Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Dxsdm2OvsRKUXmEOCxoQi2fZnwU.roa
File: Dxsdm2OvsRKUXmEOCxoQi2fZnwU.roa (raw, json)
Hash identifier: H/ICR9VZB3FMUyR1V8Di2pLtX+/HkBomqEovHv5h29k=
Subject key identifier: 0F:1B:1D:9B:63:AF:B1:12:94:5E:61:0E:0B:1A:10:8B:67:D9:9F:05
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01856E8B1EB8FEA051FA710B42D7D835A930
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Dxsdm2OvsRKUXmEOCxoQi2fZnwU.roa
Signing time: Sun 01 Jan 2023 18:14:49 +0000
ROA not before: Sun 01 Jan 2023 18:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 85.117.240.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:1e:b8:fe:a0:51:fa:71:0b:42:d7:d8:35:a9:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 18:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f1b1d9b63afb112945e610e0b1a108b67d99f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ec:3c:06:1c:87:8b:3c:ec:b1:03:b8:65:6a:
1d:42:37:74:31:5f:60:70:e2:20:98:75:90:50:f6:
62:92:37:3b:06:8a:b4:cb:4b:cc:78:6b:e0:ad:87:
b2:ba:fd:fc:39:f3:9b:16:e5:42:92:b2:b7:15:7c:
3f:30:52:3a:2c:6c:e7:84:5e:0c:20:b4:88:26:11:
d7:b8:f1:2f:f4:b9:be:bb:3c:cb:06:b7:33:24:0c:
c8:c8:db:ae:dc:85:dc:de:ba:98:23:0f:98:1a:7f:
cf:a9:4c:6d:0c:a3:2c:19:65:55:bb:65:cc:51:dd:
9e:da:d0:56:43:40:6b:c3:34:3f:42:f2:4c:d8:f2:
5f:89:bd:13:62:f6:a5:1b:7e:e4:8f:0a:d6:18:14:
24:70:ba:59:29:d4:59:5a:16:c8:49:92:16:e8:fc:
00:53:24:fc:d1:d0:1d:8e:4b:9c:f0:46:fd:ae:fc:
dc:06:63:f1:af:72:ad:3d:3d:4b:00:0d:e3:d2:e0:
71:53:ef:8d:51:6a:ba:fc:08:83:ad:35:d8:9c:70:
e6:ed:56:45:44:e6:86:b3:b3:f9:26:76:d4:49:be:
d1:39:f7:a4:2a:c7:1a:6e:6c:3a:a7:d6:25:37:03:
ce:c9:fd:dd:f8:76:0f:96:6e:8c:1e:c0:66:8f:d8:
d1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:1B:1D:9B:63:AF:B1:12:94:5E:61:0E:0B:1A:10:8B:67:D9:9F:05
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Dxsdm2OvsRKUXmEOCxoQi2fZnwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.240.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:4b:fb:18:f3:b6:d4:79:ff:c5:99:95:3a:1b:ff:d8:7c:38:
62:89:12:e0:ae:d5:95:12:89:48:1a:84:3a:59:45:ae:bd:1e:
64:13:ac:03:27:97:1c:d1:4f:26:04:9e:4a:a5:63:4f:9f:7c:
88:fb:33:08:88:fa:f7:cb:96:a2:fb:87:2f:36:c5:24:a7:eb:
11:59:a0:f1:a2:37:31:b2:f5:6b:07:ad:b6:f6:25:d3:c7:06:
ac:22:cc:2c:f2:a6:d1:df:0b:13:bc:14:24:15:03:ee:40:5b:
a4:e2:3f:5c:c8:db:76:c6:12:1b:9c:e1:2b:30:69:39:13:28:
31:68:f7:9b:2a:11:38:b8:b8:ac:2a:fc:a1:fa:cd:74:88:76:
3c:4d:39:4e:22:54:95:2e:fa:aa:44:5b:55:bb:95:4e:4b:ee:
36:6a:67:d9:a1:5e:b4:92:46:59:e5:04:84:01:c0:cd:13:a6:
a6:c2:70:46:89:5c:03:61:e0:85:ab:03:e8:95:8a:71:c6:15:
11:02:a7:2a:ba:00:de:66:af:60:9e:37:d9:0d:33:87:28:ae:
58:3f:cf:b3:5b:24:ff:43:de:f5:10:36:06:d7:52:67:65:25:
59:71:84:32:99:d6:28:51:23:06:a7:a3:a4:c2:e1:70:9f:36:
fc:cd:87:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org