Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/cbBRn0k0eVWJS5HcgE2ko74W2-M.roa
File: cbBRn0k0eVWJS5HcgE2ko74W2-M.roa (raw, json)
Hash identifier: e7O97WG+GjcguOQxb7L82JUOVf5a5YN7MxDxEoz+GFg=
Subject key identifier: 71:B0:51:9F:49:34:79:55:89:4B:91:DC:80:4D:A4:A3:BE:16:DB:E3
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 018B091FD8DCCDA8FFF89F3314425A58840A
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/cbBRn0k0eVWJS5HcgE2ko74W2-M.roa
Signing time: Sat 07 Oct 2023 07:52:43 +0000
ROA not before: Sat 07 Oct 2023 07:52:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 85.237.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 08:09:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:09:1f:d8:dc:cd:a8:ff:f8:9f:33:14:42:5a:58:84:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Oct 7 07:52:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71b0519f49347955894b91dc804da4a3be16dbe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1d:1f:d7:bc:65:95:ad:cd:f5:ea:cb:52:95:
c0:f5:26:97:c6:72:fb:0b:25:7c:a3:10:48:86:64:
37:85:fe:9e:eb:e0:eb:38:7b:1a:69:bd:33:84:f0:
d9:99:ad:46:db:89:4b:77:84:ea:0e:f3:76:bd:25:
79:cd:3d:79:1b:40:2c:8f:2c:df:1a:d6:b3:6a:44:
a0:da:cd:9c:ac:a3:16:8e:97:a9:80:f7:87:1c:34:
27:54:33:3d:44:51:00:68:85:2f:c2:27:d4:f3:9a:
6e:57:0f:e9:76:58:5f:08:90:38:3a:64:1e:f7:c4:
88:4f:61:0a:99:f1:09:46:52:8d:5d:f4:bb:9d:e5:
c0:0e:6f:a5:91:6d:f2:8a:49:7c:86:23:f4:9c:55:
96:92:a1:93:0f:48:3a:e1:a3:5a:d9:dd:7b:3a:87:
37:04:ad:11:9e:1a:4d:e2:95:8a:98:a0:72:43:3b:
52:22:5d:63:d0:b1:61:49:de:6a:c2:c1:cf:25:87:
0b:55:57:62:65:2c:11:5e:6d:76:64:7e:86:46:97:
69:6e:73:0b:8c:6d:8f:5e:32:05:5e:cb:4d:45:c4:
e4:53:63:b7:84:df:64:63:d1:77:7f:b1:29:f2:09:
03:0a:83:e8:60:90:cb:7c:6b:42:fa:72:70:d2:59:
22:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B0:51:9F:49:34:79:55:89:4B:91:DC:80:4D:A4:A3:BE:16:DB:E3
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/cbBRn0k0eVWJS5HcgE2ko74W2-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.80.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:97:df:2e:1f:54:ab:da:1f:20:36:15:f6:1d:5f:19:fe:20:
77:14:60:a4:6b:7a:85:da:a6:bf:52:2d:22:44:dc:eb:97:f7:
68:4a:c2:04:7b:c9:46:17:b4:c6:b6:50:a5:e2:42:1b:c3:f5:
48:23:e5:d6:fc:2d:dc:03:2f:ad:f7:f3:71:bd:ab:42:62:ae:
c5:36:e8:99:5d:46:1f:f4:cc:9e:6c:37:b1:bd:5b:86:5a:a6:
2f:b7:2f:4d:d0:0a:7a:3a:25:d0:ee:c1:50:04:13:cf:a2:b2:
c2:d3:93:cb:ee:79:fe:2a:96:40:11:40:7f:09:64:34:00:a3:
5a:86:e4:d7:f4:07:42:2a:00:24:8a:8b:91:59:86:a4:8f:cc:
7d:d5:b2:15:74:ca:87:6c:8a:56:9a:8b:a6:81:1c:50:2c:86:
89:d3:18:09:f3:c4:04:cc:fa:42:38:2f:f3:ae:ed:04:90:71:
7c:f6:f1:a2:5c:1c:8f:a4:06:9f:44:0f:0b:a4:0f:fe:c9:e9:
75:77:7f:81:dd:74:6e:4e:45:17:9a:ee:5f:1a:ae:a8:3f:02:
70:50:bd:97:ef:2f:f1:63:3c:1d:67:23:91:be:c7:e9:0e:5a:
ed:49:20:c4:87:12:37:c5:14:6f:6f:de:31:bc:d9:83:da:78:
b1:96:9a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org