Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/pk9fCqLDjLyDx4LHHvKw2BgROAo.roa
File: pk9fCqLDjLyDx4LHHvKw2BgROAo.roa (raw, json)
Hash identifier: cc9WsW1hICRetFFVYr9bO8msIhGZLax/4gaWs1nkpOY=
Subject key identifier: A6:4F:5F:0A:A2:C3:8C:BC:83:C7:82:C7:1E:F2:B0:D8:18:11:38:0A
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018BCE60E223827182DE1D63FABDDDADF6C7
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/pk9fCqLDjLyDx4LHHvKw2BgROAo.roa
Signing time: Tue 14 Nov 2023 15:08:57 +0000
ROA not before: Tue 14 Nov 2023 15:08:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397630
IP address blocks: 85.115.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ce:60:e2:23:82:71:82:de:1d:63:fa:bd:dd:ad:f6:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Nov 14 15:08:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a64f5f0aa2c38cbc83c782c71ef2b0d81811380a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:a9:1f:f3:dc:d1:13:17:cb:fe:bb:74:9e:
34:4a:b0:06:41:12:8f:5e:ba:36:16:8b:1c:99:d8:
e3:ca:b3:7d:55:45:a4:1e:bf:8a:1e:94:83:54:4d:
48:1c:ad:7a:65:d2:e9:1f:6e:b6:22:8e:f9:da:5e:
2b:cf:49:9b:5b:3a:71:41:99:8d:76:46:3c:f5:96:
58:91:28:d1:97:32:ae:5a:d4:28:cb:1a:55:0c:44:
f3:36:f7:16:dd:11:7f:e6:88:ec:9b:a4:52:0f:6a:
04:45:28:22:25:c2:d5:62:4c:88:83:bd:b5:8f:52:
36:3d:fc:5b:86:4c:bc:17:43:0c:c1:76:9d:98:5b:
f8:be:71:ac:aa:2e:fc:b7:da:a0:4e:4e:1c:6a:9c:
1d:a3:02:09:cf:c9:ea:d7:af:11:46:01:62:dd:d4:
1f:ac:7b:d1:3e:64:0a:9e:48:ac:7f:63:e3:0d:19:
09:a1:42:59:de:f9:a7:c1:fe:b7:94:da:54:3a:90:
5b:3e:02:ff:0d:f8:24:33:3a:a7:08:43:3b:37:79:
24:b4:f1:b9:b0:2b:79:9b:b0:4e:e3:bf:d3:e6:5d:
46:ea:dd:38:7e:45:c6:ce:25:89:a2:6f:12:ee:a5:
18:0f:13:71:79:36:eb:c6:3e:99:cc:25:d7:23:42:
4f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:4F:5F:0A:A2:C3:8C:BC:83:C7:82:C7:1E:F2:B0:D8:18:11:38:0A
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/pk9fCqLDjLyDx4LHHvKw2BgROAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:b6:33:69:7c:42:af:3c:db:af:26:f6:16:1f:cd:75:c7:4e:
e2:05:c2:66:31:12:d2:89:0c:4e:1d:2f:0b:ab:5d:ba:05:93:
90:af:57:9b:1e:d1:5c:31:3e:90:37:42:42:b6:29:06:e8:6e:
c4:36:e8:e9:d2:ab:40:de:74:5a:79:fe:0d:05:d2:d2:1e:cd:
11:59:53:24:05:95:a6:e8:4a:67:4e:d5:90:45:cc:4a:f5:b0:
db:e0:0c:54:58:c8:69:0f:1c:6e:a0:dc:f9:05:85:99:ae:4d:
92:90:53:4d:d2:1c:69:26:d6:5d:6e:e5:93:00:af:a2:8b:1b:
c9:8b:90:9e:cb:af:30:63:39:50:2e:0b:32:3a:db:52:bf:99:
a1:ca:89:52:08:ee:8e:58:ce:d8:6c:1c:1a:e6:9b:c9:fe:3d:
1a:83:26:6c:ec:ec:44:ac:b4:d2:87:49:97:7a:c1:f0:a9:0a:
5e:2f:fc:03:24:ba:5f:76:b3:16:6a:87:1d:5d:a2:ef:e7:5d:
49:e6:5c:dd:09:bb:c9:dc:75:f4:7d:96:76:3b:a3:52:20:60:
27:8f:fd:79:c7:ef:fa:21:36:7a:72:91:01:7e:6b:33:46:a3:
dc:11:73:f6:f8:49:de:c2:0f:c9:68:b1:36:d5:7d:ec:b2:f2:
53:d5:ab:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org