Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/s-OzvRcX1uDqtbO1aDDyS0lyTlI.roa
File: s-OzvRcX1uDqtbO1aDDyS0lyTlI.roa (raw, json)
Hash identifier: JT3tjB8Ap6bmeywkgos8U4xQykKPqaHhfx8yjDYqD2s=
Subject key identifier: B3:E3:B3:BD:17:17:D6:E0:EA:B5:B3:B5:68:30:F2:4B:49:72:4E:52
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 018570B98003BAA6463E284B2E914AFB63A3
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/s-OzvRcX1uDqtbO1aDDyS0lyTlI.roa
Signing time: Mon 02 Jan 2023 04:24:43 +0000
ROA not before: Mon 02 Jan 2023 04:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201464
IP address blocks: 185.74.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b9:80:03:ba:a6:46:3e:28:4b:2e:91:4a:fb:63:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Jan 2 04:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3e3b3bd1717d6e0eab5b3b56830f24b49724e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:14:85:d8:d7:0b:11:5f:9f:7a:4b:83:f8:18:
98:56:45:d4:2a:e9:fd:a3:e9:76:03:e5:47:10:62:
e1:de:b7:0e:b8:68:24:ac:62:6f:ee:3f:95:9c:e7:
f2:20:12:28:cb:7b:a0:c9:f5:16:dc:4d:7f:b0:d5:
3f:5c:34:c8:40:f4:66:31:39:7d:0a:f1:0f:47:7d:
b1:02:51:6f:b2:e4:01:70:09:a5:69:b4:79:a0:9d:
35:b6:a5:81:8e:76:85:74:5d:32:92:52:3f:67:48:
07:62:b8:e0:f8:d6:d1:88:7a:99:d2:61:a6:33:17:
d8:ea:16:ba:4a:dc:9a:b1:25:9e:c9:6b:ad:d3:77:
63:84:1d:b0:fb:e7:da:47:f7:76:98:d6:27:b8:77:
3e:65:7b:ab:f7:13:fc:13:17:52:05:23:07:0f:f9:
2c:71:29:23:e0:90:dc:38:57:c8:c6:80:b9:25:e0:
39:d3:38:f6:94:41:12:49:47:46:5f:72:28:67:4f:
79:8e:72:cb:3b:3b:19:00:9c:32:2e:ff:92:8d:78:
56:3b:8e:71:23:2d:9e:c0:00:b8:ad:e4:9e:3e:c5:
af:48:c8:d6:75:76:3c:42:77:d2:5b:cf:ce:7e:aa:
ec:85:e7:66:32:e6:61:f0:bf:53:b8:74:61:96:81:
8e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E3:B3:BD:17:17:D6:E0:EA:B5:B3:B5:68:30:F2:4B:49:72:4E:52
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/s-OzvRcX1uDqtbO1aDDyS0lyTlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.61.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:31:35:9e:b4:71:1e:a2:d0:1e:06:12:fd:03:7e:48:d8:fa:
b7:a1:cd:35:f3:a0:52:98:9b:40:62:8e:bb:47:5e:be:47:71:
dd:00:7d:1f:79:d1:80:9b:4f:1d:98:d8:89:81:b4:f1:29:21:
bf:c7:b7:b9:37:24:04:e0:d5:4d:e3:ed:f5:88:7c:54:fb:80:
b8:fb:9c:d3:d8:e2:40:e5:db:33:c8:d4:fa:21:51:21:66:1a:
5f:8b:39:ff:cc:e1:12:16:9a:c1:15:29:98:fa:50:6c:6c:41:
66:f6:92:e2:cf:62:95:64:96:11:e0:d2:51:04:95:21:8c:fe:
df:88:a8:d3:89:24:98:4a:91:a1:80:93:c6:87:e7:42:1a:44:
d9:4e:4b:f9:62:0b:24:1c:fb:93:8e:fc:98:05:d2:ee:8c:07:
42:d6:d5:e2:60:e0:c8:34:db:f7:92:dc:26:4c:3b:f6:e2:ca:
5c:ce:0b:8b:1b:95:a4:c5:41:59:ad:a3:44:8f:52:58:bd:45:
99:f4:0b:4e:8e:9d:4e:3d:4f:3e:de:74:a6:e2:12:53:37:f8:
68:8a:04:e4:11:8b:fd:05:00:1e:0d:53:c2:72:c8:b8:d5:df:
0c:e9:55:eb:ef:c9:58:e7:d8:bc:57:fb:95:10:fd:d1:33:87:
0f:2c:cd:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:32 2024 by rpki-client on console-fra.rpki-client.org