Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Ap5eh7fgdHl9Xfz77UfV-z2cCYM.roa
File: Ap5eh7fgdHl9Xfz77UfV-z2cCYM.roa (raw, json)
Hash identifier: TTBW6O4xsmuyhpUqLCAYDxhPal7VRVqFmFXAjasOEac=
Subject key identifier: 02:9E:5E:87:B7:E0:74:79:7D:5D:FC:FB:ED:47:D5:FB:3D:9C:09:83
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0189EDFF9A83B54771A878E932A1BBD93A78
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Ap5eh7fgdHl9Xfz77UfV-z2cCYM.roa
Signing time: Sun 13 Aug 2023 08:24:58 +0000
ROA not before: Sun 13 Aug 2023 08:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198154
IP address blocks: 85.133.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Aug 2023 08:45:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ed:ff:9a:83:b5:47:71:a8:78:e9:32:a1:bb:d9:3a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Aug 13 08:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=029e5e87b7e074797d5dfcfbed47d5fb3d9c0983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9f:ab:01:80:5e:7a:e2:58:9e:55:8e:f0:d3:
7a:81:ef:e2:ca:52:9a:f6:d6:0b:09:e4:89:0d:00:
6f:bb:64:66:63:f9:4e:11:ea:86:b4:e0:51:aa:da:
bc:68:7c:64:de:b5:b3:3d:c6:71:59:eb:1e:c7:40:
13:47:bb:88:6b:de:88:3d:0e:a1:32:83:22:24:4f:
85:dd:d7:6f:68:ab:b6:81:fc:4d:ea:0a:f4:3b:46:
c1:66:ca:69:c8:bf:b0:2d:cb:8f:93:b3:55:94:83:
8a:75:fa:66:6f:68:e3:1c:3b:25:f1:fe:a5:60:35:
74:e8:b4:6f:c6:7b:8e:8b:4d:25:49:17:93:50:5c:
59:78:03:c2:15:0b:b9:ef:4c:80:1d:1c:0f:4b:47:
f4:a8:e0:a2:ba:16:3f:8d:e9:43:75:4c:85:fe:31:
0d:89:55:78:22:10:fd:e1:42:15:88:b8:a9:05:48:
a1:3e:49:98:23:35:34:d0:c6:9a:45:07:71:71:9a:
26:6e:26:63:38:2b:06:bd:12:f2:56:77:cc:3d:91:
82:16:a4:7b:fa:88:c6:61:ac:4e:aa:6c:e8:82:59:
6b:9b:9c:f2:98:17:de:10:98:3f:9f:fd:9a:db:77:
84:63:a2:72:fc:7c:d6:cb:2d:52:f7:25:8a:3b:06:
76:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9E:5E:87:B7:E0:74:79:7D:5D:FC:FB:ED:47:D5:FB:3D:9C:09:83
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Ap5eh7fgdHl9Xfz77UfV-z2cCYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.218.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:27:ee:c8:bb:3f:b5:b4:b0:11:f4:ac:f2:4d:90:1d:e2:98:
5d:41:eb:f4:e8:4a:17:4a:7f:c0:0c:73:31:ab:28:84:bf:21:
be:a5:0c:90:ce:5c:6b:74:a5:60:54:fc:01:0e:fd:ce:93:25:
43:5e:a9:ba:a7:18:96:22:14:c1:f1:0a:b2:c4:db:7f:85:d8:
cd:55:49:de:29:48:e6:8f:7b:09:15:97:40:fc:ab:df:4b:c5:
a1:3f:b1:ab:50:f3:3d:9a:93:17:3c:5e:06:20:ff:bf:e8:b9:
01:c3:b5:e4:65:c2:f4:b9:40:5a:f8:b9:9b:31:1f:ac:88:16:
15:9e:0e:73:02:58:c8:d6:4d:e5:13:5f:b8:09:5d:df:a6:43:
d9:2f:e9:8c:34:c8:a9:e3:36:ed:bc:c8:9e:a3:74:08:44:d5:
d4:ed:c3:b9:25:3e:36:da:30:b8:bb:e0:fa:2f:18:84:73:96:
de:38:23:3f:14:95:bf:ea:dd:f2:dd:e2:00:52:49:72:41:fa:
1e:e5:42:fb:0b:7a:29:89:31:b4:83:6a:fe:fa:ac:d3:24:7c:
2b:c3:6a:63:71:16:d6:c7:e5:fa:b9:f1:49:9a:58:54:1f:ac:
b4:a5:2d:7f:d7:81:07:9e:e7:7a:08:c0:db:01:e3:f6:44:75:
9a:00:a8:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org