Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/ovYboJRM81LVjIjdlRDPoppJYlE.roa
File: ovYboJRM81LVjIjdlRDPoppJYlE.roa (raw, json)
Hash identifier: eAiXOTsxS5XarlGedVXvcqsrZ855NHezf0LxIo7xH2k=
Subject key identifier: A2:F6:1B:A0:94:4C:F3:52:D5:8C:88:DD:95:10:CF:A2:9A:49:62:51
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 018A2C1A0CE80D44056DE18A45876BA6649B
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/ovYboJRM81LVjIjdlRDPoppJYlE.roa
Signing time: Fri 25 Aug 2023 09:50:19 +0000
ROA not before: Fri 25 Aug 2023 09:50:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210907
IP address blocks: 185.63.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Dec 2023 16:17:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:1a:0c:e8:0d:44:05:6d:e1:8a:45:87:6b:a6:64:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Aug 25 09:50:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2f61ba0944cf352d58c88dd9510cfa29a496251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0e:c4:3c:db:b1:de:36:c1:68:a1:14:d5:df:
35:9a:e5:25:d5:41:b1:23:2f:bc:24:58:02:aa:97:
a6:b2:a3:3c:bc:47:57:47:88:9d:3d:94:f7:c5:6d:
71:2d:71:79:6c:5f:73:3a:d8:7b:a9:32:c1:03:c3:
0f:e0:cf:df:d3:04:b4:3d:2a:9a:89:f7:6d:96:71:
0b:ec:1b:c1:72:5e:7c:e0:6c:11:02:7b:9d:63:36:
70:9d:a9:59:31:8f:0a:c7:fe:42:6c:9c:88:c8:3f:
43:3d:a1:a4:91:ab:bd:e8:9c:eb:8a:c3:0d:4d:6c:
27:b0:70:6f:68:8e:bf:62:94:14:e3:f3:4e:a9:dc:
68:3f:86:c2:ca:ff:58:41:7a:29:05:49:33:31:4c:
7c:67:8f:4c:e1:29:3e:7a:f7:79:de:c2:2c:94:b1:
c3:74:22:d9:ae:8c:78:52:35:ed:06:1c:43:18:96:
7e:f0:9d:a2:1f:de:15:8d:ad:19:9f:9c:6b:ae:ef:
f8:97:8e:91:c5:66:e4:2f:f4:34:4c:cf:a8:71:54:
ec:6f:72:9f:4d:18:2f:d8:0c:78:ba:c3:fa:45:ee:
37:99:cc:d0:56:09:9d:21:a5:4b:77:e7:fa:85:68:
8b:9b:41:88:cf:3f:ef:0d:68:e1:77:62:10:55:64:
ec:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F6:1B:A0:94:4C:F3:52:D5:8C:88:DD:95:10:CF:A2:9A:49:62:51
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/ovYboJRM81LVjIjdlRDPoppJYlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.33.0/24
Signature Algorithm: sha256WithRSAEncryption
29:dd:07:d1:fb:71:b7:40:92:31:c4:51:ae:85:56:c2:da:f2:
76:5c:d5:8a:8a:63:69:b8:07:71:f3:15:f1:d9:f0:ae:ae:27:
c8:54:ca:0a:67:0c:41:7b:7d:ad:5a:d4:45:13:fc:12:dd:46:
3c:0d:19:b1:b4:db:5b:a2:b9:6b:80:77:49:d8:34:07:d7:bd:
ae:10:4e:31:1c:47:dd:12:d1:21:6d:fe:2b:b5:dd:3e:0e:bb:
af:7a:79:f8:6c:4f:61:6a:ff:15:e3:dd:4f:1b:b2:05:de:5c:
63:f5:11:f7:d3:81:58:4b:dd:78:8c:9e:b7:19:f0:8a:eb:7f:
14:10:d9:43:e7:44:c4:fd:b3:28:97:a4:44:e6:be:4f:5d:f1:
4d:65:20:76:e6:9e:e1:2a:f0:6d:fb:eb:0e:fc:67:1e:80:ae:
5d:14:4d:44:cd:01:51:23:d1:c9:2c:90:df:88:85:67:68:de:
cd:2d:32:6c:ee:22:fd:ae:92:3b:4a:3a:18:fb:5b:9a:4b:14:
7a:a7:64:bf:de:03:6f:50:19:be:c5:f6:4f:cf:ec:7c:0b:a5:
27:77:75:c3:f4:71:4c:32:30:46:29:90:e8:22:ae:cd:5a:af:
2b:74:44:31:33:7b:46:78:a4:d2:9d:3d:1b:14:3c:2e:90:4c:
df:f0:8e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:23 2024 by rpki-client on console-ams.rpki-client.org