Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/pdHiz33QQ6lMIyvMSr0-6fiCr4E.roa
File: pdHiz33QQ6lMIyvMSr0-6fiCr4E.roa (raw, json)
Hash identifier: lhhTS1UWVPIUyO0GHbC3g1je0SPpLDhyBAvVMy4Kpp8=
Subject key identifier: A5:D1:E2:CF:7D:D0:43:A9:4C:23:2B:CC:4A:BD:3E:E9:F8:82:AF:81
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 0188BB8D0D4569FE9D829A3C594934BCD213
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/pdHiz33QQ6lMIyvMSr0-6fiCr4E.roa
Signing time: Wed 14 Jun 2023 20:16:03 +0000
ROA not before: Wed 14 Jun 2023 20:16:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35053
IP address blocks: 85.237.69.0/24 maxlen: 24
85.237.70.0/24 maxlen: 24
85.237.76.0/22 maxlen: 22
85.237.84.0/22 maxlen: 22
85.237.88.0/24 maxlen: 24
85.237.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 15 Jun 2023 09:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bb:8d:0d:45:69:fe:9d:82:9a:3c:59:49:34:bc:d2:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jun 14 20:16:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5d1e2cf7dd043a94c232bcc4abd3ee9f882af81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:aa:2b:68:b3:2f:ac:b3:52:9d:6e:13:1b:46:
fb:7d:2a:77:87:18:ba:3f:01:dd:81:af:97:f2:b8:
8a:ad:ec:93:a1:f2:67:85:a8:93:54:cf:ab:8c:aa:
b4:f5:dc:7a:52:64:51:55:b2:38:12:a9:9c:d0:0c:
48:4a:81:88:b2:16:53:6d:33:f3:36:52:88:c2:b6:
32:98:5e:27:33:f8:6f:cc:1c:0c:30:93:1d:49:5f:
0f:5f:8b:fd:72:8a:c5:a3:3a:32:2d:6d:cb:67:cf:
fe:47:8a:00:b8:c7:e1:73:53:e4:55:af:80:79:35:
98:91:2a:2e:5e:06:84:60:02:29:2a:d7:62:6e:fd:
b3:2e:a8:1d:07:5b:16:c4:39:ee:75:c9:32:1d:cf:
06:d1:08:b1:c0:6c:7b:4f:d6:b5:c8:b9:11:da:04:
19:e8:f9:81:bb:df:c0:52:81:6c:04:a5:e5:15:fe:
f5:3d:79:40:92:f9:f0:ed:85:88:d3:99:97:4e:57:
8a:19:fb:66:73:56:23:42:e2:26:0c:e9:c0:a2:1d:
c6:14:b7:ac:3b:c6:55:ab:40:85:38:95:c4:69:a5:
0f:5a:84:d7:30:36:b1:77:16:de:a8:97:db:fd:b4:
69:33:67:14:63:db:e7:c6:2a:25:ac:0c:d7:a8:c0:
5e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D1:E2:CF:7D:D0:43:A9:4C:23:2B:CC:4A:BD:3E:E9:F8:82:AF:81
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/pdHiz33QQ6lMIyvMSr0-6fiCr4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.64.0/22
85.237.69.0-85.237.70.255
85.237.76.0/22
85.237.84.0-85.237.88.255
Signature Algorithm: sha256WithRSAEncryption
56:a2:24:bd:9f:99:d1:ef:9d:3f:b6:f1:25:ce:22:77:85:32:
1f:2f:b7:18:2f:6c:07:52:2f:d1:d0:a8:cd:90:98:26:c1:cb:
e4:a1:bd:39:59:58:42:39:62:af:4c:11:a7:a5:df:99:50:34:
1c:2d:fe:e1:b0:5b:1f:4b:7e:2f:e2:69:18:88:87:c6:c6:20:
d2:24:5a:20:94:94:8b:52:fb:a3:04:d9:2d:cd:9e:20:e0:fc:
7c:11:1c:4d:9f:d8:f0:7b:6a:52:75:5d:77:9a:be:02:e9:36:
5c:9b:3b:15:86:f7:2e:fd:a4:93:70:d0:cf:8a:26:34:1d:42:
94:c9:4b:fc:22:ef:c8:b2:41:bb:9e:08:f5:7c:63:41:22:d9:
b8:82:bf:c5:49:50:1e:f6:c1:4e:ff:b0:1d:e1:c1:47:94:d3:
76:03:a6:31:eb:60:0b:af:85:2b:7e:dd:5d:c1:a5:02:7d:e0:
8f:ec:7a:5a:37:3d:e5:97:49:41:24:99:bd:2e:1d:c9:85:cc:
1d:c3:a5:d5:c4:55:03:60:14:2d:1d:91:e9:76:ac:38:5f:a5:
f1:00:2e:1c:ac:50:03:75:3e:7f:0f:e2:bd:fe:26:81:57:c0:
ba:2f:8b:5e:c9:da:b3:36:1d:0d:d0:2b:4c:02:f4:ef:55:96:
34:11:ae:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org