Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/7H_2O9GBsymt0XYO8dx3F6HZ-RY.roa
File: 7H_2O9GBsymt0XYO8dx3F6HZ-RY.roa (raw, json)
Hash identifier: 9FgRErNfN7FlIhGYJHbxZfhUSo0xL+DNKRoK4jlQq+o=
Subject key identifier: EC:7F:F6:3B:D1:81:B3:29:AD:D1:76:0E:F1:DC:77:17:A1:D9:F9:16
Certificate issuer: /CN=b8f4be41054eaf787eaa3833ffcae8f1ed7faa80
Certificate serial: 01856CCAE1775D28FABB39E6EE21540C2980
Authority key identifier: B8:F4:BE:41:05:4E:AF:78:7E:AA:38:33:FF:CA:E8:F1:ED:7F:AA:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPS-QQVOr3h-qjgz_8ro8e1_qoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/7H_2O9GBsymt0XYO8dx3F6HZ-RY.roa
Signing time: Sun 01 Jan 2023 10:05:13 +0000
ROA not before: Sun 01 Jan 2023 10:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3292
IP address blocks: 185.73.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e1:77:5d:28:fa:bb:39:e6:ee:21:54:0c:29:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8f4be41054eaf787eaa3833ffcae8f1ed7faa80
Validity
Not Before: Jan 1 10:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec7ff63bd181b329add1760ef1dc7717a1d9f916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b3:48:f0:74:f3:70:34:13:65:31:db:37:60:
db:93:78:8b:00:98:92:9e:2d:37:cd:1e:9f:4f:29:
54:8f:e6:0b:93:59:7b:f5:32:7f:6c:b5:ed:b7:59:
0e:0f:1d:a6:6a:b4:2c:72:41:3e:12:d9:58:fc:22:
d7:98:69:eb:8e:ab:ee:46:09:66:3a:86:b2:f5:98:
d2:2e:d4:74:ad:9f:1d:b6:2a:30:87:0c:dc:e2:41:
16:b9:9c:f6:7b:1c:dd:67:3c:45:91:f9:28:4e:dc:
a2:ff:a3:ba:84:b5:58:4b:f4:3f:e1:ae:98:cf:91:
16:6d:2b:26:0d:5c:10:c6:ff:ca:e4:9c:14:4b:66:
f2:8f:c5:5b:f4:51:89:8a:eb:91:03:b7:4d:f4:a2:
cd:8a:25:ce:9c:5d:5b:ff:58:2f:89:df:4f:02:d1:
49:7b:b5:11:75:7a:17:4e:22:5d:3a:bb:28:cb:65:
86:54:41:a4:bb:83:1e:90:9d:b7:0b:31:5e:69:b3:
15:11:10:cf:d3:f1:e8:ae:31:0b:e6:6e:6e:cb:8d:
a1:1e:5e:1d:3e:36:78:99:6a:01:3f:c1:c4:d2:2f:
6b:dc:9b:f1:6a:d0:2f:38:29:54:2f:38:43:47:3e:
ea:c4:73:8c:7c:19:ae:e1:20:67:09:f8:ab:67:04:
d5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:7F:F6:3B:D1:81:B3:29:AD:D1:76:0E:F1:DC:77:17:A1:D9:F9:16
X509v3 Authority Key Identifier:
keyid:B8:F4:BE:41:05:4E:AF:78:7E:AA:38:33:FF:CA:E8:F1:ED:7F:AA:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPS-QQVOr3h-qjgz_8ro8e1_qoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/7H_2O9GBsymt0XYO8dx3F6HZ-RY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/uPS-QQVOr3h-qjgz_8ro8e1_qoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.73.0/24
Signature Algorithm: sha256WithRSAEncryption
29:3f:c1:57:04:59:0b:b6:a4:11:0a:2a:5e:6a:38:da:ec:42:
b6:e0:cd:c5:dd:bc:cb:4e:e3:f5:4a:69:67:ed:77:38:1e:1d:
ea:77:c7:67:50:82:00:10:b2:5d:09:f0:d1:95:56:dd:98:af:
4e:eb:97:07:4a:0f:89:f7:3a:d1:1e:a9:c6:e6:40:9a:0c:56:
7b:76:34:4f:d1:6c:dc:9e:ae:ba:fe:cd:87:97:77:b0:d8:15:
2b:ce:67:a9:28:9a:64:bf:6c:f3:3d:f5:14:10:b5:04:be:60:
dc:31:d6:c4:dd:bc:4e:52:92:d3:61:85:bf:b8:0d:3d:88:fb:
ff:f4:1b:9d:20:91:ef:b7:9d:93:86:07:9b:fd:db:7b:67:83:
07:9d:e1:87:fb:34:08:22:2e:8e:8d:e4:1c:be:61:19:1f:7e:
f3:5d:f1:50:d0:5d:1d:54:cc:3e:b9:3d:fe:b9:2f:ed:23:42:
15:b0:a5:3a:a2:21:ae:31:a7:25:28:f2:80:7f:38:38:8b:9d:
6e:cf:78:b7:e8:29:36:27:b5:03:95:42:6a:d7:b1:6d:ba:ce:
f7:c5:88:81:05:e2:64:45:f0:a0:a3:4a:71:61:61:a2:b4:dd:
ba:c6:a6:76:30:bd:8d:3d:e5:20:21:63:8f:8f:8b:67:a3:20:
e2:6a:c1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:41 2024 by rpki-client on console-ams.rpki-client.org