Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/cIgD_JJwTOY7PhXNr8MEsEP-PT8.roa
File: cIgD_JJwTOY7PhXNr8MEsEP-PT8.roa (raw, json)
Hash identifier: 6xXaU2GCqrPnzDCT459NNFuMM1D9lriE3PAZgAUJQgw=
Subject key identifier: 70:88:03:FC:92:70:4C:E6:3B:3E:15:CD:AF:C3:04:B0:43:FE:3D:3F
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018D75130164D42645354C83B86BA9822B78
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/cIgD_JJwTOY7PhXNr8MEsEP-PT8.roa
Signing time: Sun 04 Feb 2024 17:03:16 +0000
ROA not before: Sun 04 Feb 2024 17:03:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34412
IP address blocks: 85.133.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 14:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:75:13:01:64:d4:26:45:35:4c:83:b8:6b:a9:82:2b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Feb 4 17:03:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=708803fc92704ce63b3e15cdafc304b043fe3d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e3:7f:8e:5d:57:8d:ad:18:8a:c8:51:d2:6d:
a1:f9:79:d4:ae:be:a6:8a:dd:53:3c:88:38:d3:9f:
03:97:8b:c6:e4:da:c9:c4:ca:99:ad:53:ab:e5:f6:
b4:75:6f:51:d0:2f:1b:df:68:11:7a:ca:3e:0d:5e:
3f:70:ef:ac:a5:08:f8:20:2d:b3:e7:6c:47:b8:ef:
cf:26:f2:17:a3:c8:83:98:aa:11:1b:3d:d6:79:bf:
63:ce:79:8c:c6:66:ac:52:02:43:30:47:6b:30:f1:
8c:42:fa:ef:b5:2b:e3:3b:2b:79:1a:59:86:1a:bd:
ab:67:a0:08:ac:92:25:37:19:61:5e:ff:51:e8:0e:
56:b6:8f:26:81:1e:a3:46:da:c0:d0:b5:80:92:8f:
3c:37:9c:45:12:18:69:c3:ee:ec:6c:a8:82:30:f6:
63:7a:ef:1f:77:25:48:71:12:c1:67:72:42:0c:94:
79:a3:22:30:ce:10:35:c7:86:84:55:fd:7c:e3:58:
b2:c3:b0:37:9f:67:a3:b3:21:e6:59:c6:f7:4d:3f:
6e:23:3a:d7:af:34:48:b9:78:7c:24:2f:2e:04:0d:
a0:74:43:06:b3:0f:59:11:71:d5:80:b5:98:9b:1b:
84:ea:9f:01:9f:ce:5f:58:e7:24:7d:a9:91:c0:5a:
4a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:88:03:FC:92:70:4C:E6:3B:3E:15:CD:AF:C3:04:B0:43:FE:3D:3F
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/cIgD_JJwTOY7PhXNr8MEsEP-PT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.156.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:5d:7e:a8:0a:66:9d:4a:5c:cb:88:71:70:08:3d:63:1a:1b:
01:b9:d0:2a:17:dd:df:3c:51:e0:44:ae:31:89:e9:06:52:c8:
6e:e3:cb:4f:66:c1:60:53:6d:09:a7:0e:78:0a:cc:11:c6:1f:
95:84:e8:b7:6e:76:54:48:05:d2:ec:48:c9:e7:c4:88:a1:b5:
02:24:44:20:d4:8b:9c:7a:47:35:5d:c2:6c:e9:09:8a:1b:5d:
f5:db:4d:2e:a4:77:51:cc:19:4a:71:ca:96:43:7a:2e:7c:0b:
63:28:c8:9c:af:34:8a:ea:75:d7:c3:be:8d:41:4e:3d:ec:ec:
ed:59:0d:3f:0e:ae:5a:5c:2c:ce:fb:1e:49:ce:1d:7c:9f:db:
29:4b:86:11:a4:f4:d5:79:47:48:1a:20:fe:a0:d2:d1:4e:2e:
7b:c7:70:1a:1c:ca:7e:90:7c:d3:dc:c5:48:c6:69:08:f3:3f:
4a:a3:23:90:11:c5:8c:87:3e:58:0b:13:c2:b6:16:9e:e9:71:
a7:bc:94:c7:72:30:ef:ed:06:d2:b4:9d:1b:4b:e2:8a:be:27:
0b:07:4b:b0:9e:40:44:e5:f3:65:74:93:a8:79:f3:99:df:60:
f4:f2:84:15:ef:57:8c:32:5f:05:cc:ee:d4:fb:b5:6d:b9:a6:
54:e0:87:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org