Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/AM1xcOE3cC1thkZsrEqXyb1FRjw.roa
File: AM1xcOE3cC1thkZsrEqXyb1FRjw.roa (raw, json)
Hash identifier: rGHX87puG31psPm9VBD2opQ9sYcU33elbDUnkJNqDH0=
Subject key identifier: 00:CD:71:70:E1:37:70:2D:6D:86:46:6C:AC:4A:97:C9:BD:45:46:3C
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0189A60AB720B443F7AB2B55AB4E700D4C4E
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/AM1xcOE3cC1thkZsrEqXyb1FRjw.roa
Signing time: Sun 30 Jul 2023 09:04:27 +0000
ROA not before: Sun 30 Jul 2023 09:04:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 85.133.179.0/24 maxlen: 24
85.133.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 12:44:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:a6:0a:b7:20:b4:43:f7:ab:2b:55:ab:4e:70:0d:4c:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jul 30 09:04:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00cd7170e137702d6d86466cac4a97c9bd45463c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2e:88:88:16:a3:25:b4:9b:81:d2:de:8f:fc:
fc:6f:86:1a:6e:2e:a3:b9:46:04:95:b1:ea:0d:f9:
ff:e2:5a:a7:31:84:14:7c:5c:4a:78:ec:17:dd:1b:
c8:e7:71:2d:a9:87:d9:ec:c5:cc:ca:ab:3d:64:98:
1e:0c:45:6f:07:8f:73:7a:76:7b:33:6a:c9:3b:09:
1e:ea:15:d6:7d:ba:5f:38:5f:14:e4:12:e3:9d:cd:
21:92:9e:7e:3f:15:78:9e:96:b7:69:fd:e3:62:ed:
76:f8:8f:d0:a7:72:61:27:fa:6c:b3:04:90:21:a7:
1c:0d:9b:85:1e:cb:0c:4b:d0:e3:8c:b1:97:3a:5e:
0c:1a:79:f2:c7:27:d0:2e:33:e4:91:3e:76:cf:38:
44:c0:40:4e:82:cd:df:f5:f9:e6:97:a6:d2:18:81:
d8:2a:ae:8d:14:a1:e9:3d:39:b7:64:3f:7d:71:a1:
b4:31:84:79:eb:ee:84:fb:13:82:30:64:fc:99:77:
df:69:ee:9d:60:34:4c:af:72:00:51:e1:01:5d:1a:
ce:a9:fd:ff:44:7a:4f:5d:b4:49:51:cc:07:44:27:
2a:78:34:43:2c:da:4d:8b:f3:a3:5c:d0:c6:89:eb:
f1:3c:a2:d0:e3:11:f3:41:be:9c:72:16:50:31:a2:
4f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CD:71:70:E1:37:70:2D:6D:86:46:6C:AC:4A:97:C9:BD:45:46:3C
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/AM1xcOE3cC1thkZsrEqXyb1FRjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.156.0/24
85.133.179.0/24
Signature Algorithm: sha256WithRSAEncryption
33:a4:21:7c:21:0b:ed:e1:45:da:72:93:f7:4b:8a:83:26:41:
55:c3:62:8c:4e:20:fe:5e:d8:e0:cc:d7:eb:56:56:a2:02:b2:
b1:d5:2a:6f:79:ed:ca:fd:f9:6e:30:49:06:53:b7:e5:75:d5:
64:ce:3d:c2:b2:88:b3:20:b6:88:6d:1a:75:a0:c0:46:6a:47:
4d:54:71:c7:60:47:33:b4:50:2a:11:11:75:cf:1a:e0:38:d2:
ca:89:70:a8:4f:24:b5:4d:ad:bf:a7:15:a6:e1:44:2d:82:4d:
d9:59:b0:16:8c:34:b6:09:01:98:0d:0e:22:c3:ba:98:dd:40:
c2:a4:25:bc:f1:97:6f:9b:56:da:03:04:70:ae:d7:35:7e:68:
e8:69:5a:33:22:7a:ee:b0:29:11:54:28:de:f4:7e:a4:cd:d4:
48:fd:a9:3b:76:83:67:fe:cd:2f:92:24:41:ba:2d:0a:b0:8e:
d2:c3:50:bd:10:c4:44:6c:7b:24:7f:ee:1d:0f:d4:74:64:e8:
cf:ce:b1:43:f2:6f:e3:2d:67:f6:6f:b6:47:af:92:cd:1c:10:
12:37:ff:17:fd:81:fe:8e:fb:e1:1f:14:3a:49:ed:7d:86:f9:
35:c4:a0:6d:35:bc:72:e5:e3:37:4f:43:6a:b7:21:2e:60:24:
64:8b:60:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org