Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/oHq0R5OO-FKnoAdlT8FV10lm6oA.roa
File: oHq0R5OO-FKnoAdlT8FV10lm6oA.roa (raw, json)
Hash identifier: c5o2J/4O16417gSM0Ojif6+9H3+5ccBVOoFVFj4eyhc=
Subject key identifier: A0:7A:B4:47:93:8E:F8:52:A7:A0:07:65:4F:C1:55:D7:49:66:EA:80
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 01856CB820C05CB511656EEA3229D8B0B887
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/oHq0R5OO-FKnoAdlT8FV10lm6oA.roa
Signing time: Sun 01 Jan 2023 09:44:44 +0000
ROA not before: Sun 01 Jan 2023 09:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206659
IP address blocks: 185.168.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:20:c0:5c:b5:11:65:6e:ea:32:29:d8:b0:b8:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Jan 1 09:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a07ab447938ef852a7a007654fc155d74966ea80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:96:2d:81:0e:f1:5d:7b:ed:76:4c:44:5b:ea:
4d:d1:ad:92:df:01:78:d7:b3:72:6b:a8:2c:98:25:
cd:41:a5:c6:41:89:b5:50:80:15:f4:ab:e6:25:5e:
92:d7:38:9b:a5:cb:90:71:cf:ca:f9:f2:f8:cc:3b:
41:bc:6e:d1:d8:85:97:6e:bd:0c:a1:dc:e9:38:d1:
f2:66:c3:8b:98:05:d5:d3:00:e9:ad:99:ce:6e:96:
9a:85:44:cf:f0:c7:94:ea:6a:51:92:d5:dd:33:e1:
f8:2d:fe:4a:4d:23:2d:0f:31:94:43:ca:66:70:85:
05:70:8f:ff:d2:39:93:5a:8a:59:5c:d8:5b:da:9f:
1e:33:6f:be:5a:b0:d0:46:11:fb:cd:44:71:e0:ed:
d1:68:45:9d:cd:a9:c9:d1:42:d5:2c:76:4d:9c:fe:
eb:81:2d:66:20:85:e2:9a:0f:3f:f1:0b:a3:08:35:
51:af:0b:79:8c:d2:bb:e9:6b:bc:01:07:8d:57:f1:
10:ee:6e:7f:e0:05:4e:10:75:1b:83:af:8f:96:cc:
cd:18:24:ad:98:d9:38:21:4c:9f:ae:10:2d:a1:1a:
34:28:81:09:2d:de:87:83:ac:55:30:5a:ee:6f:c5:
21:58:ca:0c:a1:42:8a:65:77:a5:3a:ff:28:c9:38:
27:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:7A:B4:47:93:8E:F8:52:A7:A0:07:65:4F:C1:55:D7:49:66:EA:80
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/oHq0R5OO-FKnoAdlT8FV10lm6oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.37.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:d3:73:83:aa:50:59:a2:78:c5:83:ab:92:c2:df:8b:f7:c3:
41:5a:e8:43:ed:de:b7:c0:26:de:5f:5a:72:8d:03:d7:b5:79:
65:de:55:4b:f9:9d:8d:4a:91:6c:5f:ec:c1:fb:48:8b:17:18:
18:47:34:18:d6:ba:2e:0f:95:f5:c2:57:88:7f:69:c5:f2:ef:
b2:ac:8a:a1:69:c4:e2:f1:2f:6e:27:f3:b2:e9:94:70:1d:25:
9a:b8:da:74:c8:fa:af:63:0c:5a:d0:07:95:79:15:e3:04:97:
94:bc:c1:25:1e:9e:ec:83:1a:f5:5f:b4:24:ac:26:37:29:d2:
e6:a5:9a:70:7f:63:4a:81:cb:fc:75:11:c9:20:c7:1b:d0:f2:
2c:22:88:7c:8c:19:94:65:0e:44:db:df:f8:d2:27:0b:bc:4f:
26:fa:8b:15:c5:99:5b:45:c4:b7:73:b2:ce:ad:25:04:cc:c3:
8a:ad:49:5a:d0:d8:95:b2:b5:82:38:1a:4b:2d:1c:2e:f1:86:
4f:a7:84:79:bc:43:0a:b1:eb:9f:9d:6a:13:14:c5:1b:22:27:
ed:cf:77:b6:5d:84:be:ee:36:30:4e:87:2b:cf:58:95:84:fb:
42:91:ea:8a:81:b8:ae:07:1f:46:3e:d8:17:00:5e:66:6b:3c:
23:cd:b1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:49 2024 by rpki-client on console-ams.rpki-client.org