Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/1tOlHroPFojWY4cnN4E8ZO_6pWU.roa
File: 1tOlHroPFojWY4cnN4E8ZO_6pWU.roa (raw, json)
Hash identifier: wOIommxCOTIoQ7RJOaiaTE5BXuXEP6AE1iXK3+no960=
Subject key identifier: D6:D3:A5:1E:BA:0F:16:88:D6:63:87:27:37:81:3C:64:EF:FA:A5:65
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 018D6143E74938609B73AFA20788653B0BDB
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/1tOlHroPFojWY4cnN4E8ZO_6pWU.roa
Signing time: Wed 31 Jan 2024 20:44:16 +0000
ROA not before: Wed 31 Jan 2024 20:44:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 83.229.113.0/24 maxlen: 24
185.90.220.0/22 maxlen: 24
185.90.220.0/24 maxlen: 24
185.90.221.0/24 maxlen: 24
185.90.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 16:12:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:61:43:e7:49:38:60:9b:73:af:a2:07:88:65:3b:0b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Jan 31 20:44:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6d3a51eba0f1688d663872737813c64effaa565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:19:31:9c:89:bb:5f:25:c7:1b:68:0c:46:38:
23:bc:9c:86:49:9e:0a:66:98:3c:63:bf:13:43:30:
c3:94:1f:aa:52:f8:06:d3:08:a0:39:16:bc:02:b9:
7f:c2:f8:0b:b0:15:fa:7f:c9:a5:14:ce:c9:56:2e:
7c:14:ce:15:79:38:93:71:0e:46:e0:04:4c:5b:98:
3f:ce:30:2d:fe:d8:e6:4d:9c:2d:2a:e7:09:4e:b2:
69:17:1f:43:0d:77:f2:fa:d8:a9:f8:b3:ba:f4:e0:
14:a4:e9:71:c3:75:da:96:22:eb:51:de:4a:b6:1c:
95:4c:ed:43:eb:3e:18:65:60:12:b6:08:f0:34:af:
4c:60:14:67:57:27:0e:37:8b:88:08:b5:e6:2e:6f:
8f:a7:c5:6f:7c:f5:94:33:ce:fc:2d:1c:39:af:22:
e1:64:c7:9e:b3:9d:90:d3:a8:e3:16:1d:8d:dd:7b:
9e:dd:c7:ec:44:7a:32:10:bd:06:3d:e8:fd:03:99:
20:67:cd:36:1c:90:d0:04:8f:be:d1:00:13:27:36:
5c:e1:8f:23:65:cb:9a:b0:e8:4a:10:ce:00:8f:39:
fa:53:37:1f:e7:4a:e2:43:fd:54:b6:3a:46:1d:ed:
0c:ef:0c:2e:c3:4a:5d:a7:c4:3e:d2:00:99:b6:f1:
5a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D3:A5:1E:BA:0F:16:88:D6:63:87:27:37:81:3C:64:EF:FA:A5:65
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/1tOlHroPFojWY4cnN4E8ZO_6pWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.229.113.0/24
185.90.220.0/22
Signature Algorithm: sha256WithRSAEncryption
58:12:c9:5f:77:a5:7f:31:76:e5:13:44:9c:32:95:96:bb:06:
4c:10:b3:dd:5e:b2:77:74:56:73:55:45:0b:ed:dd:db:ba:71:
84:bf:39:68:5b:e1:84:09:6f:22:0d:78:d8:7a:40:75:32:09:
1e:94:95:4d:e6:63:d6:73:61:1a:d6:9d:1c:45:55:3c:bb:f6:
8f:37:a6:42:0e:0d:b2:b5:2a:6f:55:cf:99:53:78:8b:c8:0a:
a1:1f:af:66:bb:be:cb:08:3f:00:08:cf:3a:c9:c1:f9:1b:1e:
85:d4:3e:a3:63:38:5f:d2:34:c6:bf:58:ef:9a:fc:14:e2:e9:
37:2e:35:93:7b:a4:a7:22:92:69:92:89:97:d2:8c:11:63:65:
c4:ac:e7:65:7b:38:db:e6:42:b1:03:d3:11:42:31:32:61:d1:
01:d7:0e:34:8e:1a:cf:9b:48:f7:21:c5:cc:17:4a:39:09:e2:
04:36:71:2a:c6:9f:e1:08:59:bf:93:3c:f4:6e:2f:f5:f4:76:
f4:a0:9c:e5:b2:7a:ed:9b:e5:e9:bb:0b:31:9a:56:e6:dc:b4:
f3:cc:ac:5b:79:3d:10:b2:2c:c1:28:dc:49:bf:c3:85:78:60:
fb:47:3d:6f:97:6b:a5:c1:95:08:b5:5e:8a:40:d6:ce:ef:44:
1b:ad:05:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:26 2024 by rpki-client on console-ams.rpki-client.org