Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Dg_UKXqvjhLpeXs_1r1CAnuyMx8.roa
File: Dg_UKXqvjhLpeXs_1r1CAnuyMx8.roa (raw, json)
Hash identifier: Yj333U2VrMUd/t23ejAtgVFnahG9R9H8Es5d/Agh/wA=
Subject key identifier: 0E:0F:D4:29:7A:AF:8E:12:E9:79:7B:3F:D6:BD:42:02:7B:B2:33:1F
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0191EB107184EB9291C80FFACFC170F95C42
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Dg_UKXqvjhLpeXs_1r1CAnuyMx8.roa
Signing time: Fri 13 Sep 2024 11:06:49 +0000
ROA not before: Fri 13 Sep 2024 11:06:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 85.209.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Sep 2024 21:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:eb:10:71:84:eb:92:91:c8:0f:fa:cf:c1:70:f9:5c:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 13 11:06:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e0fd4297aaf8e12e9797b3fd6bd42027bb2331f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:77:37:59:87:f0:2f:b2:c8:df:20:bd:37:f7:
0a:ef:88:05:40:c0:5a:70:14:38:81:04:82:7f:ce:
ef:19:27:6c:ee:24:62:9f:25:e1:75:99:c0:65:ef:
24:e2:e6:f5:b0:6e:10:8a:b3:35:32:df:f1:08:59:
91:cc:17:d5:77:95:e0:31:e1:49:f0:85:b6:8a:b5:
fc:a8:51:82:82:d5:6f:5f:1e:63:30:f0:07:03:b9:
b9:f4:53:54:ee:7c:02:b4:d8:fa:79:88:48:77:7e:
c3:a0:18:fc:c9:3c:31:e0:64:d4:7e:4a:3d:eb:41:
4b:81:c7:30:be:df:72:39:aa:d6:ed:5c:b1:3b:e8:
e9:59:75:6c:fa:72:cf:8e:f8:bd:af:cd:87:12:a0:
e8:a5:34:57:89:08:96:68:69:88:d8:6c:2d:93:dd:
2d:49:cb:d3:01:9a:6d:11:59:f2:f3:2d:df:7f:31:
1e:6f:c8:77:93:1e:5f:1a:64:d7:42:4e:b1:28:08:
0c:0e:6d:84:87:fd:69:82:9e:02:06:1e:9d:8d:be:
36:3a:20:69:f0:46:83:de:b3:06:1f:04:83:83:ba:
55:2d:d4:9b:af:df:d1:5d:eb:11:a8:52:a3:71:c9:
69:85:c7:d7:c9:0f:95:35:80:23:27:c3:93:4f:8a:
01:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:0F:D4:29:7A:AF:8E:12:E9:79:7B:3F:D6:BD:42:02:7B:B2:33:1F
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Dg_UKXqvjhLpeXs_1r1CAnuyMx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.162.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:41:54:20:96:11:95:c4:5f:a0:da:9d:99:72:27:7a:3b:2f:
01:74:63:4e:cf:09:26:cd:af:fe:6a:79:48:84:94:f4:7b:46:
22:d7:19:cf:ce:df:c0:f1:89:f7:ed:eb:72:53:59:b6:2c:be:
2e:2a:97:6c:5c:c1:44:59:14:ba:10:3a:e8:9c:ec:3c:39:c3:
4e:1e:2f:10:00:b2:92:13:46:13:98:9f:e9:4f:00:d4:de:f0:
64:b8:25:36:0e:b7:5b:d1:23:1d:52:88:ef:25:9a:71:8e:2e:
32:98:9a:26:a9:7f:79:99:df:20:06:c8:75:fd:d7:d9:46:1d:
50:d2:b0:1c:15:ca:36:93:37:0a:45:99:7a:88:7f:42:c3:92:
ad:41:94:0d:0b:8c:4f:6f:0d:6e:83:7c:6b:6b:52:91:f1:4c:
48:6e:15:9f:d7:19:7d:81:81:21:f0:12:3f:9c:b7:35:5f:13:
66:ce:3e:df:12:d7:3c:cd:0d:9a:08:82:1e:ba:f1:a9:cf:45:
09:7b:a6:81:f9:2c:98:ee:fb:c0:7c:12:6c:73:ad:51:6c:78:
ee:34:a4:94:88:35:56:15:ae:b0:be:e1:a3:bf:05:b9:ff:92:
56:bd:e5:f9:07:04:35:26:a6:74:62:1e:50:ab:f8:4f:7a:a5:
26:4f:a6:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 00:29:55 2024 by rpki-client on console-ams.rpki-client.org