Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/bSR0O-E64oAUoENS48y5wt_p3LQ.roa
File: bSR0O-E64oAUoENS48y5wt_p3LQ.roa (raw, json)
Hash identifier: LopC0mbbfAyLrC8q7moS3NBfnTddo3GU0DQ6f4lvww4=
Subject key identifier: 6D:24:74:3B:E1:3A:E2:80:14:A0:43:52:E3:CC:B9:C2:DF:E9:DC:B4
Certificate issuer: /CN=22190c26894093dc64a05ef2cfd354a06cff039d
Certificate serial: 0185708C993BB429FBEA204E7F20828A360C
Authority key identifier: 22:19:0C:26:89:40:93:DC:64:A0:5E:F2:CF:D3:54:A0:6C:FF:03:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhkMJolAk9xkoF7yz9NUoGz_A50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/bSR0O-E64oAUoENS48y5wt_p3LQ.roa
Signing time: Mon 02 Jan 2023 03:35:40 +0000
ROA not before: Mon 02 Jan 2023 03:35:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16378
IP address blocks: 80.85.192.0/24 maxlen: 24
80.85.192.0/20 maxlen: 23
80.85.197.0/24 maxlen: 24
80.85.198.0/24 maxlen: 24
80.85.196.0/24 maxlen: 24
80.85.194.0/24 maxlen: 24
80.85.195.0/24 maxlen: 24
80.85.199.0/24 maxlen: 24
80.85.193.0/24 maxlen: 24
80.85.204.0/24 maxlen: 24
80.85.205.0/24 maxlen: 24
80.85.203.0/24 maxlen: 24
80.85.201.0/24 maxlen: 24
80.85.202.0/24 maxlen: 24
80.85.206.0/24 maxlen: 24
80.85.200.0/24 maxlen: 24
80.85.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:99:3b:b4:29:fb:ea:20:4e:7f:20:82:8a:36:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22190c26894093dc64a05ef2cfd354a06cff039d
Validity
Not Before: Jan 2 03:35:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d24743be13ae28014a04352e3ccb9c2dfe9dcb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d2:64:ec:3d:28:73:00:2a:2a:dd:f8:34:48:
f7:df:4f:38:00:2d:7d:be:29:a7:4e:5a:cb:4d:81:
30:90:21:74:92:12:19:71:d2:3e:aa:bc:8d:34:2b:
6f:d1:6f:64:c2:17:34:b2:f2:f2:0b:69:c7:f4:6d:
7b:07:e6:00:43:72:a5:87:f0:34:da:9a:03:a7:03:
24:63:e4:bf:dc:dd:9e:2a:22:ef:ef:ea:a8:36:67:
66:96:d8:09:69:32:99:9b:3f:14:d2:a4:73:c8:99:
42:0c:ea:2b:aa:67:d4:0d:45:3f:2c:aa:3b:33:17:
9e:41:b9:3e:45:08:d6:de:f6:f2:bf:ae:f9:6b:27:
32:62:f0:91:78:a9:a7:bb:f9:60:7d:fb:97:c0:b9:
21:24:d5:93:46:03:4e:5f:d8:1e:f8:a8:85:a7:80:
31:68:86:2d:af:87:f5:a2:59:c5:39:6e:85:72:4e:
6f:21:72:76:d3:08:60:fc:7f:48:6d:6d:08:f9:ff:
d4:dc:af:03:ad:88:91:1d:84:ff:27:c7:4f:f4:c4:
9a:e3:57:ce:21:5b:f5:5c:d3:99:65:e9:ca:23:49:
31:85:64:00:02:84:68:97:9b:80:7b:99:b9:a4:44:
db:a0:89:e9:19:b1:c1:8f:4c:bf:aa:51:2b:7c:4f:
8d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:24:74:3B:E1:3A:E2:80:14:A0:43:52:E3:CC:B9:C2:DF:E9:DC:B4
X509v3 Authority Key Identifier:
keyid:22:19:0C:26:89:40:93:DC:64:A0:5E:F2:CF:D3:54:A0:6C:FF:03:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhkMJolAk9xkoF7yz9NUoGz_A50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/bSR0O-E64oAUoENS48y5wt_p3LQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3a96fa-90de-460c-bea6-ec10ebe4fccf/1/IhkMJolAk9xkoF7yz9NUoGz_A50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.192.0/20
Signature Algorithm: sha256WithRSAEncryption
47:0b:61:bb:2f:85:55:12:c6:34:21:19:7f:f0:0e:6e:70:83:
5c:58:4a:ef:16:07:f2:fa:6d:60:61:ba:70:89:e3:3e:ea:ee:
d5:e7:89:71:e2:70:f2:21:cf:d7:b3:87:8e:b2:5f:20:84:da:
70:f1:53:0b:47:fd:69:4c:7c:82:0c:ae:1e:93:e5:db:bf:95:
ba:af:cc:81:8f:60:63:68:55:25:36:b8:67:8d:7a:6d:1c:e8:
11:b2:c0:33:8f:94:80:d0:fe:04:73:02:1f:bf:6b:88:6c:0c:
5f:13:b6:79:fd:49:ed:49:56:ba:20:52:f0:c5:d9:17:61:8e:
98:6a:c1:ba:0d:8b:75:c1:27:af:df:77:74:4d:bc:05:6f:9b:
e3:aa:da:1c:68:9b:61:80:cb:e3:1c:a9:69:3e:32:1f:15:ac:
60:11:d4:ec:fe:da:b4:46:ec:4f:b0:3c:a0:85:7c:08:da:d7:
6d:26:70:89:86:94:ad:93:5c:0e:98:dc:d4:57:ac:74:2c:96:
c4:ee:c8:71:b1:2b:47:a7:5b:39:c7:d9:ac:78:c5:15:64:ba:
46:c9:c3:32:1e:0b:4f:44:cd:c0:9b:ee:0e:d1:8f:89:d4:5a:
62:01:db:9c:75:e6:d1:0a:76:ae:66:d0:3e:1a:23:4f:fa:2a:
e1:41:6f:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:37 2024 by rpki-client on console-ams.rpki-client.org