Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/mBzOzfM5tpQytscQO8JUFQx1-CA.roa
File: mBzOzfM5tpQytscQO8JUFQx1-CA.roa (raw, json)
Hash identifier: 5mRHwlQKB1CWNIDzv9Z9PeRMnReJGZsKna3wfMVk8RU=
Subject key identifier: 98:1C:CE:CD:F3:39:B6:94:32:B6:C7:10:3B:C2:54:15:0C:75:F8:20
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018CC793F15A591F23A129FCF4D797F44486
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/mBzOzfM5tpQytscQO8JUFQx1-CA.roa
Signing time: Tue 02 Jan 2024 00:30:10 +0000
ROA not before: Tue 02 Jan 2024 00:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48147
IP address blocks: 85.133.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 07:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:f1:5a:59:1f:23:a1:29:fc:f4:d7:97:f4:44:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 2 00:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=981ccecdf339b69432b6c7103bc254150c75f820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:64:91:81:db:f0:d7:52:91:b7:52:47:b4:3c:
3b:29:a0:9f:e7:01:6b:d6:8f:8c:0c:a2:79:b0:2a:
aa:2c:ae:81:ed:3f:b0:61:c2:0b:24:41:c1:92:3a:
d0:57:b0:3f:2f:5a:87:0a:fb:ff:fe:25:fd:74:b8:
c4:7e:5c:0b:94:09:d0:0a:db:d9:95:8e:8d:e6:dd:
7e:7b:f9:72:ba:f3:21:5c:ec:a4:62:9d:91:13:78:
12:ad:6e:24:6c:5a:04:6e:62:43:30:57:15:6d:8e:
e9:27:53:e1:9c:61:d3:6e:b3:a4:e0:91:60:d6:f2:
7f:5c:1e:40:82:dd:d6:bc:c1:bc:96:e1:bc:5d:a3:
f9:c8:a0:68:31:d6:33:c2:86:36:64:ee:45:b0:e9:
c4:33:cc:75:34:4a:86:42:e6:86:69:9e:4e:4a:06:
97:af:ee:59:6f:28:ae:ac:6e:42:23:ed:ae:33:94:
64:f5:7a:39:d9:1e:c3:88:5e:1f:32:d9:46:be:04:
b3:0f:99:b1:04:47:75:de:50:f8:a7:cc:45:46:c9:
2c:39:12:dd:73:bf:24:c6:93:e1:e0:fb:36:4f:a0:
a1:c9:bb:83:45:20:63:d3:55:2b:a9:a2:f9:0a:42:
4c:28:8f:f2:b1:5b:97:8f:fa:db:7a:6f:37:31:be:
7c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1C:CE:CD:F3:39:B6:94:32:B6:C7:10:3B:C2:54:15:0C:75:F8:20
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/mBzOzfM5tpQytscQO8JUFQx1-CA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.241.0/24
Signature Algorithm: sha256WithRSAEncryption
30:2a:49:a6:64:21:4b:21:eb:4e:d0:f1:fb:36:b6:d6:8f:87:
79:74:56:e1:44:e3:7e:8a:c1:b1:1b:7a:ff:65:c2:cd:55:c0:
39:af:f3:ec:94:1a:0a:ed:ea:96:50:6f:e8:93:04:61:74:bf:
db:90:b1:ca:e3:b7:5a:c4:a1:64:e1:08:92:b4:26:29:93:03:
84:73:cb:5e:05:11:30:d7:b8:a3:d8:43:89:ca:1f:96:d6:6e:
c0:00:c7:a4:20:a9:a1:1c:97:97:1d:2a:0c:2a:98:9d:84:41:
23:3d:62:cc:e5:84:22:43:29:83:09:5f:84:0a:39:e1:ba:86:
e9:9f:94:40:98:6e:79:4a:50:8a:f4:12:83:3b:ea:70:67:a0:
db:60:d5:58:8b:a6:78:fd:8e:af:e8:c2:aa:fb:22:24:c6:90:
e8:6f:22:c3:75:4c:a7:6e:c8:78:40:b3:20:c2:54:23:bf:c0:
67:9b:5a:b0:49:cc:eb:a0:d7:d8:1f:03:20:e5:57:62:3e:a3:
9a:17:f1:69:a5:0f:35:2c:8f:7d:07:9d:0f:0e:fd:5e:f1:c7:
83:b0:ac:26:8c:d0:d8:5a:e2:52:1f:dc:7b:b7:1c:b6:5c:b5:
14:7d:11:6f:95:1b:62:28:a9:9a:e5:3b:8e:3b:41:fc:f5:e8:
51:23:26:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org