Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/7RZFX7CX9me3MCNFN5rQdbOnqNs.roa
File: 7RZFX7CX9me3MCNFN5rQdbOnqNs.roa (raw, json)
Hash identifier: 6aYbJZFcjpA33DbvrLZur3mKrXrKBXdAALSWDpx5h/g=
Subject key identifier: ED:16:45:5F:B0:97:F6:67:B7:30:23:45:37:9A:D0:75:B3:A7:A8:DB
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 0188BE9AEB053414F08123DE90507C66EF1A
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/7RZFX7CX9me3MCNFN5rQdbOnqNs.roa
Signing time: Thu 15 Jun 2023 10:30:03 +0000
ROA not before: Thu 15 Jun 2023 10:30:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35409
IP address blocks: 85.237.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Jul 2023 15:15:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:be:9a:eb:05:34:14:f0:81:23:de:90:50:7c:66:ef:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jun 15 10:30:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed16455fb097f667b7302345379ad075b3a7a8db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:be:df:14:18:76:bf:ff:7f:56:e3:3f:1b:1c:
de:08:aa:24:14:b4:eb:4c:fa:a9:0e:4d:bf:c5:fd:
b9:01:65:88:3c:6c:65:3e:c3:32:08:2b:98:cd:4e:
71:c9:1c:9c:e0:39:e6:38:22:8e:7e:41:0e:a7:a5:
d1:76:bf:16:fa:9b:9c:13:3e:fe:b4:b0:18:69:07:
3f:3b:c3:a3:1b:71:24:aa:ec:04:8d:58:cc:69:d8:
b8:eb:c6:5c:c5:73:3c:62:57:cd:8a:3a:90:97:f5:
01:01:51:83:98:53:90:cc:17:2d:0e:48:43:81:4e:
c2:5b:19:6d:bd:50:98:1d:98:e6:0b:ce:62:69:e5:
1e:90:1c:ca:4d:4f:14:e9:8a:54:8d:93:17:07:07:
3c:04:cf:57:b7:df:02:e1:07:78:ae:d3:84:83:d2:
93:43:c6:36:c3:db:85:1e:11:47:e0:77:25:d1:11:
3a:5c:cc:81:7c:a6:a3:16:2e:22:ed:47:e4:6a:99:
d4:e9:40:eb:3a:3e:27:bf:27:81:f4:fb:f1:9f:c7:
5d:27:f1:1e:57:9e:6a:66:b2:e3:a2:53:d3:04:13:
90:ee:d0:ee:d4:94:6f:f0:d1:1b:ba:c6:a2:5e:91:
4b:68:50:c1:90:35:81:28:9e:93:4e:d1:e7:09:8a:
8b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:16:45:5F:B0:97:F6:67:B7:30:23:45:37:9A:D0:75:B3:A7:A8:DB
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/7RZFX7CX9me3MCNFN5rQdbOnqNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.68.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:5e:45:a1:f7:fb:26:ec:30:df:f2:85:67:ea:6e:2b:96:02:
8f:da:45:0a:08:3e:f4:ce:14:75:45:bc:13:e9:e4:75:95:9d:
66:da:a8:21:eb:c6:54:91:8b:52:ee:fd:ad:42:3e:6c:2d:7f:
95:76:cb:2f:12:62:42:c6:7e:86:dc:6c:6e:f5:ec:6b:08:18:
21:c1:e1:8a:55:4c:a8:36:3d:bf:b9:41:a9:5a:e4:71:af:13:
8d:65:a2:d6:da:31:77:00:30:bc:69:6e:62:e3:f1:2f:3d:fa:
48:c0:fa:66:0f:43:b9:6a:51:0a:9d:a2:6c:ca:1e:90:c1:70:
bd:ab:9b:22:d7:67:f5:34:2e:3f:0e:c6:be:d8:26:44:5b:d0:
75:d8:19:61:58:de:c1:07:42:59:b6:c8:a6:6f:e8:3c:4a:7a:
2e:7a:ac:04:6d:7e:68:d8:8e:e5:3d:3c:77:fe:2f:64:02:00:
93:5b:7d:79:82:4d:a1:2f:eb:69:d0:a5:4a:3a:c3:78:d5:61:
0c:f4:16:e5:20:7a:02:6a:8d:db:5b:c5:29:4d:50:a0:54:3e:
bd:56:04:c2:d4:3d:06:d6:7d:d1:fe:02:24:4e:44:28:fe:ea:
a5:b4:17:53:ff:ec:41:f8:db:13:4f:2e:e5:82:33:2b:ce:df:
79:db:08:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:33 2024 by rpki-client on console-fra.rpki-client.org