Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/zQjevHmZJJQ2fxH77iRUd5RRuu8.roa
File: zQjevHmZJJQ2fxH77iRUd5RRuu8.roa (raw, json)
Hash identifier: fgPuqxS/SixzI6VvADYhhOPW9+UG1MlrMAIkRFehxGc=
Subject key identifier: CD:08:DE:BC:79:99:24:94:36:7F:11:FB:EE:24:54:77:94:51:BA:EF
Certificate issuer: /CN=20b5100e798fab7577bf725ac9569ea80e6c2a04
Certificate serial: 018F5D40C45EF97996F9E2E7E3A90AB1C648
Authority key identifier: 20:B5:10:0E:79:8F:AB:75:77:BF:72:5A:C9:56:9E:A8:0E:6C:2A:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ILUQDnmPq3V3v3JayVaeqA5sKgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/zQjevHmZJJQ2fxH77iRUd5RRuu8.roa
Signing time: Thu 09 May 2024 12:07:56 +0000
ROA not before: Thu 09 May 2024 12:07:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 85.115.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 May 2024 03:28:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5d:40:c4:5e:f9:79:96:f9:e2:e7:e3:a9:0a:b1:c6:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20b5100e798fab7577bf725ac9569ea80e6c2a04
Validity
Not Before: May 9 12:07:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd08debc79992494367f11fbee2454779451baef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ff:40:ec:6d:97:06:a5:44:f9:e9:e1:bb:13:
db:8a:55:f1:39:db:09:f7:97:0a:b2:98:e8:8a:df:
10:44:72:44:92:1e:7a:b2:68:f6:46:2a:1c:04:75:
2c:ec:87:2e:d8:a7:a5:01:04:21:c1:1a:0e:17:96:
a2:6b:5a:e0:ef:06:34:5a:b5:ce:89:19:53:ff:75:
65:a1:91:66:80:cb:06:78:e1:93:57:7c:10:b5:d7:
31:a6:14:89:1f:48:8c:1f:dc:f4:8e:7d:97:c0:f6:
ea:ef:cf:b6:0c:a9:83:82:82:9b:5b:75:26:83:71:
5d:7b:69:89:47:cd:7e:e1:c4:3a:69:ac:44:64:63:
61:ad:49:9a:94:06:6f:87:e3:2c:2a:6d:14:bc:e6:
68:04:57:5e:cc:c2:51:45:36:b0:c7:4d:51:f1:7f:
49:4d:f5:67:ee:0b:67:11:20:7b:47:d8:8d:bf:7d:
72:65:ca:a8:2f:22:fc:eb:b1:ba:fa:bd:c7:1f:0d:
7e:6a:2a:29:92:71:ca:68:82:5d:43:bb:8f:1d:48:
a3:76:c8:8b:84:d2:41:02:01:c9:a8:a0:c1:cf:b5:
40:61:e1:17:29:f9:7a:2e:d6:d2:2b:91:a2:cb:b2:
ba:4e:7f:1c:00:34:4c:ee:f3:f7:2c:6d:de:12:80:
54:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:08:DE:BC:79:99:24:94:36:7F:11:FB:EE:24:54:77:94:51:BA:EF
X509v3 Authority Key Identifier:
keyid:20:B5:10:0E:79:8F:AB:75:77:BF:72:5A:C9:56:9E:A8:0E:6C:2A:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ILUQDnmPq3V3v3JayVaeqA5sKgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/zQjevHmZJJQ2fxH77iRUd5RRuu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/ILUQDnmPq3V3v3JayVaeqA5sKgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.93.0/24
Signature Algorithm: sha256WithRSAEncryption
93:a6:14:51:97:bf:4a:1d:39:9b:b6:71:6d:01:29:5f:21:e0:
73:30:e9:a0:f5:08:24:e0:2f:f5:80:94:c5:90:f7:d2:e3:ce:
23:5b:a4:49:39:09:af:dd:70:84:d5:ae:41:93:02:0c:62:e4:
20:39:ac:c1:b4:1c:79:c4:92:bf:5b:f1:4c:9d:a9:43:56:1e:
5d:4c:d6:60:82:f4:4e:4a:6f:78:85:aa:d9:ce:8c:7a:88:21:
b1:5b:30:ae:2d:62:91:78:01:be:58:8a:1a:80:7e:57:2d:ad:
b7:59:e4:c2:82:49:b7:b2:9a:08:5e:37:5d:b4:cc:e4:c2:c7:
27:4d:e5:f8:24:62:8b:6d:1d:9d:99:eb:b0:db:73:b9:a4:a3:
16:86:66:e8:32:e5:e7:e1:6a:d4:0d:1d:b7:36:b3:31:ae:aa:
2a:1e:b3:28:c7:2b:a5:ad:7a:7f:37:1c:49:bf:10:15:04:e0:
80:a2:90:a0:20:d9:14:fa:75:8d:ac:fe:6a:2f:c3:b0:65:26:
e6:55:95:93:0f:d7:cd:34:47:9b:48:87:1a:b4:aa:e0:0c:28:
5d:16:cc:d5:0e:e8:bd:76:0c:7d:c9:38:9e:26:2c:26:e1:96:
46:f2:7a:fe:d6:30:fa:18:8a:f3:e9:ea:ad:45:4c:ea:d8:bd:
3e:81:02:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:11 2024 by rpki-client on console-ams.rpki-client.org