Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/M92lAGAN1xR3MgDKcmeKcH_ZGEE.roa
File: M92lAGAN1xR3MgDKcmeKcH_ZGEE.roa (raw, json)
Hash identifier: hmUL1pSYZiUr02X3PUA7knr34I01uQfRc1LuG4sSSyU=
Subject key identifier: 33:DD:A5:00:60:0D:D7:14:77:32:00:CA:72:67:8A:70:7F:D9:18:41
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 019248087E000B9AFA89E508DFD9DC459234
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/M92lAGAN1xR3MgDKcmeKcH_ZGEE.roa
Signing time: Tue 01 Oct 2024 12:22:48 +0000
ROA not before: Tue 01 Oct 2024 12:22:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 85.133.197.0/24 maxlen: 24
85.133.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 14:05:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:48:08:7e:00:0b:9a:fa:89:e5:08:df:d9:dc:45:92:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Oct 1 12:22:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33dda500600dd714773200ca72678a707fd91841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:80:83:d5:31:1d:a0:22:ce:9c:05:d6:70:21:
1b:ee:60:26:f5:b1:a4:24:4c:cb:7d:43:54:a0:d9:
c7:29:f8:11:a9:d1:99:11:6e:c2:77:35:c0:14:72:
15:af:30:67:51:84:df:64:07:7d:02:01:f2:d0:54:
f7:4c:7b:82:46:cb:f3:38:22:55:16:64:1f:5a:ea:
2b:39:32:65:39:77:ea:77:2f:e6:d3:bd:ff:45:31:
ae:c9:50:7a:07:af:cd:5f:8b:3f:b2:90:e4:f8:3e:
c5:1e:b4:2d:05:71:15:17:30:5a:b5:77:86:67:69:
f0:cd:5f:a5:5c:04:99:39:cf:6b:94:42:1c:55:54:
d0:a2:26:50:a5:07:04:0f:00:3d:b5:e0:a9:ac:3f:
7c:d0:ef:ef:3d:43:8c:7c:19:5e:73:e1:b8:97:99:
ba:91:f0:c1:f6:8b:c5:b8:10:ac:91:06:a5:70:90:
e7:e3:5d:f4:61:02:ef:e8:6b:a1:74:08:d9:9b:79:
da:76:fc:e9:64:fe:9a:6f:23:6a:5d:53:10:82:3f:
06:26:f0:09:db:b1:dc:a8:4f:e7:b4:b5:0a:c7:42:
9b:d0:dd:56:31:83:b3:91:15:6f:c2:0b:06:60:dd:
a7:cf:b1:ad:2a:ca:d1:1a:f3:ac:36:13:5c:44:20:
c4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DD:A5:00:60:0D:D7:14:77:32:00:CA:72:67:8A:70:7F:D9:18:41
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/M92lAGAN1xR3MgDKcmeKcH_ZGEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.197.0/24
85.133.222.0/24
Signature Algorithm: sha256WithRSAEncryption
90:30:4c:61:f1:b6:dd:a8:84:32:63:44:db:06:5f:48:14:21:
0b:ec:ff:91:28:8f:b4:69:4f:b3:01:7f:0f:88:f4:73:08:1e:
4e:52:cf:9e:0e:5e:9b:0c:6b:2d:28:11:3c:12:ab:57:01:9f:
7e:bb:f2:4c:64:b6:0b:47:d1:71:d3:52:0e:39:09:4c:24:bb:
5b:1a:38:43:d7:49:8e:e0:e2:65:9b:12:60:94:38:1d:ca:d2:
23:50:24:c1:bd:13:17:c8:f2:e5:6b:a2:72:5e:16:17:70:25:
30:20:4e:20:e7:cd:c6:2c:c3:7c:71:e5:eb:fa:72:d8:23:39:
ef:c6:67:96:0d:b3:c2:0d:03:e4:af:6e:2b:af:0c:94:aa:5a:
c9:92:4f:da:2a:92:b1:59:b0:2d:1b:47:a0:48:90:16:f5:de:
cb:15:ae:15:53:ee:97:e1:ca:3f:f3:8a:26:c1:05:82:8c:89:
5b:51:d5:5b:0d:42:2c:76:2d:ad:56:73:7b:22:ba:7e:c0:af:
43:6e:96:6a:15:e8:13:9d:da:2c:fc:51:b1:e3:73:eb:d5:8d:
f9:25:d2:93:0d:69:03:a4:1a:97:0a:d9:b7:8a:2a:a2:e6:2d:
70:5e:a7:05:af:5d:a9:a8:32:2d:d6:1a:05:01:6c:39:ec:e8:
e7:d1:b8:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 1 17:51:30 2024 by rpki-client on console-ams.rpki-client.org