Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/g5bWz8UT0pIs6azLkuYgH2jnyhA.roa
File: g5bWz8UT0pIs6azLkuYgH2jnyhA.roa (raw, json)
Hash identifier: Gjy4gNMjpRTqr+7qcq00gV0sJXwIrMOlpssehrPcvAI=
Subject key identifier: 83:96:D6:CF:C5:13:D2:92:2C:E9:AC:CB:92:E6:20:1F:68:E7:CA:10
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 019043CDBA416A6E16124BB4FA09D76A27D5
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/g5bWz8UT0pIs6azLkuYgH2jnyhA.roa
Signing time: Sun 23 Jun 2024 06:34:34 +0000
ROA not before: Sun 23 Jun 2024 06:34:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 85.237.72.0/21 maxlen: 24
85.237.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 11:46:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:43:cd:ba:41:6a:6e:16:12:4b:b4:fa:09:d7:6a:27:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jun 23 06:34:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8396d6cfc513d2922ce9accb92e6201f68e7ca10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:92:7f:ce:d0:8a:17:fb:31:90:5a:04:a7:1b:
fe:cd:b4:1e:2d:cb:bf:23:f6:68:09:57:61:7e:35:
ac:bb:50:19:58:c3:3c:ad:47:65:19:6d:25:1d:b4:
bf:97:f0:eb:27:6e:bd:ad:80:b6:b0:af:fc:75:b5:
91:ae:52:4a:e9:b8:7f:0b:00:a2:39:b5:85:a5:ca:
64:4e:a3:5c:45:4f:02:d5:0d:ff:7d:2f:84:ff:a2:
cd:00:25:80:f3:79:5f:25:d2:b4:4f:c4:9b:79:59:
bc:7c:88:da:f2:43:18:28:2c:4a:9d:43:ff:e6:92:
9f:b4:f0:90:e6:a4:64:0e:c2:ec:67:0d:5a:6b:28:
de:2e:ad:50:c6:4a:49:06:ce:a8:67:56:31:5f:5d:
4e:1b:db:42:34:4c:6b:69:cd:3f:2a:74:9e:72:b9:
e5:8d:51:17:44:65:57:6a:73:be:81:b2:6e:2b:11:
db:e4:fe:02:31:5b:15:b3:fa:a0:28:00:44:e2:e8:
35:c6:5f:b1:6f:a2:f5:a5:4a:8c:c4:ed:0e:68:2b:
1a:0e:b6:e5:fd:6f:4f:87:71:aa:f1:4c:b7:3e:8c:
b4:c3:9a:7f:7e:5a:04:af:01:b7:f5:52:75:45:28:
49:8c:ac:1d:31:03:8d:23:61:d9:ca:c5:6b:74:18:
7b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:96:D6:CF:C5:13:D2:92:2C:E9:AC:CB:92:E6:20:1F:68:E7:CA:10
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/g5bWz8UT0pIs6azLkuYgH2jnyhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.72.0-85.237.83.255
Signature Algorithm: sha256WithRSAEncryption
42:de:a6:a9:7e:dd:b7:d5:93:4e:25:5f:3b:f9:08:4e:87:81:
4d:8e:43:48:58:ab:a6:17:a6:02:87:ca:75:e8:6c:a8:d8:5d:
ba:02:b5:81:aa:df:23:e7:fb:4f:fb:76:6c:3e:4f:08:80:41:
e7:2e:6e:e8:f1:74:d1:9e:af:6a:5f:d3:b6:1b:26:11:c0:c2:
a4:af:7d:72:33:bc:fb:c4:14:f5:98:7b:af:0a:04:49:50:3d:
f6:09:f7:99:1b:a9:d3:d7:56:eb:dd:8c:02:5c:83:6e:ef:d4:
64:19:7b:89:06:93:a9:15:09:16:59:7a:9c:3b:c5:7a:26:e4:
1e:3c:59:05:1e:21:79:dc:5f:0d:ec:8d:80:16:c4:4e:df:fd:
ff:7b:4a:8d:a3:d8:3a:93:14:5f:43:b0:2a:6b:9c:2b:57:70:
71:4f:84:9c:03:6d:4d:00:e7:d5:fb:53:b8:25:5e:5c:bc:21:
ae:46:15:67:52:83:a0:25:37:7b:e7:89:99:11:6a:13:8e:26:
7c:d9:26:46:82:9a:fe:39:b6:b3:d8:cb:b2:73:10:9b:ce:31:
93:a5:8a:d2:04:47:52:fe:9d:e8:54:ae:75:1f:93:10:b0:f4:
13:6a:86:c3:17:a9:80:ae:f9:67:c5:10:3f:c3:06:52:25:a0:
2d:ab:25:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 14:38:24 2024 by rpki-client on console-ams.rpki-client.org