Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/c8cc63-5305-4636-b336-e7176786f74a/1/oSwdTQUoHW77mxHppg6HAejYvfM.roa
File: oSwdTQUoHW77mxHppg6HAejYvfM.roa (raw, json)
Hash identifier: Q3G4aFFslKkd3lL4bil9oLzH7xQWOuSRgLIT9B0ucLQ=
Subject key identifier: A1:2C:1D:4D:05:28:1D:6E:FB:9B:11:E9:A6:0E:87:01:E8:D8:BD:F3
Certificate issuer: /CN=17e69ddc29a05b2c45ee3cc5a2340b2e4c6dad5d
Certificate serial: 0187BD9749D855293F77C8756085B088558F
Authority key identifier: 17:E6:9D:DC:29:A0:5B:2C:45:EE:3C:C5:A2:34:0B:2E:4C:6D:AD:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F-ad3CmgWyxF7jzFojQLLkxtrV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/c8cc63-5305-4636-b336-e7176786f74a/1/oSwdTQUoHW77mxHppg6HAejYvfM.roa
Signing time: Wed 26 Apr 2023 12:43:41 +0000
ROA not before: Wed 26 Apr 2023 12:43:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204035
IP address blocks: 185.94.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:97:49:d8:55:29:3f:77:c8:75:60:85:b0:88:55:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17e69ddc29a05b2c45ee3cc5a2340b2e4c6dad5d
Validity
Not Before: Apr 26 12:43:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a12c1d4d05281d6efb9b11e9a60e8701e8d8bdf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0d:d9:1e:1d:f7:c1:35:b5:63:9b:eb:fd:04:
28:35:c3:dd:5f:14:14:a5:3d:ed:b1:05:4f:e2:c6:
31:3d:78:09:3f:42:b9:e0:0c:fd:70:37:b5:e3:8a:
0f:92:f6:a9:9d:82:80:d7:e4:60:7a:3b:2d:98:08:
ff:01:3b:e3:29:5f:9e:56:21:ea:3e:c6:bd:99:82:
0c:74:a2:b5:e1:d6:76:0e:6d:cf:7f:ec:8a:0b:03:
3d:0b:d4:22:32:5b:59:aa:1f:4e:5e:94:e2:b0:78:
34:f7:66:27:6c:ac:12:ad:d6:4e:e2:98:4b:c6:a4:
89:6b:17:2a:0a:13:60:9b:3e:55:b2:ca:86:76:ed:
66:fc:ff:ee:7d:35:9f:06:da:93:76:6f:c4:aa:49:
7b:b8:49:b8:65:62:c6:74:31:cb:af:c6:dc:e0:93:
0c:d6:d0:1a:0c:79:d6:52:dc:aa:34:fb:ed:d2:2e:
84:06:07:8e:e1:f8:b6:94:78:f3:31:26:82:3a:f6:
90:8a:2b:2a:a1:18:3a:8e:69:0f:a5:f3:5d:67:da:
6b:2c:67:9b:55:09:9c:c4:36:46:fb:3c:c2:c7:be:
fd:c5:21:0d:73:f0:07:c2:17:62:9f:56:42:f1:8b:
45:c0:bc:86:53:02:0b:06:ee:67:08:6d:03:2b:e7:
37:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:2C:1D:4D:05:28:1D:6E:FB:9B:11:E9:A6:0E:87:01:E8:D8:BD:F3
X509v3 Authority Key Identifier:
keyid:17:E6:9D:DC:29:A0:5B:2C:45:EE:3C:C5:A2:34:0B:2E:4C:6D:AD:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F-ad3CmgWyxF7jzFojQLLkxtrV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/c8cc63-5305-4636-b336-e7176786f74a/1/oSwdTQUoHW77mxHppg6HAejYvfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/c8cc63-5305-4636-b336-e7176786f74a/1/F-ad3CmgWyxF7jzFojQLLkxtrV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.254.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:c0:08:b7:ac:bb:97:04:5a:e4:62:67:5e:70:50:0e:d1:ee:
24:6b:91:26:d5:e5:09:28:62:0d:24:0e:f6:ba:0e:a2:e0:72:
78:de:78:67:42:a9:c7:c4:37:ca:f0:a2:11:92:1b:af:0c:20:
88:bd:ca:c2:c8:8c:40:a6:0b:92:77:5b:7c:e9:21:f2:35:32:
ab:45:99:68:95:e5:00:b7:10:86:6d:41:e3:bb:47:31:59:2b:
81:75:63:86:1e:20:54:5a:f5:64:d9:0c:34:92:7a:03:5c:e3:
66:ce:8a:cf:f8:df:28:e7:7b:79:fe:ad:0b:37:85:71:87:3d:
50:2b:b7:31:86:ab:f7:70:16:bc:92:a8:14:a7:7f:93:94:0e:
d5:24:a1:47:ce:69:90:a7:fa:7d:e1:93:07:d3:cd:e9:bc:72:
a2:58:b4:ca:13:0c:42:4b:68:b7:b6:0e:65:5c:3f:2a:5d:85:
32:45:5a:70:7d:94:b8:ef:54:95:c8:0e:21:53:25:b1:ac:f7:
b0:89:19:aa:e3:79:b9:1b:56:1f:2d:9d:47:a4:b3:ac:b2:15:
84:22:e2:89:aa:85:d0:af:a2:e5:7e:a9:dd:8c:83:f9:38:e0:
b4:60:d9:56:31:de:2a:99:05:db:bb:e2:87:f6:65:00:54:86:
ae:83:a3:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:24 2024 by rpki-client on console-ams.rpki-client.org