Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/HEw2sIOw0lwAP6YA-L-a3thjndM.roa
File: HEw2sIOw0lwAP6YA-L-a3thjndM.roa (raw, json)
Hash identifier: GIAPxjn+P9Xp310qksojVYSjSe/zhM5bJ6Qth85iQX0=
Subject key identifier: 1C:4C:36:B0:83:B0:D2:5C:00:3F:A6:00:F8:BF:9A:DE:D8:63:9D:D3
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0190C2508230006A6639BE3FF3A4682E68D1
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/HEw2sIOw0lwAP6YA-L-a3thjndM.roa
Signing time: Wed 17 Jul 2024 20:09:34 +0000
ROA not before: Wed 17 Jul 2024 20:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215480
IP address blocks: 85.133.195.0/24 maxlen: 24
85.133.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 06:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c2:50:82:30:00:6a:66:39:be:3f:f3:a4:68:2e:68:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jul 17 20:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c4c36b083b0d25c003fa600f8bf9aded8639dd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d2:33:79:1f:42:0b:20:a4:c9:d2:ca:73:25:
70:66:f3:96:e4:12:51:52:4b:ae:d4:b1:9c:3f:67:
92:97:c6:13:0a:1e:97:34:58:d8:f1:99:e5:7b:c2:
22:88:76:a2:70:84:2f:9e:11:74:88:d3:c3:6f:76:
b6:ac:c8:0c:98:81:fb:0a:3f:5c:1a:fe:af:1a:29:
d1:4b:b3:04:db:73:7f:3b:cd:62:6b:b1:37:4c:3c:
7f:d3:b8:dd:e3:96:1f:87:c1:17:2a:18:95:20:c9:
87:cc:84:49:05:e3:bf:ed:69:9e:27:fa:00:19:ac:
8b:b1:dc:4f:70:ff:d2:43:06:ae:74:83:d5:68:43:
c3:56:ef:8e:c9:69:3b:eb:50:b0:32:cc:e5:a7:5e:
12:27:38:b7:a3:d4:ec:6a:a1:31:79:89:69:0a:6b:
42:e7:b8:c3:82:19:e1:0f:1f:68:14:8a:56:1e:37:
86:4f:63:e3:29:f4:40:b6:aa:2c:ef:1c:62:72:a9:
fa:da:01:e4:00:b2:1d:cc:bf:8d:fe:8f:e5:41:11:
e8:63:57:eb:69:ba:13:b2:41:a4:01:9c:5b:4a:1c:
e2:3a:35:cc:80:e6:07:bd:ea:34:fd:e8:3e:51:b9:
7a:41:13:e5:8f:f2:1a:e5:09:8f:4d:53:05:3e:92:
10:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:4C:36:B0:83:B0:D2:5C:00:3F:A6:00:F8:BF:9A:DE:D8:63:9D:D3
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/HEw2sIOw0lwAP6YA-L-a3thjndM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.195.0/24
85.133.224.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:b0:08:26:d0:f6:4a:24:90:55:27:10:6b:38:5a:a8:2d:a6:
71:9e:c2:f6:59:81:d8:10:03:a7:a6:6d:62:a6:1c:01:3b:87:
68:2c:6e:0d:21:53:11:03:d8:1a:db:99:dc:d3:54:57:35:11:
42:bd:58:9b:7e:da:47:60:a3:82:cb:cc:be:f1:8d:91:24:11:
f9:cd:f2:10:b4:d2:ef:06:d7:51:81:c9:9e:da:15:78:48:79:
bb:cc:65:a2:9c:dd:61:7a:00:50:ce:2b:c7:d2:db:96:dc:30:
4d:82:56:89:ec:63:8f:5d:27:d7:e2:4a:06:59:18:61:d3:a2:
d1:d3:97:36:49:f2:b7:1d:6d:fd:85:ab:77:6e:3c:b0:f8:07:
1c:ac:dc:48:8c:a6:bf:a9:10:52:4f:b4:8a:d5:4b:cd:c9:ea:
c4:ab:1c:17:fb:ed:b0:8b:a9:7a:e2:2b:7b:84:da:06:89:c3:
e9:0b:ef:7f:3d:52:45:86:a7:86:47:9c:fd:9e:c0:02:57:da:
6a:34:19:9b:25:a8:eb:f8:10:70:83:2a:fb:13:e0:bd:2b:81:
2f:9b:ef:5b:ba:24:48:99:0d:7a:8e:49:df:45:ec:8d:65:14:
82:35:ea:ab:b3:df:7a:d7:5d:25:0c:ef:ea:66:01:c5:fb:6c:
5b:66:6e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 29 07:30:22 2024 by rpki-client on console-ams.rpki-client.org