Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/E6B_oFax2MFIe6cVGD_-1e8vl04.roa
File: E6B_oFax2MFIe6cVGD_-1e8vl04.roa (raw, json)
Hash identifier: 3rL7GXXFpe2RWasRJlgBDUAErzEN75NouukMtJKobyE=
Subject key identifier: 13:A0:7F:A0:56:B1:D8:C1:48:7B:A7:15:18:3F:FE:D5:EF:2F:97:4E
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 018DBB651B8082F00343D12F0A67DBC25088
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/E6B_oFax2MFIe6cVGD_-1e8vl04.roa
Signing time: Sun 18 Feb 2024 08:46:21 +0000
ROA not before: Sun 18 Feb 2024 08:46:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 85.9.96.0/20 maxlen: 20
85.9.96.0/21 maxlen: 21
85.9.104.0/21 maxlen: 21
85.9.106.0/24 maxlen: 24
85.9.112.0/22 maxlen: 22
85.9.120.0/21 maxlen: 21
185.126.0.0/20 maxlen: 20
185.126.0.0/21 maxlen: 21
185.126.0.0/22 maxlen: 22
185.126.0.0/24 maxlen: 24
185.126.1.0/24 maxlen: 24
185.126.2.0/24 maxlen: 24
185.126.3.0/24 maxlen: 24
185.126.4.0/24 maxlen: 24
185.126.5.0/24 maxlen: 24
185.126.6.0/24 maxlen: 24
185.126.7.0/24 maxlen: 24
185.126.8.0/21 maxlen: 21
185.126.8.0/24 maxlen: 24
185.126.9.0/24 maxlen: 24
185.126.10.0/24 maxlen: 24
185.126.11.0/24 maxlen: 24
185.126.12.0/24 maxlen: 24
185.126.13.0/24 maxlen: 24
185.126.14.0/24 maxlen: 24
185.126.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Feb 2024 13:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:bb:65:1b:80:82:f0:03:43:d1:2f:0a:67:db:c2:50:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Feb 18 08:46:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13a07fa056b1d8c1487ba715183ffed5ef2f974e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:24:85:6c:bc:e7:3b:58:44:74:e0:df:ea:73:
55:de:fa:d4:51:1e:d6:7c:98:83:5a:f1:62:f5:87:
4d:83:02:6c:dd:47:06:64:dc:38:03:e6:26:9e:75:
2e:1d:96:13:49:0f:9b:f5:40:68:6c:db:7e:0f:bb:
ba:24:4b:0a:e1:18:66:94:3d:2e:13:4e:76:c5:d6:
8a:8c:52:5e:74:b7:eb:c2:8d:4b:88:d9:d2:4b:b0:
51:b9:0c:a7:61:cf:b2:a7:a7:6e:1f:7f:83:9b:ad:
4f:4f:07:97:0d:ab:fb:2a:38:d6:52:85:c8:0d:c8:
9b:19:41:e6:c7:94:80:4a:5a:8e:13:39:1e:5a:b2:
e9:65:4a:a7:3e:22:7f:69:c6:80:5a:57:5b:2d:ff:
f8:22:d5:3d:fd:34:fc:f6:c7:97:fe:c6:b1:11:fa:
43:93:15:55:02:01:8e:a1:b2:8c:03:6a:93:c5:87:
1e:87:a0:30:06:6a:13:89:c4:94:6a:07:35:37:af:
10:83:0e:54:68:28:1f:a2:ed:f6:6e:1e:11:f2:92:
ca:0c:81:5d:16:33:70:b0:c6:39:7e:5b:d2:34:19:
ca:86:1e:1d:35:93:73:a4:df:d6:24:fd:4e:aa:2b:
25:a8:04:ec:93:84:71:ea:ba:6f:1f:07:ea:45:c5:
3c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A0:7F:A0:56:B1:D8:C1:48:7B:A7:15:18:3F:FE:D5:EF:2F:97:4E
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/E6B_oFax2MFIe6cVGD_-1e8vl04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.9.96.0-85.9.115.255
85.9.120.0/21
185.126.0.0/20
Signature Algorithm: sha256WithRSAEncryption
1b:b9:ad:34:b5:11:9c:be:de:90:69:fd:40:dd:b3:84:92:7e:
5c:8d:da:1a:d7:47:35:93:6b:ea:3a:77:89:bf:84:e5:86:45:
ef:5f:f0:e4:c8:a4:d8:b4:2f:f7:de:08:1f:5a:fd:18:7c:42:
75:24:5d:1e:dc:cd:e7:be:65:3a:08:39:30:0f:46:11:8c:0a:
2e:ab:e1:e2:c7:54:47:e9:1f:c5:22:d5:36:ba:c8:00:4a:bb:
8e:7f:d5:58:9e:82:aa:27:c2:55:f8:4a:14:2b:67:22:13:c1:
9a:c5:98:88:c5:57:15:e0:4a:e3:59:40:f6:eb:c6:cd:84:a0:
ea:ac:d8:bc:a4:17:6f:1c:f3:7f:3f:d6:b0:96:7a:2b:03:3b:
ef:5b:39:4b:cb:c0:c0:cd:ab:fb:52:60:b7:1e:5a:ad:22:0f:
c2:8e:10:76:3a:d7:cf:89:ca:ea:9e:78:5c:e5:e9:21:74:f1:
95:65:eb:f9:85:82:a3:3c:98:88:eb:c8:43:1e:19:b0:64:d8:
fd:70:92:dc:e1:2a:a1:c9:c5:db:92:97:42:5c:48:01:70:e8:
2b:75:22:23:2b:a3:5a:ec:cc:85:b3:5a:d8:51:23:cd:cc:aa:
91:32:58:37:c8:27:95:5d:4f:2a:ef:2e:0d:dc:42:ce:de:92:
5b:d3:b3:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:10 2024 by rpki-client on console-fra.rpki-client.org