Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/KJbFuE5DN8yMi9UIa3T6NxPDuWE.roa
File: KJbFuE5DN8yMi9UIa3T6NxPDuWE.roa (raw, json)
Hash identifier: LIrblt5X38Y6N8UmUJO5QVDW1dUkmbq1svn2IOM4zrI=
Subject key identifier: 28:96:C5:B8:4E:43:37:CC:8C:8B:D5:08:6B:74:FA:37:13:C3:B9:61
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 01860CBF0C191E78D64118BA9B900483E53B
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/KJbFuE5DN8yMi9UIa3T6NxPDuWE.roa
Signing time: Wed 01 Feb 2023 11:31:32 +0000
ROA not before: Wed 01 Feb 2023 11:31:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 85.115.208.0/23 maxlen: 23
85.115.210.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 May 2023 09:28:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0c:bf:0c:19:1e:78:d6:41:18:ba:9b:90:04:83:e5:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Feb 1 11:31:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2896c5b84e4337cc8c8bd5086b74fa3713c3b961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4f:9a:9e:1b:4a:55:5d:22:cc:dd:90:52:1a:
f6:49:60:7d:14:18:e7:10:bb:81:7b:fe:f9:cf:c1:
8c:cb:c7:bb:cf:a1:ba:15:18:9f:c9:19:a4:7a:fe:
d9:71:b4:5f:27:38:04:61:04:3c:3e:38:51:73:cf:
0b:7d:9d:4d:02:bf:b4:b0:db:78:16:a0:d0:16:39:
8a:75:7b:97:ea:e7:59:f9:2e:8d:30:f0:32:d5:91:
96:1b:fa:9d:0d:89:c6:81:85:6d:45:69:e5:77:d0:
4b:84:cf:c0:a6:d0:ec:5b:9d:8a:96:eb:a5:61:f7:
23:73:be:36:89:c6:b7:81:3d:82:a6:16:16:20:e0:
61:c6:c0:cf:a3:15:2e:b6:45:a8:28:ea:fe:f1:ce:
69:d4:3b:a0:8b:07:82:e3:ca:fe:8b:15:73:39:47:
35:35:18:66:3b:ad:94:5b:24:44:63:c7:ef:c5:75:
c7:4a:c2:96:77:21:f6:58:e7:17:da:cc:3c:22:c7:
e6:57:60:bb:85:18:01:ec:03:b7:fa:65:ea:34:d0:
b5:7d:4a:33:fa:c2:e0:39:c5:a1:d5:0d:f0:5d:a7:
a3:2f:a3:40:64:6d:dc:c0:de:11:30:0c:b7:84:9f:
ee:9d:bd:6e:9a:54:f5:40:e9:0c:86:a3:fb:50:3d:
83:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:96:C5:B8:4E:43:37:CC:8C:8B:D5:08:6B:74:FA:37:13:C3:B9:61
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/KJbFuE5DN8yMi9UIa3T6NxPDuWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:45:18:ef:08:7c:28:fe:c1:88:70:32:d8:17:40:36:1a:7d:
3e:0a:ff:32:42:cb:5d:90:ec:24:3b:48:2d:8a:99:2f:37:1e:
bc:75:15:a4:2b:63:f3:de:e6:f2:3f:44:4f:e9:d3:c8:5a:ee:
30:8e:a2:e1:98:fe:18:9e:18:92:ae:d8:d5:31:2a:17:76:08:
d4:50:00:79:91:e5:23:08:d6:c3:d1:f1:73:07:48:d7:b6:d9:
17:d2:be:df:bf:ff:c7:fe:17:cb:37:2e:6b:a2:c0:47:fa:98:
a1:37:10:47:6f:c6:4a:77:27:ef:60:75:64:c6:dc:16:7b:00:
5f:30:a9:4e:96:1e:64:81:34:1d:98:de:8b:b5:6e:82:ac:20:
4b:1a:a8:46:89:ab:34:e2:74:29:4c:6a:0d:a5:c5:9d:3b:1c:
67:c3:9f:21:f9:c2:56:96:a8:4f:7a:f1:a6:a5:bd:76:04:08:
61:f5:de:2c:e8:d1:6f:e8:29:22:f4:41:26:63:94:e4:58:de:
bc:ce:f4:2f:e7:8c:44:8f:64:90:c3:26:30:2c:77:29:64:23:
f4:3f:a6:24:1e:0e:29:d4:f0:92:5a:c0:fb:9a:19:ac:a6:10:
05:6d:24:ef:9a:7b:27:00:13:62:9f:2d:3b:b9:2b:c7:12:a0:
1d:20:f0:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org