Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/hJG2Ro8BXtdKcOPaNkQPNFcec_E.roa
File: hJG2Ro8BXtdKcOPaNkQPNFcec_E.roa (raw, json)
Hash identifier: SA5TASj23Qmql/qvcgKAysazqulyNCqzYg9Z8hG3x3Q=
Subject key identifier: 84:91:B6:46:8F:01:5E:D7:4A:70:E3:DA:36:44:0F:34:57:1E:73:F1
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01889A14C35C5DAD776DC150A24C6113BAA2
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/hJG2Ro8BXtdKcOPaNkQPNFcec_E.roa
Signing time: Thu 08 Jun 2023 08:17:11 +0000
ROA not before: Thu 08 Jun 2023 08:17:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60707
IP address blocks: 85.133.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jul 2023 20:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:14:c3:5c:5d:ad:77:6d:c1:50:a2:4c:61:13:ba:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jun 8 08:17:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8491b6468f015ed74a70e3da36440f34571e73f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ca:12:33:39:be:9c:2d:55:f7:fd:fd:12:23:
6f:b7:13:3a:74:ba:06:88:2c:9f:8a:a2:dc:f7:59:
08:f3:b9:56:40:63:24:7e:61:c6:39:d6:68:c7:e6:
de:32:53:ae:5d:1e:77:70:06:4f:e1:21:cc:50:c9:
4d:fc:aa:b7:74:f5:34:ce:e7:50:af:70:2b:09:9c:
df:31:34:91:d0:bf:75:db:14:cb:ad:1a:32:7e:43:
45:28:58:61:85:ce:7e:a4:07:55:18:20:60:6c:23:
dc:93:8e:6f:05:f4:27:0e:d2:f7:20:ba:20:12:f1:
c0:a3:69:5d:d6:e6:e0:82:bc:7f:c6:85:cb:cd:79:
dd:bd:b5:fd:9f:5a:b5:41:91:91:ca:6d:96:37:18:
ee:82:06:13:bc:4e:b7:6b:f0:03:16:f6:f3:80:2d:
43:bb:02:cb:48:93:72:12:1c:fc:d0:96:d2:33:f4:
50:f0:de:9f:52:00:3c:81:5b:d3:36:75:ed:af:43:
9a:60:fe:04:68:9a:d7:cc:d3:84:09:0e:d8:4e:06:
80:c3:94:99:0c:4d:c8:80:48:5d:62:57:69:ef:88:
b5:7a:01:79:12:4b:ed:11:a3:5f:f6:45:7f:00:79:
b5:9e:12:85:2d:19:24:48:15:9f:a0:72:4a:9a:ba:
53:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:91:B6:46:8F:01:5E:D7:4A:70:E3:DA:36:44:0F:34:57:1E:73:F1
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/hJG2Ro8BXtdKcOPaNkQPNFcec_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.135.0/24
Signature Algorithm: sha256WithRSAEncryption
22:2f:56:69:c2:81:59:8e:22:97:41:d5:04:22:5b:73:53:17:
8a:5b:b6:c2:8e:e2:ad:75:87:6d:81:be:47:4a:b0:42:11:a9:
c6:44:d0:78:a4:df:3d:94:a8:bc:71:68:19:33:af:69:ee:15:
a8:5d:6c:68:29:75:e3:d8:fe:1d:9e:a5:2d:99:2d:ec:ba:a8:
44:cf:43:ef:1d:06:bf:ce:dc:8e:ca:f3:93:91:8a:62:ab:c2:
2f:a9:18:00:5a:f9:07:df:5e:1d:bd:cb:92:24:30:a5:eb:d3:
a7:53:0e:07:ff:f7:5c:dd:d1:4d:a1:71:5e:3d:18:cc:dc:eb:
de:23:d0:46:55:44:a2:2b:27:12:fd:e2:49:a2:85:55:e2:37:
89:10:6b:1d:21:4e:54:c4:f9:61:35:58:15:b7:5e:af:e2:0b:
80:4b:5b:01:bf:2f:f4:59:25:3f:cc:aa:0e:fa:37:b2:ef:89:
4b:2c:df:b8:72:4a:4a:63:af:49:7c:48:5c:f9:62:1e:d6:68:
80:43:68:f1:2e:a1:c1:51:96:44:62:fa:8c:78:fe:8d:8a:78:
07:92:3a:63:2e:59:3a:a5:00:b3:c7:79:a4:7e:4d:10:e8:ea:
35:7e:df:6b:7e:3e:5c:c4:b5:8d:58:20:af:65:90:e7:84:7a:
59:a5:16:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:02 2024 by rpki-client on console-ams.rpki-client.org