Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/edaf69-bc5d-494e-9d87-7c740ef8aa95/1/O3MSHR6hQzaoZ1pDylmS62qtFec.roa
File: O3MSHR6hQzaoZ1pDylmS62qtFec.roa (raw, json)
Hash identifier: UcVu2mVIEILvwufQmj6E+sILc8zynNKReehgBcLZr90=
Subject key identifier: 3B:73:12:1D:1E:A1:43:36:A8:67:5A:43:CA:59:92:EB:6A:AD:15:E7
Certificate issuer: /CN=74309aa0148cc90fced9943eb1a81946e9adae5e
Certificate serial: 01856ED4BE51E19793B6FE49E3D186F819EE
Authority key identifier: 74:30:9A:A0:14:8C:C9:0F:CE:D9:94:3E:B1:A8:19:46:E9:AD:AE:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dDCaoBSMyQ_O2ZQ-sagZRumtrl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/edaf69-bc5d-494e-9d87-7c740ef8aa95/1/O3MSHR6hQzaoZ1pDylmS62qtFec.roa
Signing time: Sun 01 Jan 2023 19:35:14 +0000
ROA not before: Sun 01 Jan 2023 19:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34636
IP address blocks: 185.238.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:be:51:e1:97:93:b6:fe:49:e3:d1:86:f8:19:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74309aa0148cc90fced9943eb1a81946e9adae5e
Validity
Not Before: Jan 1 19:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b73121d1ea14336a8675a43ca5992eb6aad15e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:fe:f6:c7:21:18:7c:86:e8:f8:f4:22:99:7b:
8d:1f:99:0a:dc:80:cd:b2:b2:e9:a2:9f:76:de:af:
5f:4d:a5:ae:bd:49:9e:b8:8a:c1:6a:c5:83:53:c2:
80:3c:91:4c:04:0c:76:f8:90:0a:d7:f9:95:35:2a:
6e:67:e2:20:05:1c:01:ae:67:17:a0:87:25:bd:b4:
f9:be:90:a1:8a:6a:79:72:b9:0e:c6:75:46:b5:72:
91:26:6d:3a:d7:e6:47:b9:1a:46:d7:ae:ad:28:77:
65:6b:c3:15:d8:58:3d:05:3f:45:32:00:b3:d5:76:
df:e5:2d:cf:2e:a1:aa:e5:97:62:28:a5:a9:02:2f:
5f:ad:c8:e7:1d:bf:5f:43:42:40:ab:c6:53:48:c0:
84:f0:73:71:eb:a5:7f:c2:89:25:dd:d5:cd:8d:aa:
0a:a5:b2:87:2a:ee:0d:0a:60:92:9e:77:f8:cb:f0:
e7:ec:c5:d5:6d:ef:3e:78:f3:35:6b:af:c7:18:3e:
ac:35:e3:70:1e:fc:4c:da:03:a6:e6:97:a5:87:80:
29:6f:47:f7:9b:d3:1d:fe:ab:e6:70:26:52:a1:aa:
17:3b:85:98:02:9a:35:bc:1a:ac:c0:a1:fe:9f:ea:
0f:45:6b:e4:48:2d:c7:dd:af:d4:ec:55:67:64:77:
a2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:73:12:1D:1E:A1:43:36:A8:67:5A:43:CA:59:92:EB:6A:AD:15:E7
X509v3 Authority Key Identifier:
keyid:74:30:9A:A0:14:8C:C9:0F:CE:D9:94:3E:B1:A8:19:46:E9:AD:AE:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dDCaoBSMyQ_O2ZQ-sagZRumtrl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/edaf69-bc5d-494e-9d87-7c740ef8aa95/1/O3MSHR6hQzaoZ1pDylmS62qtFec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/edaf69-bc5d-494e-9d87-7c740ef8aa95/1/dDCaoBSMyQ_O2ZQ-sagZRumtrl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.140.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:7d:c7:82:11:d9:6f:99:ef:5f:49:bc:4d:db:c9:71:ba:cb:
f4:bf:5c:8c:a5:ff:93:7e:72:7c:26:8e:eb:90:ba:9c:75:80:
37:18:39:32:b0:30:7f:1e:3d:7f:c1:58:1a:6a:e7:54:92:9e:
ca:7c:92:c6:74:bc:06:63:29:7f:66:dc:bf:7b:28:5c:62:54:
9e:a2:c0:53:cd:47:9e:68:7e:b5:28:ff:ec:97:15:66:3f:e9:
67:cf:53:b2:0f:21:94:89:39:c2:09:74:22:a2:34:56:ff:56:
11:6d:42:ab:b9:de:11:69:33:6c:38:42:07:c9:a6:0d:27:d6:
f6:1e:3b:33:b2:fb:fb:d8:48:b1:e1:f0:95:79:58:5b:8a:96:
d3:32:86:d6:aa:9d:43:92:0b:5e:06:c4:b8:b4:4c:09:bc:28:
52:11:54:21:b0:68:e4:63:6d:bf:e9:37:2b:f3:94:5b:35:4e:
7c:ec:75:11:4d:b7:f1:10:7b:40:92:58:5c:3b:8c:6b:9b:21:
49:e9:5f:07:c9:84:51:47:69:60:b0:25:24:26:79:76:3b:57:
a7:dc:d4:f9:f7:4f:62:35:4a:30:e5:24:2f:b5:e3:e9:06:09:
cc:1d:32:f7:cd:d9:2f:e4:36:39:0a:c8:18:4a:56:c0:f1:2c:
f9:81:7a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:58 2024 by rpki-client on console-ams.rpki-client.org