Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/C95OZx592OZds2bHljyfnl00iac.roa
File: C95OZx592OZds2bHljyfnl00iac.roa (raw, json)
Hash identifier: KkYDlG17ZXZDGDGrXCEyowkuLEh5raBNiaD+xI0aVHQ=
Subject key identifier: 0B:DE:4E:67:1E:7D:D8:E6:5D:B3:66:C7:96:3C:9F:9E:5D:34:89:A7
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14FD4143DD242ADF136C85811C267B
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/C95OZx592OZds2bHljyfnl00iac.roa
Signing time: Sun 01 Jan 2023 20:45:24 +0000
ROA not before: Sun 01 Jan 2023 20:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44148
IP address blocks: 85.121.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:fd:41:43:dd:24:2a:df:13:6c:85:81:1c:26:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bde4e671e7dd8e65db366c7963c9f9e5d3489a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c1:22:4b:40:3f:10:0e:5e:ed:6e:8e:24:a2:
d3:2d:bf:60:91:86:b5:09:93:82:56:c3:08:fa:41:
f4:27:61:e3:b3:dc:8f:5a:26:db:da:24:60:58:20:
9e:cb:cd:47:26:19:43:84:2e:f8:1c:b0:21:0d:31:
17:8d:44:a5:3b:62:9c:d3:1f:6f:ec:83:2f:9f:b2:
6c:6c:77:de:f4:c1:b0:52:5e:5a:25:d0:a0:2d:08:
f2:19:6f:c2:c6:60:ad:d7:fe:50:c8:05:05:46:85:
ca:33:b3:c7:ce:83:81:e5:31:a4:ac:c6:64:7b:df:
1d:68:f2:26:91:8b:0e:b0:30:e7:65:91:6b:17:74:
d9:a4:c1:81:ff:46:12:f6:0d:1a:bf:a0:d7:c6:13:
11:82:b6:b3:35:93:da:3c:bd:7e:0e:15:02:1d:81:
bd:91:8a:77:27:a6:37:cc:76:dd:8e:3d:a7:5a:2b:
46:d8:21:bc:7d:9d:ff:de:c3:a2:a2:9d:b8:4e:98:
e8:f4:71:eb:24:1e:e9:92:20:03:29:d0:4b:7a:7d:
f7:9d:f4:8a:02:5a:55:7d:e8:a5:30:04:e2:03:74:
14:30:22:73:25:62:9b:97:57:eb:47:72:45:cd:83:
93:83:ae:d5:a4:02:4c:2b:47:fa:e4:81:49:18:22:
84:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:DE:4E:67:1E:7D:D8:E6:5D:B3:66:C7:96:3C:9F:9E:5D:34:89:A7
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/C95OZx592OZds2bHljyfnl00iac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.121.190.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:76:72:f2:64:72:f0:54:a3:59:6e:ce:a7:09:e8:32:81:29:
6f:d5:c5:d4:36:78:46:40:27:2b:72:2c:44:7d:47:bf:26:21:
da:57:e6:b4:c3:5d:e9:0a:b0:26:5c:c2:a5:79:45:f4:03:b1:
a5:72:60:3b:47:36:2f:e2:13:d5:f2:63:75:f4:c1:a6:09:23:
ae:18:35:fa:78:92:40:0e:0a:0f:d1:75:56:a9:9d:de:57:cf:
7f:08:2c:5b:d7:d6:25:b9:50:09:97:16:70:ce:87:00:78:a1:
ef:7f:73:71:cd:1c:b5:0f:d5:45:5c:07:20:bc:92:cc:fb:c9:
91:f2:fe:ce:11:4b:2f:a0:5d:11:54:f0:d5:c1:47:8a:b5:1b:
00:9d:56:3a:45:5c:f6:6d:cd:69:69:f6:48:5e:ae:c8:f9:aa:
85:df:d0:af:69:60:79:a1:64:56:99:44:8f:b7:ba:d3:9e:27:
fb:40:47:dd:6d:47:cf:55:32:bc:a3:48:ab:b1:c5:4a:58:8e:
2d:34:91:d1:d7:56:f8:fd:bd:71:bc:e8:5a:bd:70:13:5b:31:
a6:18:77:a5:24:94:f3:af:15:79:fc:a2:f8:85:3c:f9:a5:ca:
2f:f3:a1:0f:b0:52:3e:ea:fb:c6:c4:cd:52:2d:0c:09:74:8e:
d1:f5:0a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org