Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/EPQDtv2WjXXyp4CYkO7_XW5a1co.roa
File: EPQDtv2WjXXyp4CYkO7_XW5a1co.roa (raw, json)
Hash identifier: d9Lf94mb/k4wBvab9b3cWCBqq3RmbufDOAfA7nE/u7E=
Subject key identifier: 10:F4:03:B6:FD:96:8D:75:F2:A7:80:98:90:EE:FF:5D:6E:5A:D5:CA
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01904118ADEC69A00343FB372A4C94F52A5F
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/EPQDtv2WjXXyp4CYkO7_XW5a1co.roa
Signing time: Sat 22 Jun 2024 17:57:34 +0000
ROA not before: Sat 22 Jun 2024 17:57:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204203
IP address blocks: 85.133.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 06:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:41:18:ad:ec:69:a0:03:43:fb:37:2a:4c:94:f5:2a:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jun 22 17:57:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10f403b6fd968d75f2a7809890eeff5d6e5ad5ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f4:45:47:b5:fb:f8:bd:7d:e7:3c:b1:14:61:
51:28:62:af:f3:5c:7a:8c:ed:51:52:f1:c2:4c:1d:
da:ac:27:53:93:a1:b4:7b:de:8d:ab:de:c1:1c:b4:
2a:37:25:93:cd:46:6c:53:90:71:0c:fb:dd:de:4d:
7e:d9:b4:5f:6a:55:a1:bb:85:c7:92:b3:65:4d:3d:
e3:af:14:21:3d:36:2f:a8:95:3e:b9:68:c8:00:b3:
10:2a:ce:78:4f:91:06:00:e6:39:4a:57:9c:42:37:
5a:83:cc:bb:bd:64:fb:7c:51:95:c2:06:e2:76:94:
08:5b:ae:d4:77:00:e1:9c:49:5d:81:79:e1:22:5e:
cb:dd:56:7a:76:af:cf:91:34:ea:3e:25:12:95:77:
b1:f5:67:5a:48:8b:0e:36:68:a4:4c:af:e3:f0:c3:
d0:06:e5:a8:c3:3c:a0:e1:09:ae:a3:bd:ea:21:d3:
65:3a:02:0b:be:5a:07:39:aa:63:7f:57:4e:7c:96:
c6:43:e5:c7:85:fe:4e:8f:29:70:3f:a3:51:ba:54:
19:e4:95:02:6c:95:8d:dc:28:b7:01:ed:d3:e4:df:
69:af:5a:81:3b:74:fe:21:88:7f:13:a0:15:9f:3f:
26:b5:c0:b6:13:8f:30:0e:48:b5:d6:93:22:63:76:
63:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F4:03:B6:FD:96:8D:75:F2:A7:80:98:90:EE:FF:5D:6E:5A:D5:CA
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/EPQDtv2WjXXyp4CYkO7_XW5a1co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.206.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:46:b5:0e:99:62:76:29:eb:98:76:78:2f:4d:9c:ce:6f:0d:
45:ad:54:0c:ab:f2:d1:74:77:ad:dc:ae:00:f5:2c:16:e7:d3:
3c:59:ff:0d:c0:ec:51:f3:11:d9:e1:8e:17:66:76:e8:e5:15:
78:88:7a:ad:aa:89:9d:bb:cc:f8:ef:81:4b:40:4c:5b:f3:7a:
94:e5:6c:a5:e5:16:b3:86:30:32:e6:a0:b5:2a:f5:fd:80:d4:
8a:75:8a:df:8e:b8:55:42:1f:9f:7b:3f:ed:0b:8d:1d:29:b4:
6d:d8:3d:c6:8a:c2:f1:54:19:33:df:0b:c0:81:87:4c:78:f4:
97:a5:f9:89:9b:ee:38:1e:b6:2b:84:c2:e3:97:88:74:da:3a:
86:8d:ec:51:e7:96:6d:5f:58:0c:f9:fe:4c:af:e4:a3:e3:3c:
e3:22:90:4f:e6:51:62:f6:d1:d0:04:97:8d:aa:a2:b1:9d:08:
6e:ca:f4:20:11:2b:1c:8f:3c:aa:cf:e8:74:8d:8a:58:9a:dd:
6e:46:72:01:94:b6:8a:4f:a5:24:cf:ff:5c:26:19:b6:11:36:
5d:33:6f:3e:e2:04:c5:ea:bf:a8:44:0b:29:2a:c8:a9:f8:3b:
af:d3:16:60:5a:f0:99:3f:8e:b7:88:28:8e:89:6c:e9:a3:10:
b5:c3:a5:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 29 08:16:42 2024 by rpki-client on console-fra.rpki-client.org