Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/C9OnCzClITGVtA7zKK44bvzRAnI.roa
File: C9OnCzClITGVtA7zKK44bvzRAnI.roa (raw, json)
Hash identifier: /HOkgwOkhZvpfqtysoC3dWtIaLrxM4UC0iayzxc9ylI=
Subject key identifier: 0B:D3:A7:0B:30:A5:21:31:95:B4:0E:F3:28:AE:38:6E:FC:D1:02:72
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 018848019ACDDB4110263A9FCC82D496F4D9
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/C9OnCzClITGVtA7zKK44bvzRAnI.roa
Signing time: Tue 23 May 2023 09:47:24 +0000
ROA not before: Tue 23 May 2023 09:47:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201995
IP address blocks: 185.63.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jul 2023 07:25:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:48:01:9a:cd:db:41:10:26:3a:9f:cc:82:d4:96:f4:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: May 23 09:47:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bd3a70b30a5213195b40ef328ae386efcd10272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:62:51:03:b4:4e:db:04:db:9e:96:68:6a:39:
52:74:4b:2e:48:33:1f:35:bf:2c:2c:92:ec:07:35:
b1:40:9f:1d:2c:d0:11:8a:ef:47:19:0a:13:90:e9:
17:ab:ca:9f:95:a9:d9:77:c4:bb:08:e9:7c:dd:e7:
a8:0a:ee:fc:63:b5:a3:82:62:09:40:dc:0e:77:0b:
3e:43:a9:3d:bf:c6:07:90:e8:d3:6c:f3:34:68:24:
48:6a:91:b7:7b:9d:0b:4c:10:d9:2d:46:ec:66:df:
e2:17:f2:39:d2:21:ad:c6:a0:97:10:91:ee:10:99:
22:c6:c1:6f:14:f0:fa:c8:cc:59:ad:c7:63:15:b2:
d8:4a:19:40:4d:89:16:09:0b:38:43:60:61:ad:d1:
24:bb:c9:a8:1a:81:ad:e0:28:bd:e6:0c:70:30:f8:
6a:ca:4c:54:23:05:c5:6d:e2:d7:ec:d9:91:b3:b3:
02:11:ee:aa:52:1e:b5:f4:b0:bd:da:26:6e:65:79:
07:16:7f:96:bb:e2:b5:8c:6f:29:07:78:73:de:cc:
36:29:03:c0:50:a9:09:4e:83:aa:a5:d4:28:52:2a:
64:02:ea:ca:1a:7c:a3:03:e3:d4:26:4d:c8:f3:2f:
55:4c:2a:6b:de:96:3d:89:44:71:68:89:87:17:48:
3b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:D3:A7:0B:30:A5:21:31:95:B4:0E:F3:28:AE:38:6E:FC:D1:02:72
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/C9OnCzClITGVtA7zKK44bvzRAnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.84.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:4c:18:e4:4d:5e:da:85:6f:15:6c:d8:67:5c:c7:27:b9:6b:
24:ff:71:a5:dd:81:d4:d2:a3:9f:c5:1a:a7:13:29:41:7a:57:
45:4b:3a:f4:b0:f3:62:2b:53:86:99:8f:28:12:17:34:e3:48:
ac:73:95:54:6a:f9:b4:0b:d2:17:50:23:b6:28:b0:74:e9:08:
9a:9d:4c:1e:d2:86:65:c5:e4:f0:1e:36:6f:e7:66:27:dd:31:
7a:87:38:70:75:28:6d:58:59:dc:22:9b:c7:2e:d6:4e:6e:30:
3c:d1:e0:9f:ea:b7:10:bd:97:91:12:d6:7e:9c:f2:25:13:5d:
99:03:50:2e:df:45:7c:28:13:b5:9f:9c:86:1f:88:a7:f5:f0:
f4:e5:19:fb:f2:43:a9:2e:49:af:ba:9c:2a:19:3b:22:ae:96:
00:34:a4:41:00:8d:49:6b:70:49:03:27:28:87:aa:45:7d:a0:
ac:ae:f8:45:fa:e5:43:b6:e7:c8:d4:82:17:22:d7:c7:df:75:
b3:be:c0:1a:8c:e6:75:52:7f:52:af:59:b5:be:39:03:bc:04:
ee:a5:69:d9:db:33:1f:2a:b5:f1:ed:e3:04:d3:bc:54:03:5e:
20:4b:ec:e7:ba:9d:59:14:c9:1d:d7:8b:5f:a9:c2:58:24:ad:
92:d8:79:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:32 2024 by rpki-client on console-fra.rpki-client.org