 Apr 2024 14:35:06 +0000
ROA not before: Sat 13 Apr 2024 14:35:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28800
IP address blocks: 85.142.160.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 16 May 2024 13:45:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d7:e2:29:6a:d3:0e:09:64:34:26:59:87:72:c1:56:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Apr 13 14:35:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6cd4124468ad9fc45fdf9c4905a1e14c37c1f031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0e:a1:2e:c5:52:26:82:e2:26:95:45:20:fb:
c6:79:de:42:7e:11:e9:05:63:47:d2:f9:b7:2e:27:
84:7b:5a:02:75:7f:c9:24:61:fd:ba:63:83:ff:c4:
7d:13:cd:e0:4f:cb:fd:f9:49:b1:71:1d:af:46:05:
08:31:11:b8:fe:20:33:14:10:29:49:52:a0:cf:40:
75:3f:1d:77:5b:39:6a:b4:ff:35:9b:b3:d6:5f:91:
3f:35:1e:45:46:c8:89:db:d7:59:af:b0:d3:e4:ec:
2f:36:53:73:c4:13:7d:40:63:53:b1:a9:6e:e7:e0:
4e:e0:a2:52:a7:a4:f2:30:c5:52:4b:05:db:ae:ad:
cf:3b:4a:95:f5:ec:f3:ec:f4:df:3a:1d:d5:41:4c:
76:0e:ca:d3:d4:b5:20:63:19:36:4f:34:b7:2e:94:
e8:e1:89:26:08:26:96:76:5b:2b:f7:89:a5:5f:ce:
c3:5e:b4:68:00:fa:30:95:79:54:44:c9:8a:fe:4a:
9f:bd:94:46:2f:00:51:60:fe:03:f2:16:d3:bb:3e:
e2:9c:c2:0c:c9:74:35:b4:2b:38:1b:83:98:16:6a:
bd:32:7f:19:e2:5f:29:51:56:48:1f:8d:3a:e2:0f:
28:de:49:5a:38:69:3e:57:57:5a:42:c5:1b:c9:a7:
83:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D4:12:44:68:AD:9F:C4:5F:DF:9C:49:05:A1:E1:4C:37:C1:F0:31
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/bNQSRGitn8Rf35xJBaHhTDfB8DE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.142.160.0/23
Signature Algorithm: sha256WithRSAEncryption
18:3d:c7:7d:86:26:a5:7a:5c:11:6f:fc:94:dd:39:6c:6a:48:
c3:f2:84:3d:63:67:4c:4a:01:9f:7e:3e:e7:8d:c4:c3:46:f9:
4a:fa:d5:6b:b8:c2:86:3e:61:de:0e:a6:05:94:94:6f:09:d7:
98:7d:56:68:b5:8a:8d:0f:be:17:7d:ce:73:5f:a3:d1:9d:7e:
1d:c2:94:25:89:c1:f3:73:78:4e:f5:a3:63:7d:9e:d8:c3:98:
99:ba:db:2e:22:07:26:ee:58:7a:59:71:1c:0d:c5:70:9a:bf:
38:8f:66:0a:df:33:3e:f2:6c:00:03:ae:c9:a0:2a:33:ee:b9:
1e:6f:8e:37:87:90:98:e2:45:cb:7f:a4:70:59:74:87:0f:a1:
db:1b:42:a4:18:4c:f8:ae:33:62:0c:ef:65:02:dd:a9:87:ee:
23:91:28:32:87:ab:fe:8d:bc:9c:21:3a:66:5c:58:4e:85:84:
e5:64:24:a8:8f:8f:ab:51:0d:c8:fa:d8:e4:e3:0d:3f:ea:2d:
55:db:8f:af:ee:69:c1:1f:21:62:9b:ed:19:d2:b9:d3:89:a8:
c2:5d:12:14:43:cf:db:98:73:b2:23:dc:1c:70:70:b3:40:96:
ed:61:77:6c:c5:70:ee:71:0e:a3:e2:d5:b0:10:9e:1b:c7:85:
59:cc:7c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org