Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Mw0WmBrNdD_wc2gyDaExj_saBxU.roa
File: Mw0WmBrNdD_wc2gyDaExj_saBxU.roa (raw, json)
Hash identifier: a11cPUA/HDkS8F0/VnKyrMx957d63V0iILbr0+Dk/HY=
Subject key identifier: 33:0D:16:98:1A:CD:74:3F:F0:73:68:32:0D:A1:31:8F:FB:1A:07:15
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01925CAC00C1697CC8E17F96140A8B480A20
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Mw0WmBrNdD_wc2gyDaExj_saBxU.roa
Signing time: Sat 05 Oct 2024 12:33:48 +0000
ROA not before: Sat 05 Oct 2024 12:33:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214088
IP address blocks: 85.133.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 07:15:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:5c:ac:00:c1:69:7c:c8:e1:7f:96:14:0a:8b:48:0a:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Oct 5 12:33:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=330d16981acd743ff07368320da1318ffb1a0715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:50:0a:d4:31:64:bc:a3:83:cd:2f:f6:a9:6e:
43:96:ce:7c:cf:ab:ba:68:34:73:41:bb:13:1d:98:
4c:48:6a:fe:c3:c9:b3:cf:4a:58:1d:5e:f3:ce:45:
a2:da:5e:a5:ff:49:1c:63:51:20:5c:fb:b4:0e:87:
03:f7:c6:21:83:71:31:64:b2:ae:53:63:e9:57:89:
99:13:90:52:e6:64:df:dd:e0:9c:dd:95:fe:45:74:
49:1a:9c:8a:89:0c:b3:41:6d:e3:be:6b:0a:2c:6e:
50:5d:d0:a5:94:cf:e7:c2:c6:2d:35:6e:1f:e2:7d:
2e:a7:e7:c8:a7:53:41:62:96:d3:3b:9e:d1:b1:4c:
9a:d3:70:f0:c8:94:ee:06:6a:1f:c9:b8:f4:44:ba:
d6:cc:17:c3:23:d1:b4:a3:86:69:eb:e5:70:f0:e0:
a5:bb:5a:73:0a:50:c2:1b:5a:94:44:50:19:cb:1d:
ea:3f:29:55:85:e6:a1:5f:c3:43:3a:6d:79:51:3c:
a5:b7:6e:ae:b7:99:87:f3:f4:6d:14:4c:ce:06:8f:
ea:9b:06:72:c6:ea:18:03:1f:51:4e:f6:a4:7e:42:
19:c1:51:84:22:85:14:e7:1a:56:ff:dc:e5:31:53:
3a:d2:b0:32:44:6a:40:ca:e3:d8:1f:3f:65:82:7c:
a5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0D:16:98:1A:CD:74:3F:F0:73:68:32:0D:A1:31:8F:FB:1A:07:15
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Mw0WmBrNdD_wc2gyDaExj_saBxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.221.0/24
Signature Algorithm: sha256WithRSAEncryption
49:73:20:f6:01:d1:3e:06:b6:4b:47:e6:c0:c3:3d:d9:cf:11:
ee:1d:e1:23:e9:75:40:8c:c4:af:b7:05:33:90:26:5a:7c:db:
1f:a7:5b:0a:dc:dc:8d:8c:e9:27:01:59:92:d8:76:20:ec:c8:
ef:3e:15:8e:6f:57:79:9a:62:62:98:b5:d3:7d:26:4b:6c:7e:
1a:98:0b:fc:e4:36:47:61:15:ff:c6:23:97:1c:3a:ee:14:9a:
87:8d:d8:20:9f:89:f8:26:75:9b:a3:04:61:93:b1:f5:bc:8c:
27:77:72:b4:29:8e:4d:eb:21:ff:94:82:dc:7d:cd:2c:f6:ff:
3b:f3:f7:39:ae:55:fb:31:61:98:56:c2:b5:e2:97:f8:ec:68:
8b:f8:5b:12:c6:de:48:e1:a7:6c:c5:da:fa:b9:0a:27:97:93:
8f:7b:28:10:29:99:b2:cf:eb:b7:99:9d:e5:26:44:8f:9b:71:
07:20:fe:91:08:3c:d2:1d:c7:5f:38:65:55:85:dc:2b:43:b4:
14:40:43:bf:89:b3:fb:50:34:00:b0:f0:e6:bc:7b:24:a3:41:
af:db:1e:d3:65:07:b0:49:06:3e:e3:2d:bb:0d:e6:bb:95:80:
e4:28:c8:73:f4:33:ba:45:22:6e:3e:63:be:8e:11:92:86:c7:
b1:8f:fb:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 9 09:56:46 2024 by rpki-client on console-fra.rpki-client.org