Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/uRBaDNkAZ6dAVcrFrU9k6Y3VVHU.roa
File: uRBaDNkAZ6dAVcrFrU9k6Y3VVHU.roa (raw, json)
Hash identifier: 11e9F9Q5mrpTrz9pM98WVwRDUSzYVfZBBwkCiy9ndww=
Subject key identifier: B9:10:5A:0C:D9:00:67:A7:40:55:CA:C5:AD:4F:64:E9:8D:D5:54:75
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018CC793F4684847EFF88A580BD4FC41B856
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/uRBaDNkAZ6dAVcrFrU9k6Y3VVHU.roa
Signing time: Tue 02 Jan 2024 00:30:11 +0000
ROA not before: Tue 02 Jan 2024 00:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397373
IP address blocks: 85.133.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 10:50:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:f4:68:48:47:ef:f8:8a:58:0b:d4:fc:41:b8:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 2 00:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9105a0cd90067a74055cac5ad4f64e98dd55475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7c:d7:8c:ab:ba:c5:7f:88:86:74:3f:5d:a7:
59:7b:df:99:c1:56:a7:d4:b5:e6:90:55:44:27:95:
fa:a3:8b:b0:69:4f:e2:77:93:75:75:89:9e:f3:14:
50:7e:c5:a2:e0:1b:09:b7:a1:8d:e3:81:e0:db:39:
d0:4b:ee:76:f4:02:53:0b:21:54:66:bf:00:30:80:
31:30:8a:54:35:e4:13:62:85:ea:2a:86:b6:f1:3b:
6e:c7:dd:b1:16:ef:89:d2:22:ea:47:a4:bf:bf:c6:
c0:ac:43:41:5e:b6:26:a7:42:f1:d5:32:a0:21:b9:
55:87:d6:0b:48:81:32:dd:f5:99:81:37:c6:be:41:
dd:c8:54:03:33:9e:b1:cf:d7:89:d7:32:66:12:ad:
2c:1f:14:50:1b:1a:64:b4:59:63:ac:15:5d:93:3b:
b9:26:15:da:58:88:77:6b:0a:f0:e3:b4:bc:4c:20:
e9:77:bb:27:b9:26:48:13:2c:e6:88:ab:3a:1e:26:
a2:d2:e6:87:35:87:ad:43:65:2d:93:e5:0e:63:f6:
25:b7:d4:9d:aa:68:a7:f4:dd:cd:b0:44:5b:66:9d:
4d:9f:b3:a4:22:84:5a:e7:9f:fe:bf:64:48:b8:a8:
92:ae:99:d8:e0:38:a7:aa:66:c6:dc:a1:e1:36:8b:
1e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:10:5A:0C:D9:00:67:A7:40:55:CA:C5:AD:4F:64:E9:8D:D5:54:75
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/uRBaDNkAZ6dAVcrFrU9k6Y3VVHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.137.0/24
Signature Algorithm: sha256WithRSAEncryption
36:bc:ef:d1:f9:13:c2:c4:d6:a2:c9:c7:8f:64:21:a8:88:8f:
83:e7:9b:80:0d:09:be:3d:df:29:ff:13:4e:b9:89:94:81:bb:
dc:24:1d:13:a5:d7:e0:e0:87:fd:a3:1a:d7:5a:f8:eb:a2:59:
e9:59:9c:64:95:b4:22:cf:5b:ab:78:51:cf:a0:ee:0e:6d:6c:
0a:62:70:f2:f8:c1:79:59:a5:f2:f6:54:28:90:94:34:6e:8c:
a5:72:eb:3a:dd:7c:f3:c4:0f:c5:e0:f2:26:d7:b8:ae:0e:5c:
79:40:fc:7e:0f:6c:23:96:4c:e1:8b:7c:61:d5:a1:86:1a:94:
b0:f9:ec:57:8f:ea:13:a8:6e:81:05:c7:0c:f0:cc:5a:fa:34:
76:63:cc:d1:4c:b0:ca:e8:55:17:08:e8:e1:a8:72:25:12:63:
82:36:7b:78:94:f7:f3:7d:f9:f4:ab:9c:6c:b4:16:63:0c:dc:
7f:80:41:56:03:c0:71:c6:de:75:8a:a9:f2:40:fc:b7:ad:5a:
f5:a3:e6:44:b0:3d:18:db:86:7d:6f:be:d9:8e:2b:c0:76:f7:
ed:a7:e6:7b:03:c1:a7:fb:6a:90:0a:96:a5:5f:46:fa:8b:40:
88:54:e2:9e:b2:d6:f0:ac:b3:c9:7a:94:f2:b6:50:70:10:28:
dd:15:49:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:02 2024 by rpki-client on console-ams.rpki-client.org