Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/m0RZCV4mGcO5BBgXeC1kDLYPY_o.roa
File: m0RZCV4mGcO5BBgXeC1kDLYPY_o.roa (raw, json)
Hash identifier: 6ClIXYCfp/B0ll3PJIvaOIC5en10eKxaKXf7mOfKEa8=
Subject key identifier: 9B:44:59:09:5E:26:19:C3:B9:04:18:17:78:2D:64:0C:B6:0F:63:FA
Certificate issuer: /CN=c588a079e4ceb6bb24c23c5271e4583e1cf2f9a9
Certificate serial: 01856F391EB9E89FF048505C7CA1D5F9650B
Authority key identifier: C5:88:A0:79:E4:CE:B6:BB:24:C2:3C:52:71:E4:58:3E:1C:F2:F9:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xYigeeTOtrskwjxSceRYPhzy-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/m0RZCV4mGcO5BBgXeC1kDLYPY_o.roa
Signing time: Sun 01 Jan 2023 21:24:52 +0000
ROA not before: Sun 01 Jan 2023 21:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202561
IP address blocks: 185.208.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 09:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:1e:b9:e8:9f:f0:48:50:5c:7c:a1:d5:f9:65:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c588a079e4ceb6bb24c23c5271e4583e1cf2f9a9
Validity
Not Before: Jan 1 21:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b4459095e2619c3b9041817782d640cb60f63fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c5:3c:3e:ac:43:f5:44:14:5e:47:20:56:0e:
ac:ed:fc:2d:11:22:9c:b8:2b:59:ff:eb:90:f7:40:
82:d0:da:8c:f6:30:f2:fa:ed:f8:f0:80:41:68:37:
ca:9c:9c:28:f0:64:bc:6d:12:7a:a6:cd:b7:13:d6:
16:d3:43:b9:0b:6b:ba:6e:f5:3a:29:7b:4a:e7:97:
0a:8f:a8:77:94:d5:0f:da:85:ec:9d:7f:38:82:b6:
b5:9b:b0:0f:e5:2d:83:87:a9:ff:5d:f0:6b:53:9f:
9f:91:32:a9:bc:44:7c:5a:73:2f:cc:1b:5d:be:62:
22:91:77:19:86:9d:cc:81:93:02:04:9a:bc:6d:c9:
22:00:65:46:84:cc:7b:e7:4c:0b:57:7e:3d:c1:7d:
88:f3:cd:af:c6:30:59:71:e3:e9:e0:cc:a8:b2:7a:
d1:d9:e6:73:2c:0e:86:c5:1c:a6:fe:b7:17:2b:95:
98:20:71:73:c2:44:e1:c3:cb:e2:3b:c8:5b:03:3c:
e8:41:20:8e:a8:f1:b0:e9:35:e4:f4:0e:d0:09:e1:
8f:5c:08:40:df:b3:4e:18:00:e3:22:c1:12:c0:86:
4d:94:8c:cf:ba:69:29:01:49:fd:6b:1a:3e:3d:0e:
98:00:b8:7c:01:4c:d5:f8:fc:5e:f1:1c:1e:50:8c:
cf:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:44:59:09:5E:26:19:C3:B9:04:18:17:78:2D:64:0C:B6:0F:63:FA
X509v3 Authority Key Identifier:
keyid:C5:88:A0:79:E4:CE:B6:BB:24:C2:3C:52:71:E4:58:3E:1C:F2:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xYigeeTOtrskwjxSceRYPhzy-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/m0RZCV4mGcO5BBgXeC1kDLYPY_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/xYigeeTOtrskwjxSceRYPhzy-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.102.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:5d:9f:60:04:71:6a:15:13:98:d4:a7:25:ae:79:b3:76:cb:
c4:07:3c:ae:cd:af:c5:38:41:2b:4d:fc:1e:48:0e:d5:87:a0:
14:60:44:12:7c:2f:fe:cd:b1:70:1d:ee:6f:5b:ba:d0:48:34:
91:44:a2:c7:f7:05:bb:62:43:32:a4:29:5b:c1:87:0c:53:46:
21:b1:07:8d:8d:55:8e:f1:52:26:f3:40:94:f1:2c:36:cd:fd:
27:a8:09:69:2c:b1:14:58:2e:b0:39:3d:df:d1:8f:88:77:93:
cc:8b:16:d7:ae:48:b2:0d:eb:e3:39:ed:0b:0e:fa:4a:51:fd:
f1:a9:c2:00:10:79:39:ff:f8:14:dc:bc:5d:fd:df:1a:b0:17:
f9:3e:c6:cf:8d:50:55:ff:29:f4:2d:0a:10:49:c2:95:72:8c:
8e:1c:b2:06:20:71:ed:5a:c7:f2:08:6a:7c:ea:aa:62:a9:69:
a0:14:eb:c8:18:3e:7b:d6:29:e6:51:fc:65:5d:0e:9a:72:27:
c6:fe:d5:3d:ec:65:87:26:c3:ba:d0:85:1c:5d:b5:3c:fc:29:
ea:28:e7:29:47:1f:f4:53:0c:41:6e:d3:38:ad:44:dc:5f:2f:
32:49:97:23:15:e0:e4:ca:54:4e:45:ce:ce:54:56:63:c7:46:
de:1c:a5:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:52 2024 by rpki-client on console-fra.rpki-client.org