Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/lUrVJgcs0uAnNVljwkJH1YMCbKI.roa
File: lUrVJgcs0uAnNVljwkJH1YMCbKI.roa (raw, json)
Hash identifier: kJ7ed2OtU1ThS8qowA9JAstA22nr6YBjfOaZqAcwYow=
Subject key identifier: 95:4A:D5:26:07:2C:D2:E0:27:35:59:63:C2:42:47:D5:83:02:6C:A2
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0189D4FEF3A795FC87D5FD126CF40F33FC33
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/lUrVJgcs0uAnNVljwkJH1YMCbKI.roa
Signing time: Tue 08 Aug 2023 11:53:45 +0000
ROA not before: Tue 08 Aug 2023 11:53:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209638
IP address blocks: 85.133.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 12 Aug 2023 10:43:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:fe:f3:a7:95:fc:87:d5:fd:12:6c:f4:0f:33:fc:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Aug 8 11:53:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=954ad526072cd2e027355963c24247d583026ca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d2:09:73:b9:6a:39:60:cc:40:f4:a4:7a:18:
98:f5:d8:d5:46:1f:70:05:3c:5b:98:3a:b3:b6:d6:
22:78:a1:23:a8:ee:e4:1b:a1:d7:30:15:61:5e:f1:
4c:53:17:5c:01:1f:bb:0a:79:96:8a:e0:33:04:19:
87:c9:31:fa:2c:56:75:c0:24:67:c3:6b:0b:04:37:
29:a9:85:a6:db:3b:db:7d:fd:ae:d4:84:b4:b6:75:
38:a9:87:14:e8:a3:0a:63:c9:9b:66:0a:b8:9d:14:
71:b6:af:05:14:93:ca:51:70:13:f1:78:e2:7a:27:
ed:0b:86:1a:40:61:cb:88:83:e2:05:72:b6:52:95:
dd:e4:70:c3:cc:41:21:b4:3a:a5:38:60:9f:a7:b8:
9b:6a:2f:32:a7:7b:3c:29:68:7f:b8:8b:02:06:5d:
00:57:16:59:09:6f:ba:56:cd:f9:ae:2b:a1:7a:67:
f0:ff:a2:fa:50:60:39:f2:f6:b2:c8:b9:bd:33:06:
76:89:23:21:48:d9:be:24:af:e3:e8:d2:c9:10:f6:
3f:78:03:ac:d7:24:b2:59:98:84:e7:2c:03:4c:f9:
ae:3c:33:41:7b:30:6d:9d:42:f8:51:44:23:e8:27:
eb:e8:b3:f2:33:07:f6:5c:a6:a6:7e:84:cb:d5:5d:
c3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4A:D5:26:07:2C:D2:E0:27:35:59:63:C2:42:47:D5:83:02:6C:A2
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/lUrVJgcs0uAnNVljwkJH1YMCbKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.160.0/24
Signature Algorithm: sha256WithRSAEncryption
61:2b:63:2c:39:59:a8:6a:58:30:f2:fe:f1:ac:c5:c3:39:a8:
5e:41:27:88:2b:6e:bd:c7:43:d0:fd:fc:97:16:13:ec:a1:44:
9f:1f:4e:99:1a:5a:ce:f1:53:f1:3d:32:36:1f:c4:e4:4b:eb:
62:e4:6f:62:cf:5d:42:4c:48:44:65:88:79:4b:5f:2b:c5:35:
4f:91:db:cc:dd:f0:2f:3a:89:65:d2:cb:ee:7a:b9:83:74:09:
c2:6f:c1:18:e6:8f:60:c8:42:e8:91:6b:45:c9:aa:b6:f8:5d:
9d:ff:9a:2a:92:19:ef:af:02:44:11:31:71:d4:f0:19:23:53:
84:d0:b0:34:a3:9e:dc:4a:09:1c:0c:5d:e7:a4:6e:e6:9d:dc:
61:95:02:7b:26:63:1c:26:e1:c5:65:f2:27:a9:36:72:87:72:
07:fb:e1:9f:04:92:20:de:10:bd:0d:89:06:84:1c:64:71:70:
a0:81:25:2b:29:1e:b0:b1:d7:f4:e2:36:b3:e4:e2:f6:7f:34:
c0:cc:af:38:37:5b:fa:eb:c6:9d:14:d1:ce:10:09:32:1d:ad:
74:ef:6d:2d:3e:55:25:85:06:01:63:8a:2c:de:cb:7d:22:e8:
31:a0:88:8e:6a:02:6c:4a:97:8e:e1:d1:dd:b8:83:b1:63:c3:
0c:c0:36:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org