Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/h3OJmg1LXaDGOepIZxjaaArUX1s.roa
File: h3OJmg1LXaDGOepIZxjaaArUX1s.roa (raw, json)
Hash identifier: eeruKusGk6KG2C+Mk8xoXFm1OLd27aDuWj5KpjKTUOo=
Subject key identifier: 87:73:89:9A:0D:4B:5D:A0:C6:39:EA:48:67:18:DA:68:0A:D4:5F:5B
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 019077220DCD6FB4C771233400F2404122FF
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/h3OJmg1LXaDGOepIZxjaaArUX1s.roa
Signing time: Wed 03 Jul 2024 05:47:18 +0000
ROA not before: Wed 03 Jul 2024 05:47:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214639
IP address blocks: 185.5.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 09:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:77:22:0d:cd:6f:b4:c7:71:23:34:00:f2:40:41:22:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jul 3 05:47:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8773899a0d4b5da0c639ea486718da680ad45f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:aa:29:c8:e2:28:69:1e:99:06:c2:c9:83:90:
16:7e:1b:eb:94:d5:96:5c:28:8d:5a:82:86:fb:73:
df:78:77:af:90:43:c8:01:32:b7:2d:63:e0:1d:87:
af:09:05:64:ce:76:7b:71:43:d6:f4:bf:30:f7:94:
1b:6c:33:ac:7b:df:fb:6c:7a:f6:6c:21:fa:bc:90:
fb:95:ba:cb:2b:db:df:a3:ed:b3:2e:fa:ef:2f:c1:
8e:d3:3d:06:a5:2d:fb:90:2f:2f:d9:1c:fd:4b:6b:
4e:e8:dc:f1:60:31:f3:4d:05:1a:8d:5b:30:39:b6:
cb:cb:54:1a:32:6d:2e:98:51:b8:fe:43:4f:90:26:
97:7f:3e:cc:f7:68:7d:4d:6e:31:ac:46:68:be:6a:
cf:9b:7d:a6:62:6d:0d:a0:1b:68:ca:20:83:3d:30:
f4:48:c9:b5:84:27:7d:b2:1d:57:03:c1:48:f5:ac:
39:9f:3a:cd:c8:b1:a9:e3:d4:a8:ee:35:55:25:a0:
65:83:cd:c4:49:f9:1d:aa:13:72:b0:d8:aa:5e:4a:
b0:80:7e:ca:f1:b2:95:b7:8c:80:43:71:cc:80:50:
58:d2:08:93:99:fd:22:d8:96:3c:16:ed:f5:26:b5:
b7:d7:c0:50:d1:4c:f7:dd:77:e4:21:61:d3:b4:e0:
1c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:73:89:9A:0D:4B:5D:A0:C6:39:EA:48:67:18:DA:68:0A:D4:5F:5B
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/h3OJmg1LXaDGOepIZxjaaArUX1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.38.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:cd:ea:11:2f:1a:e0:30:70:03:ed:da:15:8f:8b:f4:ae:47:
c6:2d:9f:7e:db:5f:39:34:30:ab:6e:77:c8:fb:9a:6b:e8:02:
dc:59:c9:16:79:1f:65:c4:6b:5b:9b:57:17:bf:19:1f:ac:d0:
3d:58:b8:fb:ae:a7:a9:e4:42:72:60:1e:6f:19:3b:1e:39:eb:
bb:5d:25:ad:70:fd:f3:69:a4:ed:6b:37:9c:01:4d:e3:39:2d:
ee:cb:3b:d6:69:b0:e2:84:23:a8:f8:2d:6b:26:30:7b:b0:7c:
7c:07:af:2b:42:17:81:60:c9:7f:d2:92:da:4d:b9:50:21:9d:
f3:b2:de:20:5a:98:c4:e1:6e:c9:84:b1:ea:2a:73:47:9d:6d:
d4:37:11:23:a6:9d:0d:28:78:9f:3e:db:37:fb:20:ab:e2:b2:
2b:b0:e8:bb:cb:6a:98:a1:e1:59:e9:8c:07:87:6d:59:19:96:
25:6f:01:f2:9f:d4:c5:b4:a5:1e:0c:6c:8f:15:9f:65:61:48:
19:b9:16:16:ac:51:f6:61:79:c6:e3:1f:ce:13:03:da:22:36:
6b:f6:56:7e:be:0b:57:98:63:f5:61:a0:06:88:7f:43:08:13:
6c:4d:f2:a7:e6:cf:51:9f:58:86:00:60:7c:d6:77:fb:92:f8:
8c:4d:bd:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 10:34:31 2024 by rpki-client on console-fra.rpki-client.org