Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/ce69kwtOFDq93HgOl_tOkDs1cZI.roa
File: ce69kwtOFDq93HgOl_tOkDs1cZI.roa (raw, json)
Hash identifier: gyQq16GG4jDLBEU+nnP56x5xitfCdz0yNvy6nzy28lU=
Subject key identifier: 71:EE:BD:93:0B:4E:14:3A:BD:DC:78:0E:97:FB:4E:90:3B:35:71:92
Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Certificate serial: 01856EA6BC81C5A4A8DDE4A88AD9C95CA6A9
Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/ce69kwtOFDq93HgOl_tOkDs1cZI.roa
Signing time: Sun 01 Jan 2023 18:44:58 +0000
ROA not before: Sun 01 Jan 2023 18:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203287
IP address blocks: 78.159.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:bc:81:c5:a4:a8:dd:e4:a8:8a:d9:c9:5c:a6:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Validity
Not Before: Jan 1 18:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71eebd930b4e143abddc780e97fb4e903b357192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ee:30:92:b9:93:36:a4:34:88:c8:a0:e7:f2:
21:a0:f0:56:12:d1:a0:36:49:2f:61:51:24:51:1b:
b7:34:e7:53:e6:72:16:39:49:1e:88:ba:b3:fd:fe:
9b:a3:30:6f:18:85:ed:f0:cb:3c:89:3a:32:d3:c6:
4c:ae:33:c6:9f:99:93:e6:fd:37:24:21:77:89:89:
8a:4b:9f:ed:8d:37:d4:cd:00:6c:c8:0b:89:43:53:
50:0e:f5:b8:47:35:e8:0a:5a:f2:18:d6:a9:00:8b:
3f:e7:c8:56:a7:77:03:53:18:eb:f8:ad:cf:10:44:
3c:5f:a5:b2:30:7b:54:b6:39:37:e5:df:33:20:f1:
0c:97:19:fd:58:3c:50:00:0a:a3:9b:a1:65:15:f0:
f9:a6:b7:f2:7a:98:e4:d9:ed:e7:ed:0d:07:b7:04:
db:4f:e4:5b:ca:18:d0:94:4c:dd:cc:ad:db:a5:d2:
84:c4:5a:e9:67:f6:0c:3a:51:f0:92:a8:21:1b:b3:
00:01:40:8b:67:c4:31:12:b8:1b:7d:d1:47:55:52:
43:fb:f9:2d:da:60:7f:de:33:98:ee:b5:bc:00:b5:
c3:cf:83:43:76:0a:f4:3d:0b:24:b3:77:58:39:00:
f8:c6:05:a3:10:de:db:54:53:1a:cc:f1:4c:0e:61:
d3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:EE:BD:93:0B:4E:14:3A:BD:DC:78:0E:97:FB:4E:90:3B:35:71:92
X509v3 Authority Key Identifier:
keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/ce69kwtOFDq93HgOl_tOkDs1cZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.85.0/24
Signature Algorithm: sha256WithRSAEncryption
02:8e:0a:85:8e:74:53:47:bc:d2:c3:a8:d2:50:05:72:7d:01:
97:a7:60:2d:4e:e8:d9:25:5a:ac:ed:42:61:6f:88:70:df:8e:
c8:ae:74:2b:75:c0:c8:4c:79:77:5e:e7:77:51:7a:cc:53:7d:
e4:17:54:df:70:bb:29:be:85:2c:2f:84:b9:10:3d:48:a5:7a:
4c:07:6d:b9:d8:6c:b0:4b:bc:ad:c3:99:59:32:fd:b5:9e:47:
d1:cd:d5:e3:eb:64:00:c8:06:19:47:bf:b7:6e:3a:fe:d7:f8:
6b:f3:79:26:dd:7d:55:64:de:51:bc:44:d6:c9:dc:0f:37:29:
c6:63:7c:f6:f5:48:99:b3:a2:17:71:a1:ee:1f:26:57:9d:50:
b9:b2:b6:fc:5a:a6:6e:6e:0c:9c:44:5d:27:12:7b:5d:ad:ed:
c1:de:3a:ef:2a:6c:00:03:67:b0:a7:c6:76:76:01:2c:d5:58:
6c:a7:3f:5b:12:08:5c:d3:13:48:f1:c1:fe:24:27:91:86:5b:
b5:c2:38:fa:fe:ae:60:8f:4a:7a:be:b7:a5:21:9b:47:84:8e:
a2:ef:3e:5f:ff:32:9e:25:70:32:6b:06:f5:6c:b2:df:63:97:
63:46:69:9d:1c:ba:4f:4d:cf:67:d9:e6:fd:9e:96:86:1f:a0:
dc:b3:6e:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:18 2024 by rpki-client on console-fra.rpki-client.org