Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/AH_SUeH-ksM7zqWAD-gVXiM15sA.roa
File: AH_SUeH-ksM7zqWAD-gVXiM15sA.roa (raw, json)
Hash identifier: KjB/pb3iiu/ShY8Qwl86IdrVJvZg50LNOCxOtnnUy4I=
Subject key identifier: 00:7F:D2:51:E1:FE:92:C3:3B:CE:A5:80:0F:E8:15:5E:23:35:E6:C0
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018F8F7F214F445C1D7D735DAE107638A668
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/AH_SUeH-ksM7zqWAD-gVXiM15sA.roa
Signing time: Sun 19 May 2024 06:17:04 +0000
ROA not before: Sun 19 May 2024 06:17:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 85.133.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 06:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8f:7f:21:4f:44:5c:1d:7d:73:5d:ae:10:76:38:a6:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: May 19 06:17:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=007fd251e1fe92c33bcea5800fe8155e2335e6c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1a:6c:87:3c:65:4d:c7:c5:7b:ce:54:e7:19:
ae:24:98:79:ff:37:e1:bc:aa:15:93:a4:51:b2:a7:
c0:76:10:14:f4:c5:16:bd:a5:6e:02:38:3f:45:6c:
18:bf:6f:f1:fd:14:68:ab:08:2d:b1:fa:36:18:e1:
ae:cd:e7:e5:16:b2:76:e6:11:7c:40:0c:5c:d5:5f:
f8:ee:f7:9a:c7:41:1c:e3:66:ca:4e:ee:41:dc:d8:
1d:82:54:3b:37:1c:08:55:ec:88:ca:1b:29:e8:01:
a3:c4:6a:e1:1b:9c:ca:29:33:f5:28:29:74:cf:3e:
3d:25:a8:a7:ec:73:38:ce:12:4b:68:87:f0:23:f6:
9d:f2:88:0f:6b:c9:35:6d:49:85:e4:cd:9d:94:85:
f7:62:2a:af:60:ed:a0:48:eb:0a:6b:2d:a3:ab:e7:
d3:80:11:5b:e5:4f:1f:68:92:b4:ab:45:59:10:f2:
05:97:a9:50:2f:dd:38:6b:96:1d:85:d8:7f:3b:88:
a6:7a:8f:a3:31:5e:0f:77:08:db:86:7e:ef:74:2b:
09:45:82:f4:3e:4b:d7:fa:7b:93:a9:dc:6e:ef:c1:
32:76:d1:eb:4e:3f:73:ec:5b:2c:7e:a7:90:9b:51:
54:70:2c:39:51:19:bd:35:69:9d:42:3a:a6:de:d9:
52:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:7F:D2:51:E1:FE:92:C3:3B:CE:A5:80:0F:E8:15:5E:23:35:E6:C0
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/AH_SUeH-ksM7zqWAD-gVXiM15sA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.143.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:30:8b:ed:80:46:93:c1:5b:a3:6f:57:9d:71:cf:eb:1a:4c:
5b:98:51:81:13:b0:23:0b:e7:43:32:de:5e:a7:03:90:c8:54:
94:76:8e:ee:2e:af:a2:9f:1d:5e:43:d9:e2:7f:60:64:0d:c6:
12:41:83:41:3d:12:27:23:f0:b4:44:12:c6:74:8c:5b:d1:d0:
b0:7a:70:4c:fe:c6:04:60:88:e2:ec:04:d0:d4:97:ff:e4:48:
de:28:d7:47:01:5a:59:d6:d7:d5:16:cf:e3:e2:3c:47:66:1d:
36:fd:67:9a:b7:58:83:a4:7b:58:86:d5:84:c7:6b:b2:0f:b9:
12:7e:0a:84:84:31:d3:4d:ac:58:08:b0:99:5e:33:42:24:21:
d0:06:cc:a6:1e:5e:b7:8f:47:b5:4f:dc:b7:4a:72:47:ea:34:
6d:b1:45:1c:c6:21:8d:af:14:30:f3:50:67:f9:0f:7f:3c:4d:
9b:97:78:16:67:c3:8d:fe:81:9a:02:94:15:ed:1e:25:5e:44:
16:ea:da:2c:4b:66:b6:59:d5:88:8a:af:cc:98:f0:6c:cd:09:
22:7c:2a:c3:d6:85:ff:72:e7:fc:b1:ad:0e:4e:9a:fa:77:6a:
2a:ad:9b:1c:d9:b4:24:2e:83:75:9a:17:bd:56:49:68:e0:c5:
6d:46:de:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 07:59:45 2024 by rpki-client on console-fra.rpki-client.org