Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/o9Uq-ZQwZXF_D1o5ps9HovM1xjM.roa
File: o9Uq-ZQwZXF_D1o5ps9HovM1xjM.roa (raw, json)
Hash identifier: PKZC5yiX7woy65pyleMlJV+XJ6T+NUxs0PBpwcsUhkY=
Subject key identifier: A3:D5:2A:F9:94:30:65:71:7F:0F:5A:39:A6:CF:47:A2:F3:35:C6:33
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01878E30E5E2477CD98343007F2E5D74D4CB
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/o9Uq-ZQwZXF_D1o5ps9HovM1xjM.roa
Signing time: Mon 17 Apr 2023 07:49:41 +0000
ROA not before: Mon 17 Apr 2023 07:49:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209181
IP address blocks: 185.81.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:30:e5:e2:47:7c:d9:83:43:00:7f:2e:5d:74:d4:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Apr 17 07:49:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3d52af9943065717f0f5a39a6cf47a2f335c633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:35:18:39:f3:0f:76:da:f2:44:47:5f:d7:a5:
af:1d:16:8a:c4:bf:37:2b:dd:a0:d5:3f:ed:a4:c0:
bf:43:3e:81:21:f0:77:2a:7b:88:ff:a7:ac:5f:8b:
65:f7:10:bd:5a:02:69:d1:97:3e:a3:bb:81:a4:62:
90:17:c5:ec:8c:37:75:68:cf:e0:33:cd:92:70:2c:
42:83:a0:c1:00:57:19:c7:2b:4e:8e:06:a2:da:4d:
c0:62:af:cf:7e:59:55:7d:b3:c1:04:11:b6:f6:64:
cc:7a:df:5e:a3:70:7d:28:77:c5:a7:72:56:94:ff:
77:dc:0f:02:60:9f:2b:89:2f:b2:13:53:43:aa:b0:
86:4f:f9:39:d1:00:7d:de:0c:eb:30:e9:67:cb:eb:
a7:51:69:3e:90:c8:7f:c1:e4:92:84:ab:61:5f:a2:
c8:6d:f4:b3:7d:cf:bb:87:d5:89:88:83:af:99:31:
65:e7:f9:76:ee:25:49:ca:95:b9:cf:3f:a5:d1:1a:
5b:59:2e:dd:28:69:31:f5:a9:66:73:47:7c:9f:b8:
5e:93:1a:64:9d:c6:30:7a:e2:8f:8e:a3:19:d0:c4:
b4:86:10:8f:a3:98:61:98:0b:a1:8b:c2:60:ef:a8:
1d:5b:1f:83:72:94:a8:e7:bd:7e:23:a5:04:be:71:
ec:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D5:2A:F9:94:30:65:71:7F:0F:5A:39:A6:CF:47:A2:F3:35:C6:33
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/o9Uq-ZQwZXF_D1o5ps9HovM1xjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.182.0/24
Signature Algorithm: sha256WithRSAEncryption
81:ef:ce:9a:cd:ba:7d:e9:b0:ed:56:23:6f:19:9f:43:e2:ef:
64:89:f5:b5:39:0b:07:89:b3:ed:db:81:ea:f4:02:a1:1c:3e:
69:82:fe:9c:d8:d1:89:ec:89:63:a0:74:64:2a:d7:22:bb:97:
61:20:39:c0:66:54:ea:4c:74:cf:a1:87:8f:8c:62:e8:b6:88:
fc:9a:61:c2:15:41:37:b9:d7:f9:b9:e9:8f:34:a0:4a:ba:26:
16:12:1c:37:9d:5f:78:b7:b7:ae:59:86:c9:90:92:3d:b6:93:
a4:f9:00:cf:a2:f3:4f:6e:23:d8:c2:18:eb:3e:d5:43:ec:ec:
ed:fc:41:b6:35:c3:13:0d:70:a3:aa:38:b8:28:d4:a7:71:8a:
8a:54:95:bd:49:49:c1:06:11:40:d4:94:3c:f4:66:a4:c5:f0:
de:9c:1b:2e:dc:1e:8a:69:58:65:59:9c:71:34:9c:fb:01:a1:
79:f4:81:0e:8b:99:55:bc:b6:fc:71:bb:26:99:22:a7:64:8d:
ab:45:33:a5:f7:36:ce:6e:50:ef:94:aa:28:97:3f:0e:ac:3b:
9d:ca:e5:bb:78:75:f9:a0:e7:7e:8e:e1:db:71:5e:fa:51:2d:
42:8c:fa:5e:0e:a0:dc:fb:fb:23:1f:30:3f:70:0e:e7:ef:9f:
3f:4c:a7:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:55 2024 by rpki-client on console-fra.rpki-client.org