Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/e8wXiFc1ggScAXHYDK3OXe6MdJ8.roa
File: e8wXiFc1ggScAXHYDK3OXe6MdJ8.roa (raw, json)
Hash identifier: sX+2wcUV+z7HvZEiRQhs+8LDNndrEpvBApvc1Ellweo=
Subject key identifier: 7B:CC:17:88:57:35:82:04:9C:01:71:D8:0C:AD:CE:5D:EE:8C:74:9F
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018D78D361D8A002D12F8C1B630CB6860AF4
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/e8wXiFc1ggScAXHYDK3OXe6MdJ8.roa
Signing time: Mon 05 Feb 2024 10:32:15 +0000
ROA not before: Mon 05 Feb 2024 10:32:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3320
IP address blocks: 85.133.174.0/24 maxlen: 24
85.133.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 07:06:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:78:d3:61:d8:a0:02:d1:2f:8c:1b:63:0c:b6:86:0a:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Feb 5 10:32:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bcc1788573582049c0171d80cadce5dee8c749f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b3:92:11:d2:34:90:7b:cc:69:1a:0e:b8:d1:
b7:20:ba:d2:b3:2a:d5:0f:52:04:82:ac:ac:63:f4:
8c:70:ae:a3:1d:b9:98:a8:59:45:46:63:da:43:af:
05:22:c8:1c:d4:79:16:ab:a2:67:79:85:30:87:15:
e1:a4:2e:df:f9:84:33:1b:7e:81:00:1d:d9:19:a8:
cc:be:61:cc:b6:13:7c:10:00:94:e3:89:85:86:95:
b0:bb:2a:25:a4:91:01:bc:32:01:dc:4e:f9:2c:7a:
0e:89:3f:d0:80:fa:77:a5:46:c5:24:63:0c:e2:9e:
6b:c0:c6:44:8e:04:f3:d5:d0:0f:48:bc:3b:3c:da:
c3:1a:33:97:67:f4:b5:b3:7d:a2:41:14:8f:52:df:
2a:cf:68:04:f9:b3:a5:b6:8e:3a:60:f7:25:20:d5:
a8:fc:73:f6:7a:26:06:9e:80:bd:2a:b0:df:3a:39:
98:11:26:a3:65:00:2d:73:7b:7b:56:6e:5c:e2:24:
ed:c4:55:df:83:1a:87:e9:1d:57:27:bd:28:b0:91:
fd:a0:2d:90:07:d6:69:8b:67:c3:9c:e7:56:ab:24:
0c:80:3b:cd:f9:e0:c1:97:85:a4:e1:85:c4:c4:90:
e6:14:44:bf:3a:27:ae:ec:ae:a7:d0:ab:f5:15:c6:
35:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:CC:17:88:57:35:82:04:9C:01:71:D8:0C:AD:CE:5D:EE:8C:74:9F
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/e8wXiFc1ggScAXHYDK3OXe6MdJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.174.0/24
85.133.208.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b6:e0:e7:b5:8f:8b:b2:b3:c2:09:78:ef:0a:41:5c:a4:e9:
91:6d:c2:08:53:c9:c8:4d:f1:d7:3e:1f:b7:ad:f6:ea:4b:17:
e4:06:9a:75:0d:db:25:1c:b9:03:53:4c:6a:63:14:94:3f:5c:
a9:40:9a:a4:bd:69:87:fa:a7:94:a7:cd:82:55:96:b5:b1:97:
d9:33:c2:8e:7d:0c:53:0d:6e:92:85:c8:21:fe:b0:14:86:72:
8f:e5:dd:c8:ce:4f:d2:fa:8a:22:03:fd:f7:03:cc:93:1b:58:
7a:60:e4:b5:8b:d0:1e:91:5d:20:7b:e2:99:82:ca:a5:03:c8:
f4:50:92:b0:18:2b:2e:87:57:30:08:31:0e:30:97:08:f9:35:
bc:9b:64:34:26:33:92:82:0a:0e:f1:26:97:ca:7e:6e:fa:c5:
c4:e3:c1:1f:a5:29:d2:da:6f:4d:df:31:28:1f:27:21:54:59:
d3:c8:12:ff:95:86:01:03:4d:43:93:cc:32:80:0d:36:f1:36:
19:52:c8:72:23:af:95:0e:4c:f1:38:80:e6:c3:8f:b1:45:52:
a9:ce:5e:94:5b:78:72:8f:7f:7a:b9:e3:74:95:ae:91:f8:2c:
84:7e:0a:97:2f:f5:77:db:11:40:08:40:fe:53:af:93:b1:64:
93:82:86:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org