Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/bIfnX1uazg_nZQULIEqQXn03gJ4.roa
File: bIfnX1uazg_nZQULIEqQXn03gJ4.roa (raw, json)
Hash identifier: FC9JkrBo+OCNWNd0xmPJUcUOsyLuV38Ax39w1SMzh5Y=
Subject key identifier: 6C:87:E7:5F:5B:9A:CE:0F:E7:65:05:0B:20:4A:90:5E:7D:37:80:9E
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 018CC3B7416798EE0CF14E1A4639B0FE05FE
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/bIfnX1uazg_nZQULIEqQXn03gJ4.roa
Signing time: Mon 01 Jan 2024 06:30:16 +0000
ROA not before: Mon 01 Jan 2024 06:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210197
IP address blocks: 85.204.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 13:59:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:41:67:98:ee:0c:f1:4e:1a:46:39:b0:fe:05:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Jan 1 06:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c87e75f5b9ace0fe765050b204a905e7d37809e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4a:7a:eb:3d:05:59:48:a5:03:7c:43:02:f2:
a1:b5:87:a0:20:9f:0f:13:c3:61:07:23:98:e8:c8:
bc:d1:d4:85:c0:de:6f:68:51:14:47:05:b5:8d:2f:
be:51:3d:bc:07:be:8b:70:f6:0b:c9:c9:c6:1c:24:
4c:39:43:71:e3:b7:35:f3:30:87:cb:44:76:6a:9f:
49:92:5c:a5:df:7d:1f:0c:40:69:e1:4a:01:f4:e8:
e8:52:05:78:c9:ee:6e:0a:6c:6f:27:8f:97:d0:a7:
16:73:50:98:67:de:68:34:e5:80:da:65:c4:8d:79:
8c:04:22:3f:4b:24:38:89:64:39:85:56:3b:43:81:
91:e7:64:42:9c:96:6f:35:09:a1:f5:c2:6d:f6:f6:
c7:63:bc:f8:8c:2c:cc:ad:f0:19:d0:1d:49:2e:20:
ed:4f:35:6f:90:3c:83:56:98:eb:79:51:a9:96:7c:
60:a4:9d:90:bb:aa:46:c2:b5:1a:43:cd:e0:4b:b8:
24:8f:4e:7e:e5:4e:b0:e2:75:e8:80:dc:eb:9f:68:
23:04:55:1c:d3:fc:74:59:36:d9:fa:73:c5:2a:04:
7c:1f:c6:fa:a5:05:76:2a:51:42:e4:d1:d7:20:b4:
40:e7:cd:f8:f9:b9:2f:dd:5b:55:a6:93:74:58:c4:
85:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:87:E7:5F:5B:9A:CE:0F:E7:65:05:0B:20:4A:90:5E:7D:37:80:9E
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/bIfnX1uazg_nZQULIEqQXn03gJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.38.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d0:08:82:de:8c:b6:c6:03:50:42:12:37:82:f9:f6:f1:8b:
e8:51:e7:ce:67:bf:b2:57:67:a1:22:c4:d2:d5:d7:0d:94:40:
d0:fa:6a:2b:b1:6d:1f:66:c2:f9:ad:92:f2:4b:bb:b0:f7:90:
4b:48:08:ed:7d:6f:2a:c4:fa:61:e2:2d:9e:bb:7e:ff:9e:1d:
e9:d8:0c:94:05:40:70:2c:81:0d:1f:a7:16:28:22:48:09:8d:
13:5b:1c:50:97:ae:25:2b:0f:c7:13:96:bf:e0:00:b0:39:82:
b3:da:52:3e:b1:e2:5c:a1:46:b8:8b:f7:9b:ef:88:a5:a9:4d:
fd:19:80:db:83:ac:64:3a:f8:44:81:90:d2:be:37:28:4f:43:
b8:39:aa:d6:ba:46:a9:0e:43:45:7f:f4:7e:64:13:5e:05:e6:
2d:67:9b:91:2d:4f:94:3c:b8:cb:8c:32:bf:6d:6f:ad:72:41:
40:27:21:68:0b:09:4d:2f:c7:97:96:2c:2f:d4:eb:a6:e7:60:
e5:73:b5:cf:4a:3d:f5:75:52:6a:e7:ae:b7:0e:47:9e:01:99:
5d:bd:2f:19:d8:e0:d2:74:e7:c8:ac:51:61:38:1e:d7:0b:e3:
2a:8a:ce:1a:b5:7d:b8:f0:e2:45:d0:f6:a6:8b:12:8b:b0:6e:
18:88:f8:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 01:00:41 2024 by rpki-client on console.sobornost.net