Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/iO-xjPT2bOPM5huCE9BVxgwO-5M.roa
File: iO-xjPT2bOPM5huCE9BVxgwO-5M.roa (raw, json)
Hash identifier: IYIZeSHn/FZpsUkU3YczQLp+dqTFzj7DX+sGR7Gif88=
Subject key identifier: 88:EF:B1:8C:F4:F6:6C:E3:CC:E6:1B:82:13:D0:55:C6:0C:0E:FB:93
Certificate issuer: /CN=0aa2f1205553fa5960f1805c6ed9389e9e0dc92c
Certificate serial: 018570F072E8673AC593FB02DB20C8D78150
Authority key identifier: 0A:A2:F1:20:55:53:FA:59:60:F1:80:5C:6E:D9:38:9E:9E:0D:C9:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CqLxIFVT-llg8YBcbtk4np4NySw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/iO-xjPT2bOPM5huCE9BVxgwO-5M.roa
Signing time: Mon 02 Jan 2023 05:24:44 +0000
ROA not before: Mon 02 Jan 2023 05:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39537
IP address blocks: 185.105.64.0/23 maxlen: 24
185.105.66.0/23 maxlen: 24
2a09:fd40::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:72:e8:67:3a:c5:93:fb:02:db:20:c8:d7:81:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0aa2f1205553fa5960f1805c6ed9389e9e0dc92c
Validity
Not Before: Jan 2 05:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88efb18cf4f66ce3cce61b8213d055c60c0efb93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:44:59:d8:d8:34:65:e6:b6:2a:c4:73:f3:53:
a7:29:55:10:e1:6c:b0:02:be:ef:dc:53:4b:66:ff:
bb:43:53:37:37:91:ec:ca:7f:51:b8:db:69:9f:8c:
d8:af:b2:b6:63:03:6f:be:08:2b:04:f8:61:d3:7e:
3a:11:fc:5d:05:1e:26:7e:ef:f8:63:2c:8c:6b:a2:
3b:58:6e:e8:74:1d:6a:c6:d0:60:08:3e:71:6f:08:
d1:ed:9a:bd:e5:c9:0b:e3:e6:55:96:2f:b4:f5:a6:
35:06:5c:50:0f:10:09:8a:62:12:98:d7:87:b6:1b:
96:7c:c4:c4:75:ca:56:17:af:88:71:50:da:8c:97:
a7:5d:9a:e6:b9:e4:07:79:71:a0:56:e1:77:05:b8:
37:68:5e:57:6f:f4:06:b3:fb:64:7a:67:75:08:f3:
39:f0:b7:55:c5:08:4f:89:8b:a9:a6:cd:96:30:11:
e3:47:2a:37:39:03:a0:bf:2d:49:ab:1b:57:0d:90:
20:2a:80:55:6f:b9:63:78:91:6a:75:bd:2d:34:9d:
37:4c:07:44:82:fd:2a:43:e4:3d:c0:2b:42:cf:8a:
0d:e1:b3:dd:bf:5e:ad:38:17:61:2f:23:e9:a8:f3:
28:ab:ac:60:40:33:81:bd:34:0c:b9:47:7e:96:50:
54:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:EF:B1:8C:F4:F6:6C:E3:CC:E6:1B:82:13:D0:55:C6:0C:0E:FB:93
X509v3 Authority Key Identifier:
keyid:0A:A2:F1:20:55:53:FA:59:60:F1:80:5C:6E:D9:38:9E:9E:0D:C9:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CqLxIFVT-llg8YBcbtk4np4NySw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/iO-xjPT2bOPM5huCE9BVxgwO-5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/64e442-137e-4101-bb6c-b06831596449/1/CqLxIFVT-llg8YBcbtk4np4NySw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.64.0/22
IPv6:
2a09:fd40::/48
Signature Algorithm: sha256WithRSAEncryption
6e:99:8b:c4:b3:68:f9:b7:2b:17:5b:f2:f2:e2:cd:96:c8:37:
2f:3c:6b:6d:ad:38:e7:9b:4c:41:fb:ea:3e:51:29:35:6e:21:
60:c8:5b:27:dd:06:68:9a:50:16:7f:a6:39:cb:ac:ad:ea:3d:
9f:51:1d:e7:89:d1:ca:41:3a:d3:91:b1:53:5f:52:a9:44:27:
8b:ab:aa:16:e9:ab:08:ac:b1:a7:a3:33:5e:6d:d3:6d:d7:a0:
ca:2f:26:f8:3f:51:91:e9:34:7f:6d:b9:13:64:ae:c4:a7:43:
56:67:29:4d:47:85:56:a3:da:8a:32:a9:d5:6a:14:0f:79:42:
33:99:b3:0a:8b:83:e3:7e:a0:64:f8:2a:fe:6b:b2:6a:5b:0c:
2c:82:1b:73:cf:ba:6c:2a:fb:86:4d:4a:4a:8a:60:18:7f:2b:
f7:c4:bf:75:36:8e:45:25:d1:36:65:b7:0c:c7:e6:6b:1b:ef:
40:b5:2e:b4:9c:77:12:17:d4:ed:7a:e4:48:fe:08:90:76:5a:
ea:84:6d:6a:2c:58:07:6c:82:ba:c9:7c:9f:f5:a4:26:18:ec:
be:5a:04:d3:6f:e1:5c:24:b9:a0:3f:5c:d2:bd:d0:d3:d6:88:
39:94:66:7a:de:91:2a:30:1b:82:1e:88:45:4c:33:5c:83:48:
72:8d:7b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:08 2024 by rpki-client on console-fra.rpki-client.org