Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/dc330d-dad2-4e70-a149-91cf4fc703eb/1/amCCx9X11Dyz5xUedf7v7eCpWTA.roa
File: amCCx9X11Dyz5xUedf7v7eCpWTA.roa (raw, json)
Hash identifier: Xev4j8aG3BOzVXD0Grx/HS9oIoLI4LUqqiWU6txG3tM=
Subject key identifier: 6A:60:82:C7:D5:F5:D4:3C:B3:E7:15:1E:75:FE:EF:ED:E0:A9:59:30
Certificate issuer: /CN=1083a6411796bf726387f7a55cf84b57ca899beb
Certificate serial: 018CC348F3819CE2768CA738A9E2A7D093B4
Authority key identifier: 10:83:A6:41:17:96:BF:72:63:87:F7:A5:5C:F8:4B:57:CA:89:9B:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EIOmQReWv3Jjh_elXPhLV8qJm-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/dc330d-dad2-4e70-a149-91cf4fc703eb/1/amCCx9X11Dyz5xUedf7v7eCpWTA.roa
Signing time: Mon 01 Jan 2024 04:29:47 +0000
ROA not before: Mon 01 Jan 2024 04:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199285
IP address blocks: 85.90.195.0/24 maxlen: 24
2a13:ce80::/32 maxlen: 48
2a13:ce80:f000::/48 maxlen: 48
2a13:ce80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 19 Aug 2024 11:12:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:f3:81:9c:e2:76:8c:a7:38:a9:e2:a7:d0:93:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1083a6411796bf726387f7a55cf84b57ca899beb
Validity
Not Before: Jan 1 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a6082c7d5f5d43cb3e7151e75feefede0a95930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:be:ac:c6:76:93:cf:8a:f9:a6:5d:ca:9d:25:
ca:a3:6e:c9:23:b5:ed:22:0a:88:e2:d8:fb:9a:4a:
c2:64:f1:c0:1d:24:80:08:ba:c1:08:0e:95:00:71:
1e:fe:22:7b:b9:73:fd:98:b8:bf:02:eb:55:d8:dd:
db:e1:df:d6:87:3b:ac:00:1c:5e:69:ff:a7:1f:87:
13:31:bd:d1:cb:e9:b2:da:f3:4c:a5:f5:d4:b6:07:
6b:6d:a2:01:3b:ab:8e:df:5e:90:0c:81:39:40:66:
49:24:16:a5:04:89:18:22:00:64:7e:33:ad:65:03:
81:fd:ee:e6:2c:b1:dc:02:c8:4f:fe:91:08:d8:79:
88:8b:8b:3d:35:7d:26:ac:7d:12:f8:a5:b3:b4:ce:
dc:b6:79:b8:ec:d8:ce:32:ba:18:b7:f5:28:97:05:
6c:f1:28:5b:ae:79:54:2c:bb:1b:d9:69:e7:b8:b2:
32:b2:d8:3d:37:57:d3:47:18:93:17:2c:18:e9:0a:
76:4a:a2:d4:70:54:8b:0c:36:26:3a:91:14:d8:1a:
4d:bc:f9:50:47:30:de:df:d5:db:03:ba:f9:a9:48:
d2:7c:92:ea:11:76:4d:13:d6:fd:26:a9:7d:d9:ea:
fd:f2:04:5c:75:db:44:da:ea:39:eb:a1:f8:5b:f8:
32:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:60:82:C7:D5:F5:D4:3C:B3:E7:15:1E:75:FE:EF:ED:E0:A9:59:30
X509v3 Authority Key Identifier:
keyid:10:83:A6:41:17:96:BF:72:63:87:F7:A5:5C:F8:4B:57:CA:89:9B:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EIOmQReWv3Jjh_elXPhLV8qJm-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/dc330d-dad2-4e70-a149-91cf4fc703eb/1/amCCx9X11Dyz5xUedf7v7eCpWTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/dc330d-dad2-4e70-a149-91cf4fc703eb/1/EIOmQReWv3Jjh_elXPhLV8qJm-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.90.195.0/24
IPv6:
2a13:ce80::/29
Signature Algorithm: sha256WithRSAEncryption
48:bf:59:34:98:64:44:d7:17:b6:0a:a2:9b:91:7d:7c:65:fd:
9e:42:ea:76:60:38:9a:83:38:1e:e0:05:58:67:35:4f:06:41:
2c:e2:8c:b0:5e:fc:62:a0:56:3d:be:53:44:03:f8:e1:5b:66:
d4:ae:36:bc:25:7f:73:c5:1d:ac:4e:91:0b:3d:05:c6:26:22:
88:48:c7:66:54:ff:84:be:8b:60:68:70:61:be:4e:65:7e:f2:
df:b1:d4:13:67:18:8a:1f:c1:ef:aa:d3:e8:e7:7d:57:41:78:
46:72:8d:85:f0:3d:cb:0c:eb:9e:e7:77:45:7f:50:54:b2:47:
a5:bc:8d:ac:ae:34:02:8e:99:b2:07:d2:49:b9:0d:c2:62:5f:
9b:df:b8:84:17:b6:47:85:65:1e:9c:a7:d5:b8:52:ae:9d:a7:
26:33:84:ad:2b:d7:bf:56:65:e7:a2:63:c6:ec:51:de:7a:43:
c0:a8:27:a0:a8:d9:48:a8:ec:6b:b3:ae:36:ab:ec:db:d3:8f:
f3:64:c1:07:67:92:ce:eb:f9:21:66:c4:ca:84:9d:e2:0d:aa:
fb:31:68:5c:2f:2b:1c:ab:da:7a:2f:c9:33:40:f3:1b:76:a9:
9b:96:ff:9a:fd:fb:34:ec:ad:ef:1a:db:4f:96:66:a0:6e:7b:
95:00:61:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 14:03:27 2024 by rpki-client on console-fra.rpki-client.org