Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/rW1oThQsCPlBT46ZadQunl3j9i0.roa
File: rW1oThQsCPlBT46ZadQunl3j9i0.roa (raw, json)
Hash identifier: 4wLvHXxlbwsF1Pne1Vmm6/vH86wv/PiOlOx0XqB2SbU=
Subject key identifier: AD:6D:68:4E:14:2C:08:F9:41:4F:8E:99:69:D4:2E:9E:5D:E3:F6:2D
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018D63D9D3F0DBDEA6D30163A1B24794C20A
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/rW1oThQsCPlBT46ZadQunl3j9i0.roa
Signing time: Thu 01 Feb 2024 08:47:16 +0000
ROA not before: Thu 01 Feb 2024 08:47:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397630
IP address blocks: 85.115.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 17:57:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:63:d9:d3:f0:db:de:a6:d3:01:63:a1:b2:47:94:c2:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Feb 1 08:47:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad6d684e142c08f9414f8e9969d42e9e5de3f62d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b0:18:51:bc:ee:15:70:95:e4:09:aa:83:98:
48:aa:40:b0:e8:20:cd:61:98:5d:61:c2:09:da:69:
8c:3c:ad:9d:5b:74:4f:c0:46:8a:0d:44:14:67:9b:
30:a3:9c:8a:17:fb:db:1e:28:83:62:77:3d:9a:d4:
3e:68:57:64:79:1f:d9:56:70:f9:51:02:f1:7d:b7:
cb:27:e9:a7:61:e7:09:55:a2:0b:1b:8f:13:83:9d:
a1:11:fe:76:bb:cb:10:51:07:c2:19:12:0f:37:a2:
fa:ea:89:94:d5:ee:b1:72:46:66:1b:96:9f:b1:84:
02:3e:6f:e7:eb:dd:37:1b:69:73:c3:5d:81:e4:0d:
a5:b5:19:74:80:b4:6d:9f:b4:d8:0b:da:9d:8f:05:
f0:b7:4a:83:a3:41:dd:83:cd:43:38:80:cc:13:80:
35:84:e0:9b:83:e2:c5:a9:16:d5:bf:2d:db:26:6f:
d4:9c:06:5d:30:56:1f:5a:f1:fb:f6:3a:52:8e:f3:
95:93:2e:46:19:51:c0:74:24:01:e8:57:eb:37:c6:
f2:01:e7:83:ee:2c:7d:e2:47:40:57:0a:61:6f:ac:
05:d5:59:81:43:a8:c7:c7:d1:50:be:dd:80:89:a9:
73:a3:76:9a:17:18:60:a5:a6:2c:b7:3f:d9:7c:67:
eb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:6D:68:4E:14:2C:08:F9:41:4F:8E:99:69:D4:2E:9E:5D:E3:F6:2D
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/rW1oThQsCPlBT46ZadQunl3j9i0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/24
Signature Algorithm: sha256WithRSAEncryption
f2:56:67:6d:9d:e5:5f:24:6a:0e:6f:74:50:6c:1c:1f:c0:66:
38:44:63:44:ee:75:6b:05:c6:cc:81:c4:4c:b6:3c:0b:3f:96:
79:e5:94:c4:d9:40:16:04:fd:5b:a5:14:91:77:bc:83:a4:a5:
5a:83:16:d9:10:30:80:22:16:8a:87:bf:15:40:23:7e:d8:4f:
c3:c4:99:fa:c0:cd:2f:aa:82:e1:b0:85:77:88:2f:39:dd:8f:
4d:ca:c1:25:fb:4c:bd:1f:c3:f0:07:f6:2b:50:88:8b:fe:8d:
4e:20:c5:86:55:f3:48:6e:e8:0b:a6:72:c3:53:03:f8:a6:d8:
9d:5e:c8:56:68:73:e8:97:e7:26:8d:02:31:61:db:cf:b7:85:
ac:bc:aa:98:f9:5d:e7:e8:13:fe:af:fd:64:b1:b2:40:75:89:
51:94:31:72:81:6a:a9:73:4e:7e:1a:e0:58:59:1c:60:e7:a3:
45:ce:5b:96:93:4b:15:03:e6:5b:e9:c3:e8:e0:cb:7b:4d:b6:
18:7a:1d:cf:80:7f:87:42:99:03:cb:f0:94:c4:e9:8f:9f:0f:
b2:4d:08:8c:b1:b7:43:6f:d6:61:ff:dc:b5:96:8f:35:55:59:
b5:64:a2:03:15:fe:3e:3f:09:e8:85:b6:1c:dc:44:11:e4:fb:
28:de:05:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org