Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/oxq6uoTPkAqCc5KfCv9hqQMSIg0.roa
File: oxq6uoTPkAqCc5KfCv9hqQMSIg0.roa (raw, json)
Hash identifier: 5Q8cij5MN7aRB/T69Z6367qXcpEaVl2C4a2HxTZ7s9o=
Subject key identifier: A3:1A:BA:BA:84:CF:90:0A:82:73:92:9F:0A:FF:61:A9:03:12:22:0D
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE671E77F0CE37937D83CC0273B6070
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/oxq6uoTPkAqCc5KfCv9hqQMSIg0.roa
Signing time: Sun 01 Jan 2023 10:35:19 +0000
ROA not before: Sun 01 Jan 2023 10:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206410
IP address blocks: 84.238.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:71:e7:7f:0c:e3:79:37:d8:3c:c0:27:3b:60:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a31ababa84cf900a8273929f0aff61a90312220d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:50:6e:aa:94:1e:a5:eb:31:89:ca:50:ee:40:
bf:e4:12:fe:6f:83:63:b6:26:3b:7d:30:73:e1:6d:
e6:29:cd:63:37:98:a1:e4:82:92:ed:34:bd:db:af:
73:98:cf:34:7b:03:5f:17:d6:41:99:90:6d:cd:9f:
98:bf:c2:0f:18:01:e2:1a:07:ef:13:c9:85:a1:30:
fd:8f:82:53:f8:30:9d:91:36:86:44:cc:d9:0b:ff:
5b:dc:39:8e:b0:06:a0:2e:ac:a6:79:fe:4a:86:d8:
46:5a:53:f9:00:88:61:34:30:d0:e5:02:fe:3b:15:
73:b0:42:88:0b:a0:e7:91:c8:ad:dd:91:fd:47:96:
95:bd:7d:2a:2c:c6:ab:24:f7:2b:2e:cd:8c:e8:02:
a3:5f:d0:c3:fb:97:9b:11:b7:e5:fb:2a:3d:c8:37:
5c:76:a6:dc:c2:93:06:d3:6d:d6:ba:16:96:0e:e2:
ba:8f:c2:a2:d7:52:e7:7f:ba:94:3e:70:07:ef:d4:
4d:7e:17:f3:73:e5:7b:b9:5e:48:14:9c:ac:5e:41:
45:cf:73:51:bd:83:c9:c1:73:4a:82:27:bf:9d:10:
01:d1:67:60:06:66:9c:b9:c4:98:a9:0f:48:dc:e9:
53:e3:4f:b8:88:4c:b2:ba:49:b6:79:c5:c9:65:98:
02:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:1A:BA:BA:84:CF:90:0A:82:73:92:9F:0A:FF:61:A9:03:12:22:0D
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/oxq6uoTPkAqCc5KfCv9hqQMSIg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.238.165.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:96:3f:9a:76:07:8e:2b:32:ad:9c:51:16:9e:ff:12:39:80:
ea:b4:bf:2c:1a:11:c7:a8:94:56:d7:cb:17:e5:68:86:d2:77:
f7:99:7e:9e:53:82:4a:99:37:13:e1:08:79:8f:9f:0e:0c:f9:
52:43:98:68:fc:9b:89:89:04:da:63:81:b1:7f:75:bb:74:83:
46:b0:35:b8:93:af:01:7c:a8:c7:8c:55:e6:d4:3f:3a:01:32:
93:aa:35:f5:78:73:c6:0c:36:01:6e:3d:7d:29:59:f2:c0:32:
b6:6d:15:c0:b5:de:08:08:49:1f:8e:e3:9d:9a:b2:f9:05:15:
0a:8c:70:31:61:dd:5d:f4:d4:30:a1:df:41:96:09:4b:c8:e2:
c6:67:1e:58:b1:ac:29:5a:e1:a0:e1:6d:bd:d2:a2:f0:34:e4:
dd:a5:62:f9:de:63:b7:1c:33:ec:df:8d:73:a9:c8:5e:48:f0:
7f:63:d3:fd:c5:83:e9:01:4b:7e:d6:06:8e:0b:56:0b:8a:c8:
2c:7a:db:8d:89:28:8a:12:76:8c:7f:40:e3:a6:58:3c:98:b6:
1f:1a:c0:f7:90:f1:89:3f:b0:5e:a5:5e:50:15:67:1f:3d:4a:
80:de:1e:46:75:08:f3:f6:dd:4d:ad:1c:46:a2:58:e9:db:af:
83:be:2d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org