Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/o3fSyrRRYpDkSUCQRa7-LHYjhiw.roa
File: o3fSyrRRYpDkSUCQRa7-LHYjhiw.roa (raw, json)
Hash identifier: erN0BooPx8Ad+KDDjBLsqv48kUVaxbFIwks02dgaupU=
Subject key identifier: A3:77:D2:CA:B4:51:62:90:E4:49:40:90:45:AE:FE:2C:76:23:86:2C
Certificate issuer: /CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Certificate serial: 01856CCADC9FB231B5E344479A38318DAAE9
Authority key identifier: C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/o3fSyrRRYpDkSUCQRa7-LHYjhiw.roa
Signing time: Sun 01 Jan 2023 10:05:11 +0000
ROA not before: Sun 01 Jan 2023 10:05:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51491
IP address blocks: 185.33.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:dc:9f:b2:31:b5:e3:44:47:9a:38:31:8d:aa:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84d61cd17ed92e54bb3397f1e5a6b3904ac6f05
Validity
Not Before: Jan 1 10:05:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a377d2cab4516290e449409045aefe2c7623862c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:95:ef:77:e1:cf:69:3c:51:3a:f9:be:91:be:
7e:6d:87:45:fa:39:76:33:cf:0e:5c:a2:7e:33:3f:
4e:16:03:21:3b:86:ad:4b:66:0c:b5:83:a6:38:92:
28:4c:fb:31:1d:e5:f8:09:88:f0:63:88:42:95:03:
43:99:79:38:cb:23:0b:9a:3e:41:b5:86:1b:64:20:
84:2c:ff:b8:91:82:8a:c1:62:07:62:c8:10:f8:12:
32:20:5d:e5:64:f8:2d:33:d3:5c:0e:63:e8:12:a7:
2e:4a:79:75:b6:e8:1b:83:15:ba:c8:4e:65:b0:b4:
6e:e6:a6:1f:1a:0e:58:66:67:bf:b4:99:f2:7d:ab:
c5:30:d3:8c:ec:a3:5b:17:b7:21:eb:95:42:23:40:
78:44:e9:35:51:a1:bb:58:4e:9e:05:cd:35:32:37:
e6:0d:01:07:dd:84:d6:5f:cd:14:cf:ed:24:25:a9:
80:72:5c:55:22:a8:81:fb:76:2c:80:d3:14:37:54:
f5:c5:a6:84:65:fa:f3:da:20:69:c4:f3:11:54:9a:
cb:db:11:c1:6b:1a:46:14:17:ec:45:52:bd:db:ba:
57:96:42:8d:de:00:bb:17:4d:ae:a1:7a:3c:20:65:
a7:9a:09:a2:b0:d2:15:bb:63:7b:cf:1e:05:bd:78:
4d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:77:D2:CA:B4:51:62:90:E4:49:40:90:45:AE:FE:2C:76:23:86:2C
X509v3 Authority Key Identifier:
keyid:C8:4D:61:CD:17:ED:92:E5:4B:B3:39:7F:1E:5A:6B:39:04:AC:6F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yE1hzRftkuVLszl_HlprOQSsbwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/o3fSyrRRYpDkSUCQRa7-LHYjhiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88eae8-4b86-4389-aadb-c257792dadc4/1/yE1hzRftkuVLszl_HlprOQSsbwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.184.0/22
Signature Algorithm: sha256WithRSAEncryption
24:6c:12:17:63:13:3b:f2:d4:bb:d8:61:df:4b:66:87:9c:3d:
dc:48:e3:ba:44:b0:b1:9f:ec:2f:31:6b:6b:ca:3a:39:98:40:
1a:fb:c6:4d:92:cf:1a:7c:18:da:a2:e8:c6:c9:11:62:fc:d8:
dc:34:84:d1:23:6b:9e:99:a1:97:e4:6f:56:83:cd:a1:66:0f:
d7:eb:f8:6a:04:b7:62:33:42:37:17:65:d4:80:9c:98:01:f9:
5d:31:13:d6:ac:9f:86:c5:b4:2f:5a:94:d7:27:39:94:d8:31:
24:4f:2f:a7:f0:be:90:99:b8:55:8a:24:8f:13:31:8b:fb:aa:
3b:a1:89:9a:5a:0d:97:0f:2c:9b:3c:7d:0a:5c:5c:65:c9:73:
d1:16:e5:78:09:ff:38:d6:a1:95:62:27:3c:f3:12:76:6a:d5:
5e:50:38:f6:ef:32:65:fa:fe:f2:41:34:33:70:e8:f7:aa:99:
62:6d:b7:b8:c1:bc:8c:5f:ba:e9:6a:ba:43:0a:58:70:09:a9:
6b:42:7b:62:8d:fc:8e:f3:8c:a1:9d:ea:d9:74:3b:72:64:96:
05:aa:2e:7b:61:d9:fc:b3:85:cb:b4:65:00:b4:8a:6c:34:df:
40:f6:73:ff:b1:19:ef:80:82:20:1e:c7:4b:30:8d:d6:86:6e:
de:92:db:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:17 2024 by rpki-client on console-fra.rpki-client.org