Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/f3PX3LkQ808ke0uuLMJcX4jlwb0.roa
File: f3PX3LkQ808ke0uuLMJcX4jlwb0.roa (raw, json)
Hash identifier: VNCQ+WTYxGZhunuItTLVGWKQRqTLMUVQIERt6TbdX+8=
Subject key identifier: 7F:73:D7:DC:B9:10:F3:4F:24:7B:4B:AE:2C:C2:5C:5F:88:E5:C1:BD
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018CA101CA4662E8001AF520A7446B1F30ED
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/f3PX3LkQ808ke0uuLMJcX4jlwb0.roa
Signing time: Mon 25 Dec 2023 12:44:58 +0000
ROA not before: Mon 25 Dec 2023 12:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29555
IP address blocks: 85.117.96.0/24 maxlen: 24
85.117.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Dec 2023 04:13:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a1:01:ca:46:62:e8:00:1a:f5:20:a7:44:6b:1f:30:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Dec 25 12:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f73d7dcb910f34f247b4bae2cc25c5f88e5c1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:93:d1:0c:b7:9d:59:86:7e:95:c8:07:43:65:
6d:fd:20:b4:ee:cf:27:5d:cd:7c:93:2e:b7:1e:81:
f9:b4:53:6a:3e:21:c0:83:c1:2c:30:df:d0:d8:46:
e9:87:55:c8:ef:1e:29:43:02:f4:08:e6:92:52:2a:
63:f2:53:6e:15:b2:9e:a7:07:f9:d7:fa:32:0d:4e:
9e:77:97:cd:40:14:62:c8:46:5c:0b:55:62:12:d8:
1a:c0:03:7d:91:6d:bb:8c:b8:8e:a6:9d:78:52:5c:
70:cb:c0:a0:8f:c6:fd:07:7a:3a:d0:16:26:3e:56:
ae:c9:7c:98:62:85:fa:78:3c:97:19:bd:21:5b:4c:
02:e8:45:f8:76:7e:e1:56:92:f7:77:07:07:3e:9d:
55:d2:e3:65:8b:34:b3:f2:f2:19:57:77:0c:e3:d9:
97:d4:09:82:b7:2a:cb:5b:65:5a:9c:25:b2:96:fb:
74:64:25:9b:34:3b:06:91:7f:f2:22:dd:ad:4d:a7:
26:9a:eb:19:e8:58:3c:66:75:f5:63:a8:8b:86:ad:
25:84:27:bd:76:80:a7:f1:5c:c8:0b:4b:c4:93:c4:
ff:16:fa:08:c9:23:6e:56:79:9a:2d:f1:4e:e9:2f:
a5:b2:93:ea:35:97:53:0b:c3:82:75:96:06:f5:c2:
67:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:73:D7:DC:B9:10:F3:4F:24:7B:4B:AE:2C:C2:5C:5F:88:E5:C1:BD
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/f3PX3LkQ808ke0uuLMJcX4jlwb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.96.0/23
Signature Algorithm: sha256WithRSAEncryption
dc:d8:8c:13:0d:46:31:30:dc:91:f9:90:16:9e:d2:dd:a5:64:
88:e8:cb:ee:db:3b:21:3f:4d:d4:57:27:5f:10:f8:41:c3:d2:
aa:ea:65:a6:fc:5e:48:b5:61:8b:a4:fb:4c:0d:c9:ec:e8:30:
d1:d1:ff:cf:f8:fe:ce:4a:78:f7:ff:e0:75:f6:e6:71:41:99:
b8:7d:7f:d3:ed:7f:77:cf:91:a2:6e:78:d9:4c:4f:c1:94:9e:
29:4e:14:c9:f1:bd:b7:a2:ae:f4:27:bc:30:84:ae:b1:fe:7b:
72:ef:95:1d:38:94:f7:ef:dc:ce:01:73:40:47:23:04:f6:df:
2b:d7:df:90:e3:f5:96:d3:84:20:4b:dd:95:ce:94:13:04:74:
5e:70:9c:ea:92:2d:22:ff:08:ed:37:28:c3:53:1c:63:aa:da:
c7:8b:30:28:2f:a1:0a:9e:cc:a9:8d:c9:d7:24:db:70:b7:27:
c8:eb:4b:70:cc:a6:0b:d1:31:62:c4:68:da:8c:5c:fc:63:2a:
a9:05:4d:24:43:5c:e3:02:dc:66:f0:68:09:6e:9f:40:01:ae:
3b:fe:a8:09:d5:9a:00:54:64:78:1b:f5:7f:bb:6a:df:ce:c3:
b7:58:bf:08:35:90:3b:1f:dd:63:4a:2f:74:8b:a6:ed:2a:b0:
6d:16:38:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:08 2024 by rpki-client on console-fra.rpki-client.org