Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/oe5jLRff2by7w_zKrz4QhqoT71s.roa
File: oe5jLRff2by7w_zKrz4QhqoT71s.roa (raw, json)
Hash identifier: mmIleQLQUh3/N5mgGgAgpKuSy2GWrGqH+bYyYwgMMFY=
Subject key identifier: A1:EE:63:2D:17:DF:D9:BC:BB:C3:FC:CA:AF:3E:10:86:AA:13:EF:5B
Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9
Certificate serial: 01856E38A609B94D293B187E2183E9B7492B
Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/oe5jLRff2by7w_zKrz4QhqoT71s.roa
Signing time: Sun 01 Jan 2023 16:44:44 +0000
ROA not before: Sun 01 Jan 2023 16:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210721
IP address blocks: 194.183.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:a6:09:b9:4d:29:3b:18:7e:21:83:e9:b7:49:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9
Validity
Not Before: Jan 1 16:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1ee632d17dfd9bcbbc3fccaaf3e1086aa13ef5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:05:a9:ec:7c:71:09:ce:41:57:57:1e:11:a9:
91:1d:51:da:9e:06:38:16:5b:79:6e:ac:32:58:c8:
94:26:6f:90:dc:f9:8e:34:63:12:c1:b2:c5:c1:6f:
4e:b8:82:8b:1e:5b:18:a4:83:fb:38:ed:5c:d2:6f:
ee:e6:58:ac:1d:35:06:e5:c6:a9:ac:3e:e2:61:03:
ca:26:71:f2:04:af:56:28:50:46:4e:f3:6f:a4:8c:
d4:2a:91:83:da:a2:ac:a8:39:15:47:c3:1f:2e:70:
9b:1d:50:bc:34:b5:24:9e:9b:8d:40:d3:7d:98:d2:
3d:f9:ec:a7:1e:c6:e9:60:d5:ca:e2:ee:0a:23:b2:
02:5b:3f:b9:da:86:8f:f0:9e:ab:28:da:7d:7d:be:
89:26:25:35:91:15:f8:2b:59:f2:03:fe:11:69:e9:
56:8d:24:83:e7:c0:eb:98:7a:91:97:62:52:41:19:
50:00:8c:49:fc:f1:c8:1b:1c:d4:67:d5:05:6c:b9:
88:aa:08:e1:11:ed:44:8b:28:c0:2c:bd:d0:7c:d3:
f3:a3:c4:4f:49:6d:9c:27:1d:b3:1c:7b:0a:5f:7c:
dc:39:24:bf:f0:87:52:00:30:f6:e3:31:c1:6c:c6:
ea:08:81:76:20:52:39:f0:59:9e:0f:7b:4b:46:00:
6d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:EE:63:2D:17:DF:D9:BC:BB:C3:FC:CA:AF:3E:10:86:AA:13:EF:5B
X509v3 Authority Key Identifier:
keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/oe5jLRff2by7w_zKrz4QhqoT71s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.183.161.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:e9:b2:93:17:d5:d3:5c:de:f9:11:7a:4a:c8:8e:71:c8:05:
c1:aa:05:99:09:ee:16:f3:c9:06:45:19:f6:a5:18:41:41:79:
c0:06:51:39:5d:86:0d:9d:c4:c3:21:01:6b:fe:f7:7e:ad:08:
bb:54:f4:e1:a5:6c:da:6c:06:5a:ca:73:46:6f:9e:e1:dc:c5:
de:36:75:7f:38:e9:00:83:8d:96:29:9e:07:c9:00:88:eb:71:
cb:ed:aa:ff:3e:ae:8a:c8:16:f9:bb:a1:cb:c8:69:5d:af:63:
66:da:ef:76:97:65:7f:5e:a1:f0:d1:c1:0a:ef:bb:b8:d6:65:
53:b5:c8:9b:ee:4c:4d:cb:5c:fd:a8:3c:ea:0e:ec:93:82:d1:
ea:bb:80:ed:7c:69:ad:92:a2:40:33:e9:7c:33:7a:37:93:b2:
32:43:9a:46:ca:78:60:c6:3f:5f:fd:4e:75:e7:12:a5:e9:23:
9f:78:60:fb:43:b4:54:76:52:40:d6:a8:da:ee:a4:17:5d:86:
ca:d0:85:7c:32:dc:ce:4f:af:05:27:47:18:39:d3:1e:20:3b:
a7:08:33:01:1c:28:b3:e3:4b:30:2e:e2:a0:1c:52:ca:5b:6c:
f5:55:db:e1:50:85:8b:8a:54:c5:ae:bf:81:ce:0b:95:55:00:
5b:0a:56:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:35 2024 by rpki-client on console-fra.rpki-client.org