Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/fmt732yVjRRGCxPe5mTvStUF07k.roa
File: fmt732yVjRRGCxPe5mTvStUF07k.roa (raw, json)
Hash identifier: 21MZCiEG+qXkGJ6r7JU+NrTr/ma2H3n4r+fpy3bn45E=
Subject key identifier: 7E:6B:7B:DF:6C:95:8D:14:46:0B:13:DE:E6:64:EF:4A:D5:05:D3:B9
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018ED7B1A40760BF641758026A6CB16C7D3B
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/fmt732yVjRRGCxPe5mTvStUF07k.roa
Signing time: Sat 13 Apr 2024 13:42:06 +0000
ROA not before: Sat 13 Apr 2024 13:42:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51352
IP address blocks: 85.142.151.0/24 maxlen: 24
85.142.154.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 13 Apr 2024 15:19:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d7:b1:a4:07:60:bf:64:17:58:02:6a:6c:b1:6c:7d:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Apr 13 13:42:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e6b7bdf6c958d14460b13dee664ef4ad505d3b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4e:93:8b:00:27:a4:e8:20:f0:bc:46:e8:7e:
cb:f2:30:c5:77:1e:87:ff:89:a8:51:a3:38:23:32:
48:72:06:99:51:67:f1:89:eb:12:1d:59:e7:0c:a4:
7e:49:56:ed:f8:e4:03:85:d9:23:42:a1:ce:c1:04:
f4:04:7f:b0:d8:8c:cf:f7:a7:f8:2a:49:e2:8e:f2:
0d:3a:94:2d:b9:62:7f:7b:a4:04:91:f4:30:d3:f3:
b0:ca:42:09:5a:ed:d8:72:bb:4c:07:38:e0:8c:8d:
68:ff:18:e2:b5:15:6c:87:c1:f1:c4:df:6b:51:d6:
53:70:06:9b:62:22:84:99:fa:74:40:ba:6d:13:4c:
5f:0f:d6:e4:cf:d1:e8:4e:5d:ed:2b:aa:b3:c6:f9:
2a:1c:2a:29:43:28:ef:f1:5e:9a:50:85:0e:26:06:
34:5c:4b:9a:b0:ab:af:4d:28:f0:9a:1c:c3:2c:92:
02:7e:01:a0:8e:81:55:b2:8a:0e:a0:a0:cb:e0:9b:
8f:4a:da:c8:7c:b0:1a:13:52:a2:2e:32:27:a2:01:
e0:01:5b:ab:9d:ed:ac:e6:56:51:74:c8:b4:ae:4b:
0e:b8:fa:ad:3c:02:8d:a8:bc:b0:dc:d7:56:67:8f:
62:5e:e5:bb:9a:6c:8f:87:de:13:33:c1:f2:8a:ad:
fa:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6B:7B:DF:6C:95:8D:14:46:0B:13:DE:E6:64:EF:4A:D5:05:D3:B9
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/fmt732yVjRRGCxPe5mTvStUF07k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.142.151.0/24
85.142.154.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:a9:e9:7c:f8:c1:f8:ad:0c:06:91:27:09:74:4e:ac:2c:65:
5d:44:9b:74:ee:cc:57:9d:08:60:81:31:bc:ab:0d:d2:c1:54:
5e:06:f6:2a:53:19:a9:40:4b:8c:07:15:20:a9:aa:4a:57:46:
9a:07:ab:e9:25:0d:6c:dd:18:af:d2:d7:ea:e2:73:bf:fe:89:
85:0e:ac:36:35:0e:b8:b4:5d:26:e0:ef:f4:2d:3e:d7:7a:37:
55:f9:38:c4:11:41:cb:39:2f:64:e7:bd:80:43:92:59:a2:27:
98:54:73:f3:b7:6e:9e:20:67:81:90:09:8f:c2:1b:25:36:85:
2c:dd:da:01:a0:86:6f:1b:4b:8a:4c:e5:9a:be:a6:3c:0b:63:
7e:35:83:56:bb:9e:55:00:2b:b4:89:de:6f:0e:01:22:c9:8b:
db:4e:93:b4:c8:07:1f:fa:29:f0:d2:eb:8e:a0:16:3a:42:3a:
12:28:a0:f0:c9:c7:02:18:68:cc:21:6c:c4:b0:1e:e9:9e:55:
fa:c1:b9:4a:89:b6:ba:ab:0f:a3:b2:6a:58:55:d4:88:bb:35:
80:b9:4f:72:52:da:53:60:58:05:21:45:af:29:ae:32:d1:87:
2a:61:ea:58:00:74:21:df:c0:27:ba:01:16:fc:59:73:fb:9d:
31:cb:32:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 13 19:10:14 2024 by rpki-client on console.sobornost.net