Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/cOPsqfokiHh3fY6923Ad8WUWOWQ.roa
File: cOPsqfokiHh3fY6923Ad8WUWOWQ.roa (raw, json)
Hash identifier: sqczEuFlxWsQRqOgCbuzfMJCORCJJSlVpohzyQTcE+k=
Subject key identifier: 70:E3:EC:A9:FA:24:88:78:77:7D:8E:BD:DB:70:1D:F1:65:16:39:64
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 018CC8DF6E1B8D5B8DD0B067F8643FAEDB15
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/cOPsqfokiHh3fY6923Ad8WUWOWQ.roa
Signing time: Tue 02 Jan 2024 06:32:15 +0000
ROA not before: Tue 02 Jan 2024 06:32:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44592
IP address blocks: 185.200.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 02:09:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:6e:1b:8d:5b:8d:d0:b0:67:f8:64:3f:ae:db:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 2 06:32:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70e3eca9fa248878777d8ebddb701df165163964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:58:79:bd:fb:25:d1:3a:a4:5f:fc:d6:89:36:
b7:16:78:f0:ae:d1:e2:bd:ff:12:d9:2c:7e:e6:e2:
91:bd:56:35:9b:81:06:6e:49:67:f7:bf:35:71:1d:
1c:b2:07:cd:06:c9:b6:1b:d0:38:2a:04:f6:09:61:
56:88:64:43:ac:f9:df:a8:f1:2e:a2:17:8e:7f:b0:
e0:c9:a9:66:41:e6:e7:9d:c4:34:d2:61:01:3b:c6:
36:14:de:9c:de:d9:e9:7f:99:21:ca:3a:73:27:2a:
2e:b2:30:26:51:d0:d1:5a:42:7b:a6:26:a7:10:f0:
7c:4a:8d:09:99:db:e5:db:c7:c7:9f:fd:b1:3f:3f:
d6:9f:e3:40:fe:6c:93:63:ee:3f:fe:d2:27:90:2b:
47:f5:04:18:02:0f:d2:9f:0c:7a:23:eb:7c:d9:56:
d5:1e:c4:c5:55:9a:fa:dd:5e:4c:02:57:b4:69:4e:
2c:82:a7:de:1f:9e:79:39:39:dc:52:fc:e6:a5:9f:
ad:06:1a:15:b0:22:d3:3a:9f:8c:b5:76:26:43:28:
2c:a2:ca:d8:15:12:c1:99:6b:82:6e:16:fe:01:55:
53:6b:4c:ac:58:9b:63:77:6c:1c:5a:4c:7f:30:20:
57:9e:0d:1c:f0:61:96:1e:f7:5f:3f:dc:0b:2d:50:
92:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E3:EC:A9:FA:24:88:78:77:7D:8E:BD:DB:70:1D:F1:65:16:39:64
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/cOPsqfokiHh3fY6923Ad8WUWOWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.244.0/24
Signature Algorithm: sha256WithRSAEncryption
33:d5:ca:50:4c:c3:48:a0:6a:5b:a5:a8:27:2e:a0:5d:8f:7a:
3e:94:a9:9c:48:41:e6:f0:0c:10:d3:25:e9:44:03:15:f9:7b:
de:02:6b:90:2e:ce:a9:3f:dc:7a:73:a6:9a:80:80:ac:59:c9:
cc:c7:e8:e4:d5:25:e4:5e:e2:01:7f:0b:18:ff:5c:1b:d5:9d:
89:42:c2:d3:3c:b7:af:41:69:53:3e:58:2a:f9:3f:e6:9f:55:
9c:d9:7d:4c:94:b9:d1:f1:f0:c5:1e:47:88:29:30:9c:25:e0:
56:a7:d6:e7:2f:2d:3e:6a:bf:e9:fb:a0:36:ee:9a:30:d7:85:
16:92:2c:4d:24:35:fc:b6:c8:55:7b:14:b6:92:fe:39:aa:86:
98:56:ec:5f:e6:de:05:30:6f:a8:96:ff:2d:af:fe:ca:d3:e1:
de:c1:15:e0:be:78:24:cb:4f:3e:f2:2f:ce:89:ac:88:d5:f2:
27:1c:56:44:bd:99:6f:df:6d:60:d8:6d:e9:7b:7a:8a:84:f0:
fc:d5:e0:81:1c:9b:88:a0:c9:c9:d5:ba:63:11:d9:0d:6b:c0:
44:74:49:2f:74:b6:05:35:7c:45:82:ea:01:7d:96:06:28:41:
0b:f8:03:cf:69:ad:d8:67:91:22:70:1c:e1:6f:1b:8d:2f:05:
d5:57:d6:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org