Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/daVX3g5AJ8x3BVMmzUCTnVnQxJA.roa
File: daVX3g5AJ8x3BVMmzUCTnVnQxJA.roa (raw, json)
Hash identifier: N9WaMEpfoaxWQzWUTjlpDQ/3+rTP2XRH7WEvs/6K8Ls=
Subject key identifier: 75:A5:57:DE:0E:40:27:CC:77:05:53:26:CD:40:93:9D:59:D0:C4:90
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 01889B5532AD8189E12349087ADD01CFBE8C
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/daVX3g5AJ8x3BVMmzUCTnVnQxJA.roa
Signing time: Thu 08 Jun 2023 14:07:11 +0000
ROA not before: Thu 08 Jun 2023 14:07:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 85.237.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jul 2023 21:39:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9b:55:32:ad:81:89:e1:23:49:08:7a:dd:01:cf:be:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jun 8 14:07:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75a557de0e4027cc77055326cd40939d59d0c490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d6:5b:73:43:11:8b:53:02:3a:28:7d:3f:24:
49:1a:1e:be:e7:3d:65:79:7d:45:c4:a7:04:e6:ae:
30:45:3d:56:0a:0e:fe:93:e5:91:5e:a8:64:26:84:
df:2b:98:db:26:80:98:4b:e7:0a:25:eb:c2:25:fa:
28:1e:33:76:6d:0f:9c:4b:d2:cf:ea:e7:5b:bc:f9:
56:a4:24:3e:8b:4a:a8:70:7e:29:92:b5:ba:ab:4d:
8f:a7:c4:e8:a3:49:9e:da:af:86:f0:15:91:1e:84:
7c:18:9e:55:5a:06:2a:19:0e:74:eb:fe:cb:bb:08:
4e:a0:8c:b5:a3:46:5d:2a:cc:22:34:44:45:1f:ea:
f4:91:f8:07:5b:02:49:ec:c6:71:df:6a:00:3f:d4:
fc:98:3f:4b:61:1d:b8:e3:d1:f1:52:08:66:fa:d5:
85:32:16:1a:77:fa:6f:60:8c:df:1c:8b:74:12:70:
d7:99:91:48:ef:c3:fe:c2:45:05:8f:12:8c:9b:7f:
a2:9c:09:d2:cf:92:b2:94:7d:a2:9f:fc:c0:61:ee:
21:f3:9c:6e:64:7a:e8:46:e2:27:eb:a7:fc:d8:fb:
95:78:f0:be:d8:f0:8b:1f:e7:1c:5c:21:3b:f0:ac:
26:c5:0a:18:04:97:fd:fd:10:a5:d6:f9:22:a5:f6:
8d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A5:57:DE:0E:40:27:CC:77:05:53:26:CD:40:93:9D:59:D0:C4:90
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/daVX3g5AJ8x3BVMmzUCTnVnQxJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.71.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:e2:af:ff:53:ac:0b:61:f7:88:41:9b:32:8a:38:96:ee:e0:
1f:fc:52:c9:12:4b:9a:74:68:e4:dc:03:b3:16:ea:49:dd:fb:
3b:64:28:c6:b2:88:74:8d:47:d8:2e:c1:12:25:cf:86:6d:ac:
9e:a3:be:5a:ed:f9:37:b6:01:97:e4:8f:da:9d:b1:09:65:5c:
fc:3a:5b:6d:1e:ce:3c:d5:a4:f9:08:e3:1b:4e:7a:5d:71:1d:
5c:48:20:22:44:d2:1e:70:53:00:0c:4e:22:49:83:2a:fc:5f:
4a:db:bf:2b:82:9f:64:c4:13:47:96:26:ca:d9:77:cf:32:68:
54:be:1d:f9:32:cd:62:5a:42:f0:bd:87:39:12:cd:ed:eb:15:
b5:c0:64:4c:da:51:5d:c3:3b:60:33:b5:2e:2d:50:3d:59:4f:
bf:a5:47:48:9f:fe:be:8c:b1:ee:78:ce:a0:81:32:71:a5:cc:
f6:67:5c:9f:da:4d:60:2a:55:9d:76:74:f0:25:c5:08:3b:da:
08:09:61:d1:3e:88:b2:81:d6:de:ac:7b:76:08:33:8c:c4:36:
a0:89:b4:6e:c3:3a:62:0c:55:0f:8b:79:5c:03:ed:02:2c:ea:
70:9f:61:81:00:c4:ec:a5:86:df:01:0f:8a:55:9e:35:69:71:
93:55:9f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org