Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/e_Fdp_HLX2LzLD4LF5BtYbCgHl8.roa
File: e_Fdp_HLX2LzLD4LF5BtYbCgHl8.roa (raw, json)
Hash identifier: 5jqR1o8nyZibpaWV0Beqbzg5eDqqFfGO1RROc90Cigg=
Subject key identifier: 7B:F1:5D:A7:F1:CB:5F:62:F3:2C:3E:0B:17:90:6D:61:B0:A0:1E:5F
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018B89E9658976884DC2172EA1A89B93A5A6
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/e_Fdp_HLX2LzLD4LF5BtYbCgHl8.roa
Signing time: Wed 01 Nov 2023 08:04:16 +0000
ROA not before: Wed 01 Nov 2023 08:04:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 85.204.160.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:89:e9:65:89:76:88:4d:c2:17:2e:a1:a8:9b:93:a5:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Nov 1 08:04:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bf15da7f1cb5f62f32c3e0b17906d61b0a01e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ca:43:33:30:25:8c:52:70:70:87:cb:24:fc:
12:c5:22:4a:f4:01:ea:f3:74:3c:28:57:4d:bd:6d:
75:0b:8b:f0:6e:82:36:4b:01:71:27:3f:08:40:39:
8d:62:49:5d:f6:90:86:02:15:86:4b:22:47:25:42:
4c:3f:6c:27:68:f9:0a:1d:e5:e4:bf:74:7c:7e:51:
4d:29:cc:d5:28:91:f1:63:2d:fd:ca:e6:fe:de:18:
99:3e:4b:b4:8a:95:5e:f5:da:de:8d:25:db:b8:25:
a7:81:74:65:74:cb:d0:03:d9:f3:f6:15:8b:44:95:
9e:6e:59:0f:7f:1b:99:3c:f2:63:60:b7:5f:a9:96:
6a:7f:f2:77:17:d6:d5:b1:5d:7d:6f:45:32:65:33:
1f:28:96:3d:90:96:1c:f1:85:43:20:1f:b3:64:d1:
76:22:6e:11:23:1a:32:c0:a2:3d:65:d8:a3:ca:ba:
b0:70:ad:0f:8f:01:f1:7d:c7:e0:cc:0d:a6:e3:91:
a9:3b:20:52:3d:73:c2:b2:24:ba:75:63:2f:45:ae:
3e:72:d7:fa:13:c0:d9:7f:1a:a1:10:85:ac:76:76:
17:4a:ed:f4:fa:b3:c1:e4:6d:8f:1a:a6:7c:63:13:
e5:f0:71:0a:80:b1:a8:14:b3:96:43:96:48:c6:23:
76:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F1:5D:A7:F1:CB:5F:62:F3:2C:3E:0B:17:90:6D:61:B0:A0:1E:5F
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/e_Fdp_HLX2LzLD4LF5BtYbCgHl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.160.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:58:c5:fc:bc:cc:43:0f:e0:12:4f:00:48:93:e0:14:3e:81:
fa:2f:67:db:e9:9a:af:d4:17:1e:5a:d9:e3:de:b2:7e:e2:b8:
cf:ac:39:d1:3c:4c:e0:46:4b:8b:a7:1a:04:94:2a:ee:0c:98:
c6:c8:e2:10:91:28:07:c1:b3:56:a2:68:57:be:b8:ac:59:76:
fb:94:41:31:fe:29:e7:c3:7c:04:ed:a1:6e:a1:93:95:34:91:
6b:b0:6c:b1:3f:c2:50:69:e7:f8:6c:b6:ca:ae:49:2a:0b:8f:
7e:d6:be:56:50:3f:94:0f:b4:78:23:e8:8d:ca:5b:75:e8:d0:
6e:0e:54:a2:9a:eb:a0:47:ef:b0:c6:07:30:55:18:e7:09:02:
89:09:97:d9:6a:65:ba:ca:d0:b5:10:1a:49:a9:fa:74:7a:c4:
53:be:f9:f3:6a:ab:1a:5a:41:be:99:63:84:46:0d:91:21:62:
e5:63:4e:ec:cb:6b:a2:90:30:54:fd:e8:e2:ab:c3:d3:ac:db:
2f:4d:65:f4:53:23:b1:1e:e2:84:99:21:92:82:8d:e1:00:24:
1f:24:d9:db:d0:cd:26:68:a4:e9:ba:0b:9e:ca:1a:49:bc:51:
2a:00:c2:3f:64:b7:d1:d6:49:13:b6:3d:dc:29:f9:de:5d:5e:
89:0c:bf:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:15:04 2024 by rpki-client on console-ams.rpki-client.org