Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/C1hcxE33TLCsxJqaVdx81U9fPqA.roa
File: C1hcxE33TLCsxJqaVdx81U9fPqA.roa (raw, json)
Hash identifier: nLYGrxr+1WevN3SFOAmITWMlEs0lX5tfSjgf3z49pNI=
Subject key identifier: 0B:58:5C:C4:4D:F7:4C:B0:AC:C4:9A:9A:55:DC:7C:D5:4F:5F:3E:A0
Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial: 01914532D5B2101ABB1AFE272C9BD63B850B
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/C1hcxE33TLCsxJqaVdx81U9fPqA.roa
Signing time: Mon 12 Aug 2024 06:07:25 +0000
ROA not before: Mon 12 Aug 2024 06:07:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47164
IP address blocks: 212.231.82.0/24 maxlen: 24
212.231.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 09:08:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:32:d5:b2:10:1a:bb:1a:fe:27:2c:9b:d6:3b:85:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
Validity
Not Before: Aug 12 06:07:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b585cc44df74cb0acc49a9a55dc7cd54f5f3ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:eb:62:44:18:45:e6:a4:82:a1:45:27:40:e2:
50:42:df:c1:c0:89:52:0b:de:9f:b4:5c:2e:ce:c9:
83:85:5f:c6:30:50:da:35:50:63:67:9c:cd:08:98:
2d:3c:ff:99:bb:77:96:0b:42:32:02:77:7a:76:b2:
af:63:e6:82:07:41:b4:5e:81:00:10:84:8e:84:2a:
4a:d8:3f:d9:32:c6:ed:07:09:91:cb:fd:28:5e:90:
91:a8:15:d0:4c:5f:1a:1b:d0:19:54:1b:4b:a2:78:
8b:40:dd:03:d6:1e:4d:0f:a1:f8:2c:9b:cd:2c:9a:
e3:b6:9a:76:35:a1:0a:82:69:1a:26:7f:75:9c:55:
91:27:33:74:ed:18:13:39:f9:d6:a0:fc:04:69:74:
7d:6a:13:3d:18:02:89:46:b1:4e:02:3c:db:5b:7a:
2a:f1:de:e0:c0:64:88:f0:7a:2a:40:2e:03:10:2a:
2f:03:1b:96:03:64:49:47:39:6a:bf:bb:b8:6b:f1:
9f:20:46:60:ee:ce:f0:ef:ca:f4:fd:c0:65:f2:4b:
14:8a:89:0c:7f:dc:7a:3f:c4:62:87:16:03:de:63:
5e:d1:83:25:2a:35:3b:bc:ec:e9:3e:9a:f1:d5:81:
93:e1:27:85:b7:26:59:01:62:6e:3c:58:14:48:6a:
53:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:58:5C:C4:4D:F7:4C:B0:AC:C4:9A:9A:55:DC:7C:D5:4F:5F:3E:A0
X509v3 Authority Key Identifier:
keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/C1hcxE33TLCsxJqaVdx81U9fPqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.231.82.0/24
212.231.85.0/24
Signature Algorithm: sha256WithRSAEncryption
78:12:6c:0c:77:ea:21:b3:93:f4:2f:0e:f0:e3:28:c3:f3:6c:
9e:ba:c2:5e:61:3b:ac:a9:7d:3c:e3:ec:90:6d:6c:1d:8e:e8:
cd:27:db:01:f4:4d:48:91:0c:36:c0:61:97:42:c0:69:1d:35:
0f:ed:3e:fa:fb:f3:fc:1c:20:12:c3:f3:e8:47:6e:e8:c7:0c:
e1:c0:c4:8f:45:3c:56:92:b2:a8:c2:e2:c6:7d:ab:34:13:74:
4d:c1:2a:0c:a8:ff:62:a5:ea:fe:2b:d2:fb:cf:ba:7d:5c:b3:
6f:ef:62:11:53:93:17:5a:16:ea:4e:bb:f5:ea:d1:ef:ec:3d:
9e:bd:ad:37:ef:d4:6e:13:9d:e4:80:c0:7c:d8:1e:73:07:17:
67:73:20:41:49:bb:5d:d9:58:2d:75:3c:f4:92:8e:34:54:01:
f4:09:14:d3:64:32:71:cd:2b:a8:82:53:16:27:ce:c8:33:93:
e0:60:91:a5:3d:25:5e:95:cd:6e:5a:29:88:61:58:72:75:28:
9d:8c:4b:9d:68:f9:fe:52:d6:0f:e5:f4:cf:3d:23:f8:b0:50:
a0:e1:ef:58:6c:71:9f:63:7a:f6:10:d7:96:e3:83:0a:00:00:
1d:20:9b:d6:87:21:e2:64:73:77:40:6e:de:95:ab:a1:dd:b2:
59:d8:3f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 10:52:58 2024 by rpki-client on console-fra.rpki-client.org