Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/871268-bcc1-4722-b14b-dd02811903df/1/aoBzKEE_HHWoUTC5Yj_31GWtwHM.roa
File: aoBzKEE_HHWoUTC5Yj_31GWtwHM.roa (raw, json)
Hash identifier: igVD3/sgZdMCowIWStU/Xd/d8Sthv6xNB/oJtjmw+Gw=
Subject key identifier: 6A:80:73:28:41:3F:1C:75:A8:51:30:B9:62:3F:F7:D4:65:AD:C0:73
Certificate issuer: /CN=cd73f238d96cf67a5efc0c37476fd306029af552
Certificate serial: 018571D78C81E6DC42EC475A4F902396EC8C
Authority key identifier: CD:73:F2:38:D9:6C:F6:7A:5E:FC:0C:37:47:6F:D3:06:02:9A:F5:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zXPyONls9npe_Aw3R2_TBgKa9VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/871268-bcc1-4722-b14b-dd02811903df/1/aoBzKEE_HHWoUTC5Yj_31GWtwHM.roa
Signing time: Mon 02 Jan 2023 09:37:09 +0000
ROA not before: Mon 02 Jan 2023 09:37:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12390
IP address blocks: 185.91.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:8c:81:e6:dc:42:ec:47:5a:4f:90:23:96:ec:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd73f238d96cf67a5efc0c37476fd306029af552
Validity
Not Before: Jan 2 09:37:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a807328413f1c75a85130b9623ff7d465adc073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:17:52:08:8c:4d:72:37:61:ea:b9:d2:2d:dd:
4d:0b:a8:b4:12:fa:64:e6:65:8b:42:06:8e:0e:e8:
8a:e9:2b:e6:c4:b2:61:06:f6:9d:08:ae:72:a5:dd:
44:44:35:90:52:c4:48:0c:57:28:9f:87:1f:f5:38:
8a:5d:b3:cd:d3:17:99:03:e2:07:ab:31:7a:38:34:
00:52:f4:71:54:2b:ef:f3:80:b2:a3:59:57:94:a5:
3f:46:b3:0a:a9:27:32:d0:b1:fe:e9:89:76:0b:35:
59:4f:8b:55:df:9e:09:3c:ff:0e:c3:e5:e0:d5:44:
cc:37:4c:d5:e1:91:af:44:3a:80:86:d8:14:28:7a:
bd:0e:82:e4:52:9c:ef:92:09:a6:5f:d9:b9:e1:c3:
f8:b3:b0:0f:a6:19:de:1f:9e:00:83:33:14:b7:d6:
80:e5:96:0c:e5:63:4d:23:d7:c5:2f:0e:67:55:1b:
9e:45:6b:c2:a7:27:4e:36:81:5c:26:7d:6b:a8:39:
a8:86:79:e0:b5:d4:4d:e3:8f:90:d4:0a:7f:0a:17:
e2:32:20:5e:d7:70:49:18:5b:2a:e2:85:57:e4:97:
53:ef:93:bf:3f:2b:f1:7c:c7:6d:d3:bf:08:1c:3a:
03:92:68:24:87:40:b6:da:4f:32:be:6d:25:b3:28:
ed:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:80:73:28:41:3F:1C:75:A8:51:30:B9:62:3F:F7:D4:65:AD:C0:73
X509v3 Authority Key Identifier:
keyid:CD:73:F2:38:D9:6C:F6:7A:5E:FC:0C:37:47:6F:D3:06:02:9A:F5:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zXPyONls9npe_Aw3R2_TBgKa9VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/871268-bcc1-4722-b14b-dd02811903df/1/aoBzKEE_HHWoUTC5Yj_31GWtwHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/871268-bcc1-4722-b14b-dd02811903df/1/zXPyONls9npe_Aw3R2_TBgKa9VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.114.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:f3:97:84:e3:6d:45:6b:00:9d:6b:2a:37:2b:70:42:b4:72:
86:0f:97:3c:f4:31:19:28:35:cc:51:f9:d6:7c:3f:75:7a:ce:
da:64:6e:a7:27:89:eb:c5:41:cc:24:f9:11:e5:61:9d:0b:3b:
ba:b9:fc:73:c2:c7:eb:80:b7:5f:77:67:01:da:3a:78:4d:c3:
c8:f6:db:32:3a:d9:f6:53:f7:bc:9f:76:cc:b0:06:45:cf:24:
54:c9:60:ed:64:ed:57:6f:3c:83:26:b3:69:29:b8:e0:f4:e8:
51:8f:46:b3:14:07:4d:0c:d0:37:cc:d7:a2:33:87:0d:33:28:
f4:ba:8b:84:26:59:9d:aa:c6:f9:47:2f:12:fc:e4:9f:30:6c:
53:67:46:a5:ea:db:90:f1:93:27:76:aa:b1:05:b5:28:32:83:
b3:17:66:85:d6:2c:18:3d:6d:3f:65:52:8b:ca:0c:b5:c8:83:
61:37:26:6c:40:59:9c:8e:e4:a0:bb:36:bb:a6:e7:33:78:ee:
df:a1:fe:c1:d6:41:52:fa:d6:c9:b5:68:13:93:56:19:bc:78:
79:dc:c8:20:9e:9d:c5:36:84:c8:d2:8f:27:f2:a3:82:46:0c:
99:b1:9e:5f:d5:e2:86:ae:70:04:74:3d:14:2a:b5:98:b5:64:
2e:bb:bb:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:30 2024 by rpki-client on console-ams.rpki-client.org