Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Wnw3vxPh6GsUiMEQNpKSZAZV6xA.roa
File: Wnw3vxPh6GsUiMEQNpKSZAZV6xA.roa (raw, json)
Hash identifier: MMyTgPYI/l4MBfbaejiUb85oy8e2utNkK2xe6E0E34A=
Subject key identifier: 5A:7C:37:BF:13:E1:E8:6B:14:88:C1:10:36:92:92:64:06:55:EB:10
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018D5F5B93A4DD6039EE16C59F93BD694DDF
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Wnw3vxPh6GsUiMEQNpKSZAZV6xA.roa
Signing time: Wed 31 Jan 2024 11:50:53 +0000
ROA not before: Wed 31 Jan 2024 11:50:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51889
IP address blocks: 85.133.199.0/24 maxlen: 24
85.133.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Feb 2024 10:40:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:5b:93:a4:dd:60:39:ee:16:c5:9f:93:bd:69:4d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 31 11:50:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a7c37bf13e1e86b1488c110369292640655eb10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fe:64:5b:d4:bb:f0:cf:ea:cf:dc:07:f0:22:
94:c7:b5:eb:98:74:ab:42:7c:ee:e9:79:89:cd:01:
31:ed:c6:89:da:c4:cf:5d:58:f5:b9:d2:3a:87:6b:
6b:7a:ad:15:0d:be:17:87:12:cf:10:46:98:f6:12:
f0:83:c2:45:8f:61:39:a4:6a:04:f6:d9:40:39:b5:
85:6f:91:8d:2b:e0:ab:93:97:9c:a0:b8:77:40:04:
e5:a7:27:85:b1:4e:3c:74:30:ef:a4:c8:9f:20:c4:
17:79:d7:e8:43:d4:3e:e3:86:b6:24:ae:2a:1e:2b:
ee:dd:dd:2e:b0:0c:fa:34:27:86:c8:f5:c9:01:73:
96:f0:a9:c6:1c:53:4c:5c:d6:5f:de:31:32:2e:f5:
e9:ab:3f:a9:c6:b1:93:02:15:c3:f2:d1:14:f3:ad:
54:7b:cc:33:4c:20:7f:24:20:f7:4a:35:4c:32:51:
11:5e:4d:24:2f:6c:2e:f7:b6:22:1c:a0:25:e0:fb:
49:7d:7d:ee:05:68:26:5d:d2:ae:bf:62:d7:03:fb:
f5:50:83:dd:63:13:5d:a3:c1:f7:93:1f:62:8c:e3:
19:db:20:c4:df:6a:8e:38:45:8d:b2:bf:a1:60:0e:
ad:1f:84:d9:5a:03:2b:a7:9c:a4:09:c4:04:0e:2b:
0e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7C:37:BF:13:E1:E8:6B:14:88:C1:10:36:92:92:64:06:55:EB:10
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/Wnw3vxPh6GsUiMEQNpKSZAZV6xA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.199.0/24
85.133.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:e4:1b:d7:b1:ff:18:94:96:58:50:a0:82:66:5a:70:2f:63:
43:3a:05:62:4c:33:de:64:74:2c:2f:42:2f:06:74:10:89:0e:
77:99:a2:24:20:3b:1d:02:fb:73:b2:24:3d:0c:99:30:f0:f0:
c2:70:86:f8:b6:4c:77:cc:44:78:1e:cb:dd:b1:e4:b4:81:1d:
29:9c:d4:f8:06:06:b6:0b:3d:2d:00:8e:f4:3f:a7:0b:9f:fd:
2b:71:a2:61:4c:73:90:0a:65:ae:2c:95:14:f1:ef:a3:1c:2e:
53:75:0e:51:92:46:9d:5a:22:8a:3a:6b:35:9f:0d:ae:cc:60:
34:12:77:ba:0e:81:0b:0b:90:e1:13:83:2d:bb:62:16:25:2e:
11:11:e5:40:57:bc:ed:c6:a1:31:09:f5:43:05:be:3d:20:9a:
1f:30:1e:c0:d3:81:39:24:88:de:27:e4:49:10:f7:eb:58:c3:
44:f8:40:9a:e8:50:3f:53:6f:c5:68:38:38:f6:20:7a:97:d3:
10:77:d5:73:61:43:b4:6e:69:25:a6:e7:36:11:ac:8e:fa:3e:
b4:bf:dd:4a:d8:7a:51:22:4a:33:e8:b4:6e:b3:75:72:af:6a:
5a:fc:b9:f3:e4:a8:d7:c9:74:52:51:de:44:4b:da:1f:25:22:
4c:82:fb:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org