Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/808be1-a690-45e9-900e-5390f9f83620/1/4hUevhh6rnVBFKs21md4-tcBojI.roa
File: 4hUevhh6rnVBFKs21md4-tcBojI.roa (raw, json)
Hash identifier: 7FBntjeTG3hK1Ekrv19oDd2rrgxk2z6yPNGJW1I3xHg=
Subject key identifier: E2:15:1E:BE:18:7A:AE:75:41:14:AB:36:D6:67:78:FA:D7:01:A2:32
Certificate issuer: /CN=b87bbf8e5c74a526baaf6185abd949dafa8f6dcb
Certificate serial: 018CC3B67D439F48E965D69A370F317F9EC7
Authority key identifier: B8:7B:BF:8E:5C:74:A5:26:BA:AF:61:85:AB:D9:49:DA:FA:8F:6D:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHu_jlx0pSa6r2GFq9lJ2vqPbcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/808be1-a690-45e9-900e-5390f9f83620/1/4hUevhh6rnVBFKs21md4-tcBojI.roa
Signing time: Mon 01 Jan 2024 06:29:25 +0000
ROA not before: Mon 01 Jan 2024 06:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 85.158.232.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 07 May 2024 15:17:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:7d:43:9f:48:e9:65:d6:9a:37:0f:31:7f:9e:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87bbf8e5c74a526baaf6185abd949dafa8f6dcb
Validity
Not Before: Jan 1 06:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2151ebe187aae754114ab36d66778fad701a232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f6:df:e0:c3:96:8c:3b:c7:2c:27:13:61:7a:
63:8b:2c:d2:cc:66:e4:49:89:35:d3:5e:28:10:45:
1a:b8:31:16:3a:2d:d6:c6:b1:d2:6c:09:46:62:65:
46:62:b0:81:32:10:72:9f:9b:bf:29:c0:f9:0d:c0:
d6:ee:1a:ae:76:9d:e6:69:b5:f1:cc:d2:b4:a6:ec:
6c:ba:cc:6c:19:e8:36:33:23:2b:3a:0d:79:b6:8f:
61:14:01:6c:fe:28:4b:ce:36:84:ee:5e:6d:04:32:
57:bc:05:0d:45:e2:f2:66:6f:be:ca:7e:d6:be:d9:
bb:40:74:91:77:9e:39:88:9b:94:bf:b5:aa:95:44:
01:4a:0c:4f:39:1a:7a:be:8a:3a:f8:5f:29:cd:c1:
ab:45:c7:8a:f1:e5:93:f1:e4:4e:60:c6:79:f9:1c:
01:46:36:06:8b:d8:13:7a:9c:70:1d:d9:c9:b7:30:
bd:b7:37:6a:80:bb:12:41:20:a1:7f:39:0c:36:55:
62:93:e5:9d:0d:a0:50:d9:ec:4e:10:aa:e5:f3:47:
f2:c3:d3:5c:7d:6f:2f:03:e8:7e:b6:22:49:f2:6c:
8f:85:c4:07:22:eb:5f:69:f5:74:c5:31:23:ae:6c:
2a:ec:eb:1e:b1:32:52:38:1c:3c:a8:22:03:47:96:
17:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:15:1E:BE:18:7A:AE:75:41:14:AB:36:D6:67:78:FA:D7:01:A2:32
X509v3 Authority Key Identifier:
keyid:B8:7B:BF:8E:5C:74:A5:26:BA:AF:61:85:AB:D9:49:DA:FA:8F:6D:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHu_jlx0pSa6r2GFq9lJ2vqPbcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/808be1-a690-45e9-900e-5390f9f83620/1/4hUevhh6rnVBFKs21md4-tcBojI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/808be1-a690-45e9-900e-5390f9f83620/1/uHu_jlx0pSa6r2GFq9lJ2vqPbcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.232.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:26:45:9e:cf:cf:31:71:85:6a:ec:70:2a:b1:67:4f:3a:62:
33:e1:56:95:d8:49:68:ec:02:44:8d:cb:c1:bc:a4:40:c5:aa:
8c:ae:5a:04:e8:4d:94:c2:ba:3e:53:bb:ad:45:30:05:ac:4a:
c5:91:3c:65:35:04:89:12:6d:94:07:19:6e:1d:14:71:74:23:
ea:bf:1f:e1:06:54:be:cf:0f:8c:3b:07:72:c6:0e:ad:5f:57:
4f:49:7e:54:de:90:53:a6:86:53:97:1a:a7:b6:2b:3e:f0:29:
09:4a:7b:6a:57:a4:a9:63:8e:e9:c8:15:58:be:af:ad:34:dc:
cb:d3:a7:e4:db:a0:8b:0d:2b:95:ee:2c:e5:79:d0:33:a5:75:
64:06:6b:c4:ee:51:33:c4:35:da:f4:82:3e:de:aa:93:83:98:
f9:44:5d:87:58:74:b9:4e:30:82:78:fe:ab:a1:be:55:a0:ba:
19:23:81:2c:01:5e:75:95:30:fe:7a:1e:6a:26:95:5e:e1:cd:
fe:a1:ba:1b:df:d7:7f:85:4a:da:e7:96:af:4e:9b:cc:4f:be:
29:b6:4f:65:b1:68:4b:9d:55:8b:87:ed:33:ea:fa:62:ad:72:
cd:e9:35:ea:f2:c5:e0:76:92:46:83:25:ba:55:95:1c:1e:2d:
bd:01:e5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:07 2024 by rpki-client on console-ams.rpki-client.org