Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/618d5e-3f28-418d-bf4f-2a60cc98a8d3/1/oWr31OYSGo76cnXa89jzUxWD-OU.roa
File: oWr31OYSGo76cnXa89jzUxWD-OU.roa (raw, json)
Hash identifier: DjvNUV29jsKxavaElxV4dJq3lYnV7d9bOcPUSf3UT94=
Subject key identifier: A1:6A:F7:D4:E6:12:1A:8E:FA:72:75:DA:F3:D8:F3:53:15:83:F8:E5
Certificate issuer: /CN=c83670987d01d41ee2b564698c8271f50dee4ce1
Certificate serial: 018DD5C49B2F121673631CFCD92FA5C04EC9
Authority key identifier: C8:36:70:98:7D:01:D4:1E:E2:B5:64:69:8C:82:71:F5:0D:EE:4C:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yDZwmH0B1B7itWRpjIJx9Q3uTOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/618d5e-3f28-418d-bf4f-2a60cc98a8d3/1/oWr31OYSGo76cnXa89jzUxWD-OU.roa
Signing time: Fri 23 Feb 2024 11:40:48 +0000
ROA not before: Fri 23 Feb 2024 11:40:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212097
IP address blocks: 185.230.102.0/24 maxlen: 24
193.46.32.0/22 maxlen: 22
193.46.32.0/24 maxlen: 24
193.46.33.0/24 maxlen: 24
193.46.34.0/24 maxlen: 24
193.46.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jun 2024 14:23:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d5:c4:9b:2f:12:16:73:63:1c:fc:d9:2f:a5:c0:4e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c83670987d01d41ee2b564698c8271f50dee4ce1
Validity
Not Before: Feb 23 11:40:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a16af7d4e6121a8efa7275daf3d8f3531583f8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c6:62:68:a9:ab:b2:7d:04:80:b0:62:2a:05:
bf:c1:2a:1a:28:ae:53:2f:67:8c:22:4c:83:87:f6:
a5:ba:83:37:c1:6f:d8:80:ce:cc:b6:1d:f1:31:a2:
74:a1:a1:09:d9:9d:0b:3f:cf:34:d5:85:af:33:79:
00:73:fe:be:65:fe:42:c3:58:d0:5e:69:44:8e:70:
3e:f1:43:2a:84:9e:82:5d:41:2a:5b:e3:f9:91:71:
b6:99:a6:f7:b6:0e:d5:9e:b2:aa:70:7e:8d:25:d6:
68:1f:e1:76:cd:2e:77:36:ae:d8:9e:81:a4:69:18:
3f:6a:4d:04:34:69:e1:49:ab:c7:66:71:e2:ec:0a:
3f:5c:c2:94:2a:af:2c:dd:40:42:c3:02:7e:f6:f0:
7f:31:d8:1f:de:4d:a1:54:32:a5:ed:c2:6f:f9:83:
0d:20:e3:ee:0e:1d:26:17:3a:b4:84:73:f7:d2:4f:
46:bd:f4:e1:a1:49:35:fd:f3:c5:8a:13:b7:61:40:
39:52:24:77:45:39:0a:35:90:3c:17:cc:4c:9f:f3:
f0:f3:1e:c4:07:77:22:80:55:5c:ab:d2:6e:58:0b:
72:7c:df:f2:98:6a:31:16:4b:cc:89:fd:70:af:13:
14:ba:e7:b5:c4:37:97:da:3a:ef:4c:f2:a5:2e:cc:
9d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6A:F7:D4:E6:12:1A:8E:FA:72:75:DA:F3:D8:F3:53:15:83:F8:E5
X509v3 Authority Key Identifier:
keyid:C8:36:70:98:7D:01:D4:1E:E2:B5:64:69:8C:82:71:F5:0D:EE:4C:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yDZwmH0B1B7itWRpjIJx9Q3uTOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/618d5e-3f28-418d-bf4f-2a60cc98a8d3/1/oWr31OYSGo76cnXa89jzUxWD-OU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/618d5e-3f28-418d-bf4f-2a60cc98a8d3/1/yDZwmH0B1B7itWRpjIJx9Q3uTOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.102.0/24
193.46.32.0/22
Signature Algorithm: sha256WithRSAEncryption
13:aa:8b:8e:c9:6a:00:f5:61:bc:33:3c:56:8e:1c:79:35:91:
90:cc:66:b6:1a:56:60:a5:38:20:91:2b:31:4a:af:c4:21:40:
4b:b7:7d:3a:33:9e:58:e1:22:7c:e0:02:be:f8:1f:5a:bc:fb:
78:32:a0:f7:d8:94:0f:11:eb:d5:41:fd:9d:b1:77:5c:8c:24:
86:1d:f4:fa:86:d8:5e:0d:72:25:20:68:08:0d:92:ea:a3:78:
d4:bd:f3:b7:ff:40:d0:af:d9:e6:89:e3:2e:a3:93:a7:6f:ee:
08:ad:a0:66:39:ef:67:02:5d:51:60:fc:49:8f:23:10:d9:2f:
5f:b6:06:48:3e:c3:8e:7f:43:c4:e1:b4:d5:b1:db:4e:48:bd:
33:5e:b6:ce:67:7a:c7:94:1c:fd:14:8c:9c:c9:df:f0:3e:0d:
81:51:8e:31:1e:54:e9:bf:da:c3:5c:80:dd:8d:18:00:d2:8d:
7f:18:8e:eb:1b:35:11:b4:24:e7:88:55:f6:7b:db:be:69:2c:
7e:67:e7:ec:cf:91:d6:a9:13:66:d4:67:fa:6b:d1:fb:a8:2c:
e6:56:4f:96:90:4e:61:bb:5e:da:d2:76:91:31:d1:8f:ac:b0:
91:d2:38:03:a6:a1:30:4d:dc:1d:40:ae:99:24:95:1a:fe:90:
46:55:a8:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 17:46:38 2024 by rpki-client on console-fra.rpki-client.org