Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/473577-4c31-4295-abde-dc2feac37829/1/oIlF7zeVUfrAI_DQW_0EXL6Hj28.roa
File: oIlF7zeVUfrAI_DQW_0EXL6Hj28.roa (raw, json)
Hash identifier: qBK+m4LckotEwcPmkyM3wwt1KmVTwNwbLaijlCkciV8=
Subject key identifier: A0:89:45:EF:37:95:51:FA:C0:23:F0:D0:5B:FD:04:5C:BE:87:8F:6F
Certificate issuer: /CN=9a6cdbf475113f96ca78a07afbd4458c88880771
Certificate serial: 018F150D6F9395A1A355EB330B530A41E9F0
Authority key identifier: 9A:6C:DB:F4:75:11:3F:96:CA:78:A0:7A:FB:D4:45:8C:88:88:07:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mmzb9HURP5bKeKB6-9RFjIiIB3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/473577-4c31-4295-abde-dc2feac37829/1/oIlF7zeVUfrAI_DQW_0EXL6Hj28.roa
Signing time: Thu 25 Apr 2024 11:39:13 +0000
ROA not before: Thu 25 Apr 2024 11:39:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215729
IP address blocks: 185.92.204.0/22 maxlen: 22
2a13:a3c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 30 Apr 2024 05:40:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:15:0d:6f:93:95:a1:a3:55:eb:33:0b:53:0a:41:e9:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a6cdbf475113f96ca78a07afbd4458c88880771
Validity
Not Before: Apr 25 11:39:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a08945ef379551fac023f0d05bfd045cbe878f6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:70:18:dd:52:db:d2:97:51:0d:06:8c:2d:d3:
33:82:dd:95:72:08:5d:c5:fa:53:71:cd:62:1a:1b:
80:37:b3:9a:d7:af:d9:10:e3:b3:5f:27:54:ef:52:
a1:e6:ab:1b:c0:ef:6b:6c:f3:01:0a:6c:4b:d2:e9:
81:f6:17:f4:94:81:4d:81:1e:7e:49:8d:68:ff:9e:
60:9a:11:66:f6:fd:83:9d:47:ba:a2:c6:39:63:b3:
cd:19:47:13:d1:9a:62:1d:24:5e:bd:87:38:c6:e7:
53:78:12:40:a1:90:2b:49:5c:37:46:f0:8d:52:e6:
4e:86:a4:d1:53:b9:a3:30:74:ba:be:c5:b8:9c:a5:
6b:53:0f:73:92:f1:38:cb:d7:fb:6d:ed:f0:47:8c:
58:1d:82:45:25:c7:5a:91:7a:82:f6:18:91:5a:b9:
e8:b0:c0:4b:44:9e:78:1c:5e:53:84:ef:02:5c:ba:
3b:f5:85:ae:5c:6d:ad:da:83:ed:fd:31:a2:52:3c:
a8:66:86:cd:4a:1d:94:86:2f:75:ba:0c:fa:d6:21:
7c:0b:32:7b:cb:02:8a:4f:ef:a2:05:07:89:3d:b3:
43:e7:58:22:04:a1:88:78:78:c7:80:00:1d:8a:9b:
33:15:f8:61:79:35:5a:c7:12:4f:a9:4f:6b:98:4d:
f3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:89:45:EF:37:95:51:FA:C0:23:F0:D0:5B:FD:04:5C:BE:87:8F:6F
X509v3 Authority Key Identifier:
keyid:9A:6C:DB:F4:75:11:3F:96:CA:78:A0:7A:FB:D4:45:8C:88:88:07:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mmzb9HURP5bKeKB6-9RFjIiIB3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/473577-4c31-4295-abde-dc2feac37829/1/oIlF7zeVUfrAI_DQW_0EXL6Hj28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/473577-4c31-4295-abde-dc2feac37829/1/mmzb9HURP5bKeKB6-9RFjIiIB3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.204.0/22
IPv6:
2a13:a3c0::/29
Signature Algorithm: sha256WithRSAEncryption
9f:6f:5a:d5:2e:eb:b6:9f:4e:c6:f2:c3:3b:61:e6:54:51:cd:
50:87:65:f1:f2:47:7c:28:17:52:74:92:72:14:ce:fa:08:c9:
74:ce:35:5f:18:12:39:24:38:d2:83:23:b5:35:49:1f:16:e1:
5b:f3:c5:42:57:3c:c2:df:d1:4b:40:14:4e:40:fc:40:9d:56:
a9:3c:fe:56:bb:a5:71:c2:0e:22:c9:8f:a6:4f:54:c5:48:a8:
f8:00:6f:85:ef:a2:83:a4:c3:f6:e0:dc:ab:53:6f:83:66:ee:
0c:ad:9e:56:51:45:df:a1:c2:6f:52:f7:37:1b:53:69:0a:d5:
69:86:76:c1:23:1c:48:13:4c:bf:aa:4a:57:9a:04:0b:8b:1b:
1e:5b:2b:41:af:01:5b:c3:01:75:48:04:9a:19:6f:0d:81:91:
c2:d3:4c:74:60:04:16:d9:04:a8:fd:06:8a:ca:2d:c2:49:16:
59:37:7c:d8:7b:56:2f:95:0f:20:55:4d:13:26:33:f6:45:a9:
80:2f:5c:f4:87:9f:f9:49:4f:06:1e:9f:9b:4d:a5:c8:e2:00:
ce:3f:e7:34:e1:47:7d:fa:85:f7:05:e7:7c:75:6a:83:7b:cd:
9d:3c:98:2f:00:d7:4f:e8:c1:6a:5f:ee:c9:43:15:23:8c:06:
2b:f3:ff:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:13 2024 by rpki-client on console-ams.rpki-client.org