Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/olDQg6BUu0zEpVyf_mngkNRPavk.roa
File: olDQg6BUu0zEpVyf_mngkNRPavk.roa (raw, json)
Hash identifier: T/vn6i7tC77pAQzlQ9nfzGNJUWWfTNV/yDJMkfVi6y4=
Subject key identifier: A2:50:D0:83:A0:54:BB:4C:C4:A5:5C:9F:FE:69:E0:90:D4:4F:6A:F9
Certificate issuer: /CN=b9762db1282ffd084761232038f81f5d29e640d5
Certificate serial: 01883548D2EC9485DC4582FBA9FF4CFB98AC
Authority key identifier: B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/olDQg6BUu0zEpVyf_mngkNRPavk.roa
Signing time: Fri 19 May 2023 18:32:24 +0000
ROA not before: Fri 19 May 2023 18:32:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.139.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 18:44:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:35:48:d2:ec:94:85:dc:45:82:fb:a9:ff:4c:fb:98:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9762db1282ffd084761232038f81f5d29e640d5
Validity
Not Before: May 19 18:32:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a250d083a054bb4cc4a55c9ffe69e090d44f6af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a4:09:9c:03:48:90:a6:e4:d3:b1:86:df:c4:
a8:27:20:b7:f9:41:4c:1d:19:8f:cf:b5:8e:eb:1f:
58:3f:73:08:07:b3:8a:43:9a:21:4c:18:d0:ad:02:
be:9a:49:a2:17:08:23:25:21:a3:59:87:58:42:81:
bb:13:37:b1:62:61:3d:fc:8b:5e:14:66:88:72:0a:
60:75:26:ec:c7:d1:67:3b:cd:8d:7d:b4:be:2f:b8:
43:20:eb:cf:eb:fc:e7:15:ab:91:81:b1:9e:04:83:
3e:ef:36:4f:cd:dd:18:e1:58:73:54:c5:3f:a8:b3:
33:c7:af:a4:0c:9b:25:e6:c8:2c:ba:b1:c5:98:32:
be:0b:99:25:0f:81:49:5a:74:bc:8e:c5:88:fc:c6:
5b:c5:7c:a3:eb:81:6a:8c:d2:c8:2b:ce:8a:4a:a8:
d4:13:25:96:93:1b:35:e2:c8:f6:34:87:e7:ca:5b:
a3:47:06:bb:04:ee:e3:42:94:be:bd:ca:16:ea:d8:
fa:da:1b:d5:54:17:b8:9a:12:1a:15:3a:bc:52:68:
e5:30:53:9c:a6:64:28:b0:c8:8d:09:d5:53:2a:ab:
b3:ef:f2:f3:e1:77:51:d3:24:b4:61:98:be:7f:a8:
18:24:b0:53:a1:c5:fe:21:2a:54:dd:48:41:07:70:
de:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:50:D0:83:A0:54:BB:4C:C4:A5:5C:9F:FE:69:E0:90:D4:4F:6A:F9
X509v3 Authority Key Identifier:
keyid:B9:76:2D:B1:28:2F:FD:08:47:61:23:20:38:F8:1F:5D:29:E6:40:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXYtsSgv_QhHYSMgOPgfXSnmQNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/olDQg6BUu0zEpVyf_mngkNRPavk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/f81915-405e-4b54-9cb4-70a556ba8a11/1/uXYtsSgv_QhHYSMgOPgfXSnmQNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.35.0/24
Signature Algorithm: sha256WithRSAEncryption
24:4a:49:b7:43:ec:8e:27:c4:82:bd:c8:30:b2:dc:c2:9d:c3:
51:36:00:3d:ce:cc:c4:56:27:cd:d6:72:74:a4:df:6b:87:5d:
72:58:7a:03:74:33:af:3c:59:81:2a:ea:01:2e:88:e6:e6:b0:
a9:e1:bd:86:73:88:63:1b:07:8d:a8:58:47:fd:85:a8:1f:32:
0b:68:d5:18:97:27:01:0e:1f:05:69:2d:c1:e4:d3:6e:b9:6a:
dd:48:6e:95:ae:8b:5f:85:eb:cd:db:50:dd:b4:62:38:47:24:
66:5e:d5:be:1d:16:d4:b0:69:21:fc:85:ba:21:99:11:f4:f7:
fc:3b:9e:75:e0:b4:5f:b5:5a:12:38:69:9b:d6:b8:63:d9:20:
83:b8:77:d1:8d:fd:31:54:29:b4:4c:51:46:33:f5:fe:3c:75:
e4:08:ef:05:42:43:22:3c:c9:fb:c9:1c:e7:69:81:94:62:ab:
df:e0:6a:e6:43:1e:81:af:a4:be:94:0e:4a:b4:80:9b:dc:9b:
11:66:61:50:bf:c5:3e:67:17:d5:9a:e4:86:46:d3:a3:8f:2a:
a4:8f:aa:1c:57:59:32:1b:11:d1:e7:c5:d4:ae:ee:b0:00:72:
77:e8:71:2f:0f:7b:07:4f:02:94:a1:64:8a:a2:51:4e:38:d9:
57:f7:a2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:05 2024 by rpki-client on console-fra.rpki-client.org