Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/o3G6dy1K_pq_n5LULkxcJGBlDUM.roa
File: o3G6dy1K_pq_n5LULkxcJGBlDUM.roa (raw, json)
Hash identifier: p2PgrQSaYfDJiSEvau8dxetqszs/R5XcoSOPGkun/Tc=
Subject key identifier: A3:71:BA:77:2D:4A:FE:9A:BF:9F:92:D4:2E:4C:5C:24:60:65:0D:43
Certificate issuer: /CN=dd5f2e7cc2c687f58c0d1f6132bb2dcfdf38cb64
Certificate serial: 01857255A1FC3F04F133DE2378848D4F9AD8
Authority key identifier: DD:5F:2E:7C:C2:C6:87:F5:8C:0D:1F:61:32:BB:2D:CF:DF:38:CB:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/o3G6dy1K_pq_n5LULkxcJGBlDUM.roa
Signing time: Mon 02 Jan 2023 11:54:52 +0000
ROA not before: Mon 02 Jan 2023 11:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43824
IP address blocks: 185.204.51.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:a1:fc:3f:04:f1:33:de:23:78:84:8d:4f:9a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5f2e7cc2c687f58c0d1f6132bb2dcfdf38cb64
Validity
Not Before: Jan 2 11:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a371ba772d4afe9abf9f92d42e4c5c2460650d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fb:6f:31:2f:21:8b:f3:17:27:c6:45:75:f3:
6a:2b:08:93:eb:a6:06:92:97:85:1d:10:82:62:58:
0e:70:d9:f0:fb:a6:d1:b8:8d:7f:ce:cc:1d:66:ea:
4e:1b:ce:ef:80:52:ef:9c:ac:77:50:a6:de:b5:8e:
2a:da:82:58:1c:e1:6d:5e:5d:a7:76:e8:2c:21:88:
c3:4f:9c:c1:92:ce:95:72:91:90:f0:c6:10:05:66:
13:4b:00:1b:86:b0:dd:1b:76:7c:48:78:43:96:82:
77:24:60:60:48:c3:81:e6:67:45:f2:dc:62:10:3c:
bd:90:25:57:d7:e2:19:7c:58:5f:f2:d2:96:11:13:
ae:c6:ce:60:6d:89:e4:5d:02:61:0c:10:0e:eb:8b:
0e:28:8a:02:3e:2c:ec:fe:46:ea:ae:3d:bb:d7:eb:
52:43:fc:6c:10:a7:80:f2:3a:52:f7:6d:e7:63:0e:
42:0c:5c:0c:0b:7b:d3:ef:ad:b8:3d:85:c1:00:bb:
dd:67:29:7c:05:a0:95:16:8b:b2:1f:74:38:63:36:
c6:a5:76:e1:c2:86:5a:6e:d0:50:73:65:3b:05:56:
a3:24:95:15:2e:ee:a4:1a:36:c1:19:d0:cd:70:e5:
26:ce:f5:61:47:7a:72:0d:25:78:39:e0:ad:15:2c:
15:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:71:BA:77:2D:4A:FE:9A:BF:9F:92:D4:2E:4C:5C:24:60:65:0D:43
X509v3 Authority Key Identifier:
keyid:DD:5F:2E:7C:C2:C6:87:F5:8C:0D:1F:61:32:BB:2D:CF:DF:38:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3V8ufMLGh_WMDR9hMrstz984y2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/o3G6dy1K_pq_n5LULkxcJGBlDUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bc0a25-933a-4f5a-a5f3-9dcfd2ef3023/1/3V8ufMLGh_WMDR9hMrstz984y2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.51.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:4e:68:d9:63:1e:8b:30:e8:26:95:b5:96:ec:cf:4d:78:58:
7c:70:c0:84:6e:9e:f9:00:90:1d:fd:9d:b4:93:2f:48:0d:d1:
ec:ca:6d:20:ab:73:8e:c3:29:02:ad:0f:b2:37:b0:9c:9b:1e:
a2:27:78:7f:36:84:7e:b8:a2:b4:78:5c:d5:cc:c4:98:a8:81:
94:b6:e4:c7:29:5a:a4:35:4a:3f:1e:82:6a:1c:4c:3a:e0:5a:
ba:3d:f3:9b:66:3b:e9:4d:1a:f6:f4:6f:4a:f9:41:74:98:c0:
b6:4a:f3:e3:cb:b0:8a:7b:aa:f9:41:80:0c:c8:32:c1:fc:4b:
b7:da:b2:45:30:b2:49:3b:ba:05:6c:9d:4d:e7:7f:84:5f:50:
47:69:49:e1:98:73:7e:d1:43:9c:01:e4:24:e0:9f:1c:6e:6f:
87:a9:a7:fd:ff:4a:58:57:19:bd:f6:fe:21:67:94:26:cc:ef:
f7:e8:a1:3a:11:5c:7f:09:50:d3:aa:58:b2:f9:30:8f:7f:8a:
40:d4:05:81:6b:5e:07:35:54:31:b7:9b:ad:83:37:5c:75:5b:
15:5d:15:f4:d9:26:a5:a0:b6:4c:85:1f:17:62:92:b3:c0:68:
cd:be:83:68:54:a2:11:c7:f0:3e:60:fa:25:af:14:a1:01:46:
32:63:7d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:55 2023 by rpki-client on console-fra.rpki-client.org