Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/4F4HFR6WLglQ4EPSBKH8x6IGr6Q.roa
File: 4F4HFR6WLglQ4EPSBKH8x6IGr6Q.roa (raw, json)
Hash identifier: qsKphr9XblytNp0qCekfq/3TXy7GEsCzZYNWicUR5IQ=
Subject key identifier: E0:5E:07:15:1E:96:2E:09:50:E0:43:D2:04:A1:FC:C7:A2:06:AF:A4
Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a
Certificate serial: 0185F1637EEBA42620DF5CD8F88BFEC23C5E
Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/4F4HFR6WLglQ4EPSBKH8x6IGr6Q.roa
Signing time: Fri 27 Jan 2023 04:01:47 +0000
ROA not before: Fri 27 Jan 2023 04:01:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 85.28.61.0/24 maxlen: 24
85.28.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Oct 2023 08:12:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f1:63:7e:eb:a4:26:20:df:5c:d8:f8:8b:fe:c2:3c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a
Validity
Not Before: Jan 27 04:01:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e05e07151e962e0950e043d204a1fcc7a206afa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:8f:13:72:77:ec:3e:1b:d9:ae:e8:a3:89:27:
0f:1d:6d:85:64:89:62:90:42:61:aa:07:a4:61:05:
d1:60:18:77:da:39:95:f2:da:1b:d7:c8:3b:5b:17:
60:7d:23:c1:9e:17:2d:75:f3:92:be:4e:42:74:36:
cc:27:12:22:a0:f5:f2:fe:ed:ac:2d:6e:51:ca:15:
04:d4:98:3a:02:f7:73:2b:8f:98:da:48:b0:47:00:
12:81:b5:04:3e:4d:f5:bc:a0:ef:c9:28:63:36:b7:
81:62:ff:98:46:17:eb:5a:d9:d4:13:e9:19:65:9c:
29:89:cd:d1:ad:f8:cd:f8:b0:93:ce:57:b4:02:f8:
33:3e:5c:3f:68:95:dd:38:94:e6:8e:48:10:a4:ae:
8a:6d:0d:3e:99:e1:53:23:56:8c:a3:7b:26:af:5a:
d4:c9:99:09:8f:a5:b5:33:44:49:c4:3c:e9:9e:ab:
aa:83:ac:6a:ee:08:17:31:99:78:0c:bd:45:7d:b0:
f0:cb:43:34:d6:0c:59:db:09:80:11:a8:ef:49:f6:
c0:f9:b1:d8:67:84:d5:12:ea:e6:3e:90:a1:5f:95:
72:0a:31:ce:73:3f:a5:80:d1:b8:ab:f8:ce:30:f9:
7f:7d:f1:42:0f:a2:89:7d:bb:bd:54:86:b7:95:66:
3a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:5E:07:15:1E:96:2E:09:50:E0:43:D2:04:A1:FC:C7:A2:06:AF:A4
X509v3 Authority Key Identifier:
keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/4F4HFR6WLglQ4EPSBKH8x6IGr6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.28.61.0/24
85.28.63.0/24
Signature Algorithm: sha256WithRSAEncryption
65:f4:97:6a:f6:cf:76:c0:73:0c:f3:69:94:54:07:59:94:9c:
bb:4e:e2:e8:ed:5a:46:e0:04:1f:00:ae:96:8f:2e:e3:31:48:
2e:22:dd:92:e4:9e:0f:ca:57:a7:42:15:c5:fc:58:b1:0c:72:
18:94:0d:ff:9c:2e:e0:8b:ee:35:47:c5:68:c0:74:08:5a:72:
fe:f2:24:95:b6:e6:97:54:f4:b2:c8:00:68:51:95:4f:80:ad:
a3:ef:7b:12:23:32:d8:63:e0:b9:83:c6:4a:7e:12:99:e1:d4:
b8:8d:91:33:17:c1:36:15:d5:05:ef:59:79:20:04:eb:01:fb:
a7:3e:32:4d:61:98:a7:7c:39:96:f8:7f:e8:3f:bb:9a:8b:11:
9d:4a:b5:12:9c:6b:d2:dd:91:ca:ad:40:28:05:88:f9:64:37:
56:d4:1a:77:71:01:85:59:64:46:92:13:82:a6:20:fc:46:7b:
8d:13:f8:3e:2e:60:7c:db:cc:b0:5d:f6:57:07:f7:d0:d9:98:
eb:65:dd:d9:4b:1e:42:ac:09:79:e8:cb:77:31:a7:2f:96:d4:
e5:f0:7a:47:a5:52:3e:a1:b3:e5:b1:59:66:7f:cf:88:d4:d0:
17:ec:06:b9:35:1c:14:38:64:d1:60:0e:f3:7d:ff:24:7b:d3:
f0:e9:1b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:57 2024 by rpki-client on console-ams.rpki-client.org