Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/OMOheddbfyyICkEnMm-NIu6WrFM.roa
File: OMOheddbfyyICkEnMm-NIu6WrFM.roa (raw, json)
Hash identifier: Wgzu9E9xzGld8Poq2sMNgcsU4zuO+T2p8ODzWGuonfY=
Subject key identifier: 38:C3:A1:79:D7:5B:7F:2C:88:0A:41:27:32:6F:8D:22:EE:96:AC:53
Certificate issuer: /CN=b8f4be41054eaf787eaa3833ffcae8f1ed7faa80
Certificate serial: 01856CCAE1EFACC3CAD4821C1DB98284EA87
Authority key identifier: B8:F4:BE:41:05:4E:AF:78:7E:AA:38:33:FF:CA:E8:F1:ED:7F:AA:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPS-QQVOr3h-qjgz_8ro8e1_qoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/OMOheddbfyyICkEnMm-NIu6WrFM.roa
Signing time: Sun 01 Jan 2023 10:05:13 +0000
ROA not before: Sun 01 Jan 2023 10:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 185.73.74.0/24 maxlen: 24
185.73.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e1:ef:ac:c3:ca:d4:82:1c:1d:b9:82:84:ea:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8f4be41054eaf787eaa3833ffcae8f1ed7faa80
Validity
Not Before: Jan 1 10:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38c3a179d75b7f2c880a4127326f8d22ee96ac53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7a:92:27:bc:6a:5b:b3:aa:d4:24:6f:e8:71:
d6:e4:3c:47:0c:05:de:7b:dd:5b:31:12:28:93:8b:
6f:46:45:af:01:11:71:a8:99:37:c0:84:b0:86:c0:
e9:92:b7:b2:e8:a4:ce:a3:bf:f3:9e:6d:82:1b:45:
48:f0:43:e6:18:82:55:64:a5:50:35:fd:e7:94:3a:
5a:60:fc:df:d2:bf:f4:1d:c2:33:7e:f7:b3:44:50:
51:7e:ee:c1:2b:4e:4b:37:08:9b:b2:7a:5d:0f:05:
7a:29:f1:d5:fd:72:03:6e:95:3d:a9:a6:c5:a9:ce:
8d:9c:f3:ae:df:0e:18:e5:46:0e:14:11:27:36:45:
4d:8f:b4:e5:9d:a8:e8:3b:56:04:28:37:b8:7d:55:
17:1c:1b:87:39:f5:73:66:ba:de:b0:2d:bd:78:2a:
8d:b9:58:96:67:76:b5:21:47:cd:00:72:6e:1f:23:
cf:cb:83:22:30:dc:2f:c6:38:61:97:e5:44:f8:d7:
aa:fc:c7:0c:1d:c1:4e:d6:7f:85:0d:1f:06:9f:68:
cc:cc:45:9f:d0:4b:59:70:75:3e:72:01:02:bc:fb:
92:97:7c:5b:1a:ac:0b:d9:9e:41:98:9b:9a:ef:72:
aa:ff:95:f8:2b:a3:3c:17:a0:62:91:d5:93:3c:64:
04:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C3:A1:79:D7:5B:7F:2C:88:0A:41:27:32:6F:8D:22:EE:96:AC:53
X509v3 Authority Key Identifier:
keyid:B8:F4:BE:41:05:4E:AF:78:7E:AA:38:33:FF:CA:E8:F1:ED:7F:AA:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPS-QQVOr3h-qjgz_8ro8e1_qoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/OMOheddbfyyICkEnMm-NIu6WrFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/16a12e-8b5a-4649-a03c-71cd6af072a5/1/uPS-QQVOr3h-qjgz_8ro8e1_qoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.72.0/24
185.73.74.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:5e:85:0b:02:eb:68:bf:be:a0:2c:05:c8:a2:bc:54:10:e3:
79:e1:8c:0f:c2:52:50:b3:b3:fc:81:a9:be:d3:71:89:2d:d7:
8f:f6:66:15:f2:ef:20:58:b0:f6:62:4d:0c:29:47:63:83:55:
c1:3b:98:89:56:1f:56:bf:7f:0b:d3:f9:a1:7e:c1:67:99:42:
c6:b3:4a:50:e9:a4:7d:a3:4d:97:9d:f4:b2:aa:44:0e:5b:f4:
d8:45:63:c2:6c:80:e2:af:5a:ff:52:ef:b1:8c:58:4d:43:25:
fc:d1:28:a5:1e:af:52:2e:6d:44:7b:c1:aa:61:ae:f9:91:ce:
c0:b3:e2:cc:c0:80:2a:27:a4:62:de:14:26:1f:c9:9c:97:c3:
99:9e:d5:62:d8:8d:c0:f6:1a:47:f2:8f:bd:ff:73:cc:07:ea:
88:60:09:23:b4:ad:1b:81:e7:c8:65:2c:4f:cc:0c:1d:6e:71:
c9:cd:f0:eb:f9:fa:ea:63:03:0d:89:1e:bb:4b:18:fb:51:13:
9e:38:b1:4a:ba:96:e3:6a:f3:b6:04:c1:f9:7a:32:1a:1f:7b:
e7:8f:49:83:f0:6d:e1:75:b8:41:14:3f:87:b6:48:8d:44:27:
8a:5f:fc:a8:17:15:e8:d8:61:14:b1:8d:30:45:83:58:81:91:
6d:dc:f5:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:52 2024 by rpki-client on console-fra.rpki-client.org