Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/aaOL-6ImLO95O9Pm2NBD5eYMdos.roa
File: aaOL-6ImLO95O9Pm2NBD5eYMdos.roa (raw, json)
Hash identifier: kcBuwmwTHkxKzByTXbJxjzKR3lpvmEfxHdl7Hi9yclE=
Subject key identifier: 69:A3:8B:FB:A2:26:2C:EF:79:3B:D3:E6:D8:D0:43:E5:E6:0C:76:8B
Certificate issuer: /CN=335ca521362226d03c1829003d81d498aa838f33
Certificate serial: 01856E4B03631844D6872953309C50E56D8C
Authority key identifier: 33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/aaOL-6ImLO95O9Pm2NBD5eYMdos.roa
Signing time: Sun 01 Jan 2023 17:04:47 +0000
ROA not before: Sun 01 Jan 2023 17:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200393
IP address blocks: 185.186.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Jan 2023 07:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:4b:03:63:18:44:d6:87:29:53:30:9c:50:e5:6d:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335ca521362226d03c1829003d81d498aa838f33
Validity
Not Before: Jan 1 17:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69a38bfba2262cef793bd3e6d8d043e5e60c768b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5e:55:00:37:4e:ae:77:37:13:87:32:99:59:
ed:ec:2f:66:64:d0:e5:34:29:58:fb:b2:29:c5:31:
c3:62:bf:10:c4:ef:89:4f:28:1c:99:26:7f:4e:8c:
a3:24:33:08:a5:6c:70:14:22:10:9b:5e:1c:71:05:
a9:3c:c6:d6:c7:4b:f5:10:c4:6c:cf:25:7e:9c:db:
18:e5:3f:b0:23:eb:71:0b:be:65:f4:a3:56:6b:10:
53:9d:03:7b:2b:b9:19:c8:67:40:84:ed:a7:87:77:
4b:6d:b8:cb:9d:2c:ac:f2:1a:41:5e:98:4e:1f:e0:
7a:53:e2:66:b8:a6:70:84:7d:c0:35:a7:7b:90:ef:
4c:fa:ca:1a:db:81:d3:6f:08:9c:13:6d:2e:ae:8f:
ae:0b:43:cb:c5:a7:c4:c2:22:6a:ba:81:1a:50:89:
4e:85:97:60:b6:e7:ca:e8:59:7a:9a:f1:8c:ee:71:
d1:40:19:75:5a:6d:5c:03:65:44:55:6f:76:7c:a3:
e8:2f:ae:6d:58:33:cb:f7:b2:36:68:b0:cc:fe:b1:
89:66:68:c9:e5:47:7c:74:80:d5:1f:7b:1c:75:65:
82:a7:72:d5:b0:61:45:74:05:e2:f0:4b:b7:e7:8c:
1a:74:2c:39:45:17:67:b1:11:8b:b2:34:36:31:ef:
fa:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A3:8B:FB:A2:26:2C:EF:79:3B:D3:E6:D8:D0:43:E5:E6:0C:76:8B
X509v3 Authority Key Identifier:
keyid:33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/aaOL-6ImLO95O9Pm2NBD5eYMdos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/M1ylITYiJtA8GCkAPYHUmKqDjzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.223.0/24
Signature Algorithm: sha256WithRSAEncryption
98:19:9a:4b:19:d0:c9:e2:45:98:c4:ff:6f:91:a9:fa:d8:e1:
ad:5c:71:7f:7f:2b:01:c3:bc:cf:b4:92:d5:89:3d:96:f3:55:
4e:d0:e4:95:9b:8a:6e:c3:ef:c7:a9:13:08:81:18:b5:00:56:
d2:d1:b6:1b:e1:ec:67:67:3d:b9:a8:ff:d9:aa:78:8b:c8:21:
77:ae:3b:07:33:e2:47:f1:e0:3c:14:7c:1e:a8:04:2c:2a:a0:
06:40:30:03:74:c0:14:5f:b9:32:52:7a:7a:17:d0:e2:c6:2e:
c4:be:f4:86:c7:28:fa:44:80:8e:ee:87:03:d2:dc:15:30:ee:
f0:58:1a:32:d5:95:32:07:bd:bb:de:69:4f:50:60:63:f4:04:
05:95:2f:1e:a1:ce:32:fb:b1:99:85:28:4c:d1:31:7e:3f:1e:
f5:c2:5b:31:93:d0:0b:db:3a:eb:29:90:41:97:49:e3:0a:17:
28:c9:56:15:8b:17:8a:0b:3c:34:06:1c:cd:44:fc:5d:f7:b2:
41:71:8f:ae:50:19:6c:30:fa:47:3c:df:92:80:52:98:6d:75:
05:46:f1:df:fb:9e:d1:4b:2a:69:30:6d:85:89:52:b7:60:04:
7e:d6:b8:ab:02:9e:54:36:ec:3e:21:ec:89:99:58:71:d5:b6:
e7:29:fa:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org