Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/j_OqFTcH8i6y3kfugheNYxXAOhc.roa
File: j_OqFTcH8i6y3kfugheNYxXAOhc.roa (raw, json)
Hash identifier: 7WKIRCCHUBcj6Xy4PA1t5AAF/JNrKupCvki9UW/AdAU=
Subject key identifier: 8F:F3:AA:15:37:07:F2:2E:B2:DE:47:EE:82:17:8D:63:15:C0:3A:17
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 0185E2FEA049B3B7CD4A35A69170EA76F078
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/j_OqFTcH8i6y3kfugheNYxXAOhc.roa
Signing time: Tue 24 Jan 2023 08:56:56 +0000
ROA not before: Tue 24 Jan 2023 08:56:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49936
IP address blocks: 85.159.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e2:fe:a0:49:b3:b7:cd:4a:35:a6:91:70:ea:76:f0:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: Jan 24 08:56:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ff3aa153707f22eb2de47ee82178d6315c03a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:cd:c8:26:19:40:b6:57:a8:c0:d3:11:7a:e6:
ee:b2:d4:52:cb:21:32:ed:fc:53:6a:bc:89:93:25:
1b:7a:f2:fc:0b:e4:23:6b:30:1b:f4:9f:d3:b4:a2:
05:a8:77:6f:bd:6c:ed:69:84:d9:61:08:ca:cd:9d:
ad:c1:e1:38:e9:cc:a6:cd:a5:cf:5c:3c:9d:dc:a8:
a7:7f:87:c5:04:fc:fa:a7:54:1d:0c:ea:63:f6:56:
6d:05:8f:30:5e:e7:8e:f0:61:71:ab:f4:f0:47:d9:
ea:a3:7e:7a:57:ee:28:7a:40:80:59:ac:fa:31:5c:
6c:39:b6:3e:41:b3:b2:e6:df:00:96:7e:4d:a9:4c:
21:8f:ff:ba:a5:e4:85:29:17:fe:bb:f9:94:88:14:
f7:40:24:b9:3f:46:37:75:28:5c:92:93:e1:4d:a2:
cb:84:94:b7:14:30:b3:a7:37:c2:ad:58:94:67:c0:
52:cc:d9:ab:58:d3:a8:41:8a:be:57:8a:18:67:48:
c9:a5:f4:9b:7b:14:cd:66:d1:f2:38:d2:5a:bc:5b:
d5:30:2b:2d:4e:64:66:97:54:89:25:e0:56:2c:cd:
ac:6e:ea:87:b7:f7:49:52:6c:cc:3c:1d:a1:69:69:
34:76:d9:98:08:01:9f:8b:05:63:de:a1:24:4e:a2:
da:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F3:AA:15:37:07:F2:2E:B2:DE:47:EE:82:17:8D:63:15:C0:3A:17
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/j_OqFTcH8i6y3kfugheNYxXAOhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.113.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:7c:2b:80:f9:aa:52:f0:90:43:57:07:65:1b:45:fa:88:b6:
01:e9:ff:af:a5:de:16:31:34:a7:68:97:16:b8:b3:bc:74:ca:
6c:95:6c:e5:0d:ef:7c:11:3c:e3:8b:26:5b:9b:46:dd:ba:3c:
53:81:98:20:92:95:35:8f:ae:79:2e:9d:ae:b6:d9:98:65:e6:
a7:f4:83:4d:ce:13:51:d5:c1:56:91:74:14:51:c8:d2:f1:8f:
a3:7e:cb:4d:f7:1d:c3:27:7a:ba:e6:a7:e6:c9:77:cb:a7:26:
fe:98:4d:7d:60:f1:4c:46:a5:e4:00:a8:6d:10:e3:c3:2d:df:
01:03:f8:29:eb:f5:6e:2d:76:d5:92:1a:5f:2a:28:0b:0c:38:
ca:f6:04:a1:46:9f:75:a4:db:08:d8:f6:1c:5d:a5:25:e6:07:
1c:7f:bd:56:0c:28:85:7d:a0:a0:93:92:ad:a3:44:9e:8d:fa:
28:0e:84:eb:e8:45:dd:f3:89:9c:4d:bc:57:02:c0:b3:df:d8:
69:0c:41:e9:3e:3f:da:1e:d9:bb:91:c0:c2:f8:65:7d:7d:ae:
44:0e:ba:3d:99:d0:8e:7f:75:ba:fa:c0:4c:26:e8:28:23:9a:
09:6f:1d:0d:35:a9:5f:df:cf:a0:bf:23:5e:bd:ab:1d:2c:49:
d1:09:a1:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org