Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/OAi1dM7TP2bas6VevifMAD21ulo.roa
File: OAi1dM7TP2bas6VevifMAD21ulo.roa (raw, json)
Hash identifier: nddbBLKpDN0Ogc2pr6Av5LtxVAgPFr1YuEuRhF2jo9I=
Subject key identifier: 38:08:B5:74:CE:D3:3F:66:DA:B3:A5:5E:BE:27:CC:00:3D:B5:BA:5A
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018B5C724BA2A2EC8357F7DCDB99E496477A
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/OAi1dM7TP2bas6VevifMAD21ulo.roa
Signing time: Mon 23 Oct 2023 12:11:16 +0000
ROA not before: Mon 23 Oct 2023 12:11:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197644
IP address blocks: 185.17.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Dec 2023 16:56:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5c:72:4b:a2:a2:ec:83:57:f7:dc:db:99:e4:96:47:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 23 12:11:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3808b574ced33f66dab3a55ebe27cc003db5ba5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f1:ba:9a:a6:92:cd:a6:44:f1:e7:1e:19:bc:
12:59:39:1b:ef:c6:95:88:2f:94:a5:a5:88:d3:7f:
ce:08:c5:f7:51:96:d8:5d:1a:cf:fb:4e:c3:23:0b:
52:32:82:ca:10:80:80:1b:86:7b:cc:b4:74:b5:4a:
2c:4b:9b:94:6a:1f:cc:34:c7:86:21:77:3b:07:61:
e6:aa:76:e1:1f:fe:d8:05:1f:8f:71:5d:c9:b5:71:
7e:01:4f:37:32:34:d8:cf:2f:69:f1:0e:b7:e0:0e:
83:f8:1f:cd:e4:d1:a6:9c:fa:6c:ea:30:d9:51:b6:
35:00:7a:9a:5e:a2:1f:f6:99:39:b3:d4:b8:92:eb:
91:56:b0:ec:a1:34:e5:da:84:b8:14:6d:c1:62:09:
da:9b:f4:02:9b:57:6a:34:c0:28:a9:f3:39:23:8a:
99:cd:17:ba:86:6d:f1:d0:d8:33:18:d3:22:a1:9b:
9d:45:86:77:2d:58:5c:a0:72:7b:b6:90:67:ae:49:
c7:55:b4:b1:d7:c7:68:96:ff:ff:c3:c8:51:c4:ff:
f6:a2:87:b8:35:5f:40:cb:78:f1:e8:e6:6a:b6:7d:
b5:01:59:fc:90:73:79:53:5b:20:cf:94:a0:ec:da:
87:46:74:96:bb:42:a2:50:5a:27:0f:e3:e6:5d:a7:
21:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:08:B5:74:CE:D3:3F:66:DA:B3:A5:5E:BE:27:CC:00:3D:B5:BA:5A
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/OAi1dM7TP2bas6VevifMAD21ulo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.139.0/24
Signature Algorithm: sha256WithRSAEncryption
74:0c:22:41:48:a0:fa:c4:22:5c:20:91:e7:55:82:23:e1:79:
b6:75:f7:74:77:66:48:08:37:8d:79:0b:44:b0:8c:33:97:91:
f2:d4:df:0e:b1:4e:33:d0:9c:c2:1f:ed:33:49:4d:5f:15:ff:
3a:76:fd:a8:ab:60:3e:ba:03:61:ab:7c:76:e3:31:d3:af:92:
bb:e3:37:a0:b2:7f:a5:42:87:9f:d5:37:1d:2e:b3:15:75:ea:
22:77:4b:2f:ef:98:20:6d:ca:f7:8c:c5:e4:a8:12:70:d7:f1:
81:04:5e:fa:cf:40:90:b0:5f:5f:cb:9f:ea:d1:16:0d:99:63:
2b:cc:5f:23:9f:c2:95:d6:f5:a2:48:0e:32:33:20:ff:0f:5b:
9d:88:c1:6f:f9:46:78:d7:d5:97:f2:4c:ad:50:d1:87:a2:24:
38:36:bc:2e:86:fd:7f:ce:9d:19:ab:cf:e1:dd:25:58:15:b8:
0a:a8:cd:1a:4d:d8:73:b3:57:b3:09:51:38:27:63:17:39:8e:
a6:16:c2:cd:9c:38:77:b3:c2:f2:e5:4c:ce:91:5e:f8:c1:26:
a3:9f:8a:e4:aa:44:77:a7:58:fb:e1:fd:58:11:20:c5:9f:bf:
f6:30:31:bd:88:5c:4c:4a:e6:f8:69:1a:1e:0d:01:31:9c:b1:
13:95:f0:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org