Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/B3WmOoVZqwsqxvkcqviQGZFS1EI.roa
File: B3WmOoVZqwsqxvkcqviQGZFS1EI.roa (raw, json)
Hash identifier: MNdRhUQxVdqNkKr7neR2stalXat943rTDe6Mq9UaKo4=
Subject key identifier: 07:75:A6:3A:85:59:AB:0B:2A:C6:F9:1C:AA:F8:90:19:91:52:D4:42
Certificate issuer: /CN=0dd441c3ffae829842249e944b03851081f4d9e0
Certificate serial: 018C64C420A180AF01CD0B0B450F9E390630
Authority key identifier: 0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/B3WmOoVZqwsqxvkcqviQGZFS1EI.roa
Signing time: Wed 13 Dec 2023 20:00:24 +0000
ROA not before: Wed 13 Dec 2023 20:00:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15020
IP address blocks: 185.82.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:64:c4:20:a1:80:af:01:cd:0b:0b:45:0f:9e:39:06:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd441c3ffae829842249e944b03851081f4d9e0
Validity
Not Before: Dec 13 20:00:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0775a63a8559ab0b2ac6f91caaf890199152d442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b2:b3:b5:9f:65:5f:fa:64:a9:aa:ec:5a:e4:
5a:ae:de:27:56:3b:45:4d:c9:6b:ba:57:7f:f8:d3:
ed:89:ff:09:b9:c8:91:ad:f2:0a:f5:9e:8f:80:36:
70:85:a7:ed:a4:23:15:a1:ac:6e:e1:10:e1:7a:5e:
28:1a:13:9a:82:95:f1:ee:2e:ba:93:d4:e6:8c:f5:
d3:56:5d:83:31:45:9c:18:be:ca:42:7c:1c:6b:c7:
5d:47:db:eb:a9:e0:b2:76:f0:fc:ec:c0:0d:51:4c:
f0:0b:b7:11:dc:ea:f0:5c:84:34:03:2b:fd:86:64:
d1:76:b7:d5:13:a6:76:4e:18:93:89:35:55:ea:0c:
51:63:e9:e6:34:af:63:f4:82:4a:de:fe:aa:82:8d:
1f:98:19:10:7c:e7:5a:b4:a9:72:16:53:d9:d4:42:
1e:1d:45:3c:0e:d5:de:79:7d:38:b1:24:3d:7a:c6:
cd:4b:48:c5:33:04:31:09:bc:6a:e3:9a:8d:99:8e:
a3:79:f1:97:e2:c3:b9:35:2f:55:44:97:4f:da:6b:
1e:2a:d4:5d:1e:d5:d8:bf:55:87:be:e0:63:08:93:
e8:4e:ab:ea:45:53:fb:2c:9d:34:56:eb:f6:ad:de:
ee:f0:28:b2:53:69:df:2c:76:48:b5:13:8e:43:ac:
09:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:75:A6:3A:85:59:AB:0B:2A:C6:F9:1C:AA:F8:90:19:91:52:D4:42
X509v3 Authority Key Identifier:
keyid:0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/B3WmOoVZqwsqxvkcqviQGZFS1EI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/DdRBw_-ugphCJJ6USwOFEIH02eA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.73.0/24
Signature Algorithm: sha256WithRSAEncryption
41:6a:e6:43:c4:6e:00:b1:18:54:fe:19:07:83:de:77:3d:a2:
17:4c:51:8c:fe:66:98:29:9d:cb:bc:2a:20:7f:f1:e4:21:f6:
19:b6:fd:92:c1:84:ed:17:a0:c3:7e:27:49:9e:12:2e:14:a4:
29:c7:b6:3e:c0:4c:37:b6:c4:64:35:e9:6d:f3:e8:e3:b2:56:
9a:c1:a2:46:e7:c5:6c:c4:39:63:97:a7:45:39:b6:c4:67:12:
20:01:57:0a:42:19:a2:39:4d:f8:aa:1a:e2:4a:30:56:f1:2d:
e8:a7:28:a7:c5:ea:1f:3c:d4:76:c5:01:79:d2:8a:14:06:8b:
e9:61:5b:52:47:81:98:b4:1f:72:52:f7:71:26:a8:e4:09:e7:
45:17:ec:de:9a:ef:cb:a5:d2:56:0a:d4:2c:45:29:fc:d0:ce:
85:69:58:6e:4c:b2:2c:b0:c9:7e:71:66:94:a1:41:e0:94:c7:
8a:2e:a8:b4:6d:dc:95:e9:b6:cc:8c:93:6f:02:90:76:3e:d5:
fd:9d:5f:97:45:8f:f8:99:d8:8c:f8:83:be:94:17:5f:ce:b5:
f4:1c:d5:be:1e:97:e7:4e:af:db:4b:36:e1:eb:89:f8:17:d3:
f4:52:5b:a5:95:e5:f7:17:dd:a5:ae:a4:ef:d6:87:e6:7e:7e:
c6:89:e2:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:00 2024 by rpki-client on console-ams.rpki-client.org