Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/buiJg3XbJbNKie44v7_KkTKIlUI.roa
File: buiJg3XbJbNKie44v7_KkTKIlUI.roa (raw, json)
Hash identifier: Vb/XTx5jBBPYCvbM1VwxThkyc+hcEWfZzFgnaw4Tn/Y=
Subject key identifier: 6E:E8:89:83:75:DB:25:B3:4A:89:EE:38:BF:BF:CA:91:32:88:95:42
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246F29BBF14DDD7C1C514FF7DD7F46F
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/buiJg3XbJbNKie44v7_KkTKIlUI.roa
Signing time: Mon 02 Jan 2023 11:38:50 +0000
ROA not before: Mon 02 Jan 2023 11:38:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209518
IP address blocks: 85.187.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:f2:9b:bf:14:dd:d7:c1:c5:14:ff:7d:d7:f4:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ee8898375db25b34a89ee38bfbfca9132889542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a5:45:7e:88:2c:c6:80:95:4c:5f:93:e3:50:
8a:2f:44:80:3c:c7:2c:1d:dd:6b:4e:07:6a:df:e4:
0a:50:21:03:07:24:3c:82:26:6a:96:d5:8a:0c:30:
f9:d3:c6:4a:68:81:43:55:e1:be:c7:93:e5:8c:f5:
65:c3:c1:88:2e:6a:22:b0:11:db:73:a7:15:a0:b0:
4a:58:46:64:54:67:ba:73:e0:6c:c3:79:af:40:f6:
5f:b1:d1:f9:ad:4a:06:36:95:95:c9:89:cf:67:33:
60:94:04:c9:c5:59:7d:23:d1:41:0a:63:07:05:87:
84:23:db:c3:7e:24:7e:a1:04:62:4f:6e:fd:f9:a6:
7b:03:b9:19:c8:a2:ba:e4:33:b8:b0:91:2f:9f:3f:
d1:03:05:0f:bf:7a:29:33:80:22:36:b1:cb:21:1c:
20:54:40:c9:e3:f5:b8:1c:31:b1:7c:8a:a3:6e:76:
63:e4:17:50:66:3a:ef:a4:65:41:52:7d:89:e8:39:
35:ac:a7:36:60:61:62:71:fe:e4:96:3d:74:82:a6:
fd:77:bf:6f:be:ce:73:df:b5:71:d4:68:27:b6:6c:
86:1e:db:2f:49:92:f3:b8:e2:d7:82:be:6e:9c:e4:
f1:a3:26:48:ca:24:b8:b7:06:90:7f:88:b0:20:81:
40:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:E8:89:83:75:DB:25:B3:4A:89:EE:38:BF:BF:CA:91:32:88:95:42
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/buiJg3XbJbNKie44v7_KkTKIlUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.2.0/24
Signature Algorithm: sha256WithRSAEncryption
11:8e:70:2b:78:62:a0:05:8f:f7:43:3d:bd:c6:30:ea:2f:2b:
3a:d2:d9:62:d9:68:06:07:e8:52:e8:30:1c:78:52:5e:67:a8:
b1:de:37:95:28:c4:66:12:ab:b3:87:ee:d7:2f:f0:19:10:dc:
a4:41:90:c0:e4:f7:a8:59:f1:1a:0c:ff:c8:ac:29:27:77:8c:
65:4d:81:b8:a7:92:84:06:ed:a3:50:35:93:42:93:94:bc:6d:
c1:ef:40:9e:df:d0:b2:4d:e3:c6:e7:8a:96:c5:a6:48:f2:a6:
cd:03:27:c3:58:7d:bd:58:6e:04:e3:00:b7:36:f5:6c:bc:66:
04:bf:0b:c8:6a:cd:39:c1:b4:4d:71:a2:82:88:00:7d:08:1e:
7d:bf:ba:8c:55:ab:04:86:20:f6:80:84:6c:c7:96:56:16:79:
56:b3:7c:ac:d9:22:66:cf:ab:1e:df:ed:2d:67:51:5a:d7:3c:
4c:ae:08:5a:69:1d:92:66:22:fc:7a:fa:1b:41:02:84:ea:2d:
ad:e5:a7:d5:cb:9a:fd:f3:37:85:7e:e4:5a:fe:17:6a:d7:42:
93:77:79:1b:3d:f2:e8:55:bf:44:01:56:a7:47:b4:43:9d:6a:
c4:9a:36:75:5d:ce:db:b2:0a:2f:23:30:94:5d:4c:94:46:b0:
40:09:a8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org