Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/O9aGbr_ko17HheZsJGCd6ZYrqC8.roa
File: O9aGbr_ko17HheZsJGCd6ZYrqC8.roa (raw, json)
Hash identifier: VR9fIjk/roFpXc43TFkIijbXhNlZYQ7qj9EHbecGHLQ=
Subject key identifier: 3B:D6:86:6E:BF:E4:A3:5E:C7:85:E6:6C:24:60:9D:E9:96:2B:A8:2F
Certificate issuer: /CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Certificate serial: 01856ED4CDCD2ED7EE64C71148ABC60FEBA2
Authority key identifier: A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/O9aGbr_ko17HheZsJGCd6ZYrqC8.roa
Signing time: Sun 01 Jan 2023 19:35:18 +0000
ROA not before: Sun 01 Jan 2023 19:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211246
IP address blocks: 185.232.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:cd:cd:2e:d7:ee:64:c7:11:48:ab:c6:0f:eb:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Validity
Not Before: Jan 1 19:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bd6866ebfe4a35ec785e66c24609de9962ba82f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d0:d3:47:95:64:53:b1:6c:d2:45:23:1f:62:
26:c5:1b:b6:01:2f:a5:32:50:eb:67:8a:63:72:82:
e8:e4:38:ed:c4:cc:d4:7d:d7:9d:35:96:93:3c:98:
a3:4d:a4:87:96:5a:a2:02:42:34:17:38:1b:25:76:
3b:cb:a2:3d:12:ba:b4:20:98:db:07:f3:6e:44:55:
43:96:11:83:50:1c:59:be:93:c0:1a:5e:a3:54:65:
02:ab:58:72:de:8e:cb:30:a2:14:a2:8d:79:fa:e3:
c6:1e:df:cb:25:63:46:39:53:a6:8b:50:7e:43:3e:
d4:3f:eb:fd:57:26:9c:39:c6:f0:10:3e:9a:c8:2e:
5c:66:f2:02:6c:8f:3f:c0:02:c5:ba:92:dd:cd:eb:
0c:4c:cd:81:97:e1:b9:cd:f3:69:19:e6:12:4a:d9:
1d:da:50:34:76:3d:27:2d:7b:44:8b:57:ae:44:9a:
c6:09:2e:64:62:57:8f:7e:4c:0f:64:13:df:55:15:
53:ee:5a:6a:b1:9c:8c:1d:0e:2a:ff:fc:82:9c:e5:
ff:a2:5d:b0:c2:19:7b:32:32:c8:fd:7c:d7:6a:0f:
0a:d1:f3:12:f9:79:29:6a:ef:59:1a:de:ab:1f:f9:
88:21:41:07:99:9b:df:a8:c2:3c:a6:e9:90:a3:02:
db:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D6:86:6E:BF:E4:A3:5E:C7:85:E6:6C:24:60:9D:E9:96:2B:A8:2F
X509v3 Authority Key Identifier:
keyid:A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/O9aGbr_ko17HheZsJGCd6ZYrqC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.235.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:d3:c1:ca:ec:d6:fe:25:7e:cc:a4:89:2f:b8:5b:2e:0d:02:
37:a9:cc:89:6f:de:9a:bd:57:e5:d3:8b:c2:ce:8f:46:ba:54:
9b:3f:10:10:e7:b1:5d:14:bb:aa:39:74:1a:1e:2a:1c:d6:a9:
1a:d1:3d:31:84:73:8b:d2:48:ed:8d:d9:33:03:f2:ce:30:41:
a9:0d:ad:92:98:7d:e9:f9:34:db:12:c3:7c:22:c3:c5:77:24:
0f:cf:dd:8b:77:c3:3d:7c:14:f7:6d:6a:b7:24:c2:f0:0e:33:
86:14:37:02:ff:25:1b:d4:11:5e:65:4c:f1:77:95:af:2c:5e:
97:20:73:d1:09:a6:79:50:87:4d:22:e1:4a:fb:7f:f3:c5:56:
57:3a:25:09:2e:ff:79:c6:19:58:dd:be:bc:ce:87:22:6e:ff:
b0:29:c0:b4:cc:71:60:f1:e8:41:94:71:2c:ce:bc:51:df:26:
c5:b9:82:c7:42:e1:ce:aa:29:08:a8:83:5d:7c:e2:0b:1e:1e:
b2:01:b9:ee:87:48:1e:d3:0a:5a:2f:17:84:0d:6e:56:08:e2:
bd:3a:1e:07:ce:fd:9b:9a:de:e5:4c:0d:1d:09:55:c6:35:e7:
c2:7f:a7:03:89:fd:8a:a5:3d:e4:0d:4d:82:8f:e9:d7:3e:18:
2d:92:fc:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:46 2024 by rpki-client on console-fra.rpki-client.org