Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Jdn8QX92eBQZk0EZiboNVew_XpQ.roa
File: Jdn8QX92eBQZk0EZiboNVew_XpQ.roa (raw, json)
Hash identifier: K+70r1aFADn8ecClPY/MB75xPNyvl4vK9+3odABiKQQ=
Subject key identifier: 25:D9:FC:41:7F:76:78:14:19:93:41:19:89:BA:0D:55:EC:3F:5E:94
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0189EDFF9ADF0B188648D3318626AAD091D4
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Jdn8QX92eBQZk0EZiboNVew_XpQ.roa
Signing time: Sun 13 Aug 2023 08:24:58 +0000
ROA not before: Sun 13 Aug 2023 08:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204203
IP address blocks: 85.133.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Aug 2023 08:45:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ed:ff:9a:df:0b:18:86:48:d3:31:86:26:aa:d0:91:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Aug 13 08:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25d9fc417f7678141993411989ba0d55ec3f5e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:25:a8:eb:87:99:20:83:51:31:f7:96:6f:b3:
3d:dd:17:7f:d1:b4:cc:14:89:cc:c9:22:93:fd:70:
39:e4:d5:7c:a5:c5:c0:aa:c4:e2:22:5d:8d:c1:a0:
04:bc:16:ea:3b:f9:85:06:70:b5:1b:0c:b4:19:f6:
5f:a8:44:29:ef:48:f9:94:c8:07:d4:49:d2:60:e0:
b1:87:e6:fb:f4:07:af:4f:ff:69:50:5c:9c:ae:63:
23:f3:63:9e:18:c8:fd:58:47:07:1c:b2:86:78:7c:
fd:87:14:d0:35:87:68:08:44:84:a3:4e:09:d2:e5:
44:c1:09:15:0a:23:91:e5:fe:cc:ee:f4:42:c4:e6:
c8:ff:d6:ef:cc:59:44:25:ca:60:5b:20:03:a0:7b:
41:a4:59:73:2d:47:2c:1f:ce:35:34:00:9a:7a:d9:
91:a1:a3:01:15:c3:f3:0a:4e:67:38:a5:c6:6b:06:
86:b5:44:dc:6e:d3:25:75:d5:9e:96:ba:92:fb:3e:
a5:21:de:e3:34:46:c1:55:e7:3a:78:34:3e:6d:c5:
6d:b2:a4:1d:ef:bb:00:29:ab:02:0f:09:3c:aa:28:
82:e7:30:57:61:0c:e4:0c:0d:69:74:bb:9e:4f:af:
9e:c8:9d:e6:66:0d:71:25:9e:b8:25:e8:7d:0b:54:
66:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D9:FC:41:7F:76:78:14:19:93:41:19:89:BA:0D:55:EC:3F:5E:94
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Jdn8QX92eBQZk0EZiboNVew_XpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.242.0/24
Signature Algorithm: sha256WithRSAEncryption
14:27:b9:be:df:fc:f1:ef:b0:47:cc:52:ae:8a:be:e0:a2:1f:
8e:09:03:6c:8c:87:9c:f4:d8:7a:21:aa:41:31:d4:8b:1e:10:
3c:8c:55:ff:22:5f:36:06:98:c4:1f:57:1c:31:81:7a:0e:6e:
ab:59:ae:df:6c:61:b1:d4:aa:d0:f0:dc:30:d3:d9:bf:5f:bf:
2f:99:86:82:b1:78:f0:90:ea:1c:83:64:fc:c8:83:75:f2:26:
f8:82:01:f1:02:33:2f:95:e0:6e:93:4d:b6:28:14:79:28:93:
ab:14:07:b5:00:37:ac:cf:17:6c:89:bc:e7:e8:1a:b3:8c:d7:
5e:91:07:74:af:d0:62:fa:b4:73:ff:94:50:4b:0f:b9:4b:4e:
5f:cb:12:43:4e:f3:9b:6a:fd:d0:53:57:21:15:5e:3d:c2:dd:
a0:4a:c3:9d:56:59:fb:ee:61:0e:b5:29:d5:68:14:ec:7f:70:
19:bc:d2:01:15:55:f3:70:cb:85:2b:51:29:78:9c:df:a5:8d:
82:7b:00:91:6e:1c:c6:7e:d4:c6:15:59:fd:1d:df:8e:77:a1:
fe:17:33:5d:af:bd:af:b2:be:af:c5:cd:4c:32:c0:32:b5:92:
d1:99:01:8f:a1:73:1d:9a:b1:a0:5e:3f:3b:44:4f:5d:8e:d8:
f8:d5:5c:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org