Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/0c3d2a-adb7-49e9-adfa-6968e2d81826/1/0qGGDPybV3O-pS8IOuiSHoyh7lw.roa
File: 0qGGDPybV3O-pS8IOuiSHoyh7lw.roa (raw, json)
Hash identifier: Z1vcFdd53z2ggZri/VDt/A7dwBujYTQr2lX5agzrRic=
Subject key identifier: D2:A1:86:0C:FC:9B:57:73:BE:A5:2F:08:3A:E8:92:1E:8C:A1:EE:5C
Certificate issuer: /CN=394c6f73b3c83881ffc8e6603a6b64f45365acf1
Certificate serial: 01856D13D9DEE1B73441AA07496734E36620
Authority key identifier: 39:4C:6F:73:B3:C8:38:81:FF:C8:E6:60:3A:6B:64:F4:53:65:AC:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUxvc7PIOIH_yOZgOmtk9FNlrPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/0c3d2a-adb7-49e9-adfa-6968e2d81826/1/0qGGDPybV3O-pS8IOuiSHoyh7lw.roa
Signing time: Sun 01 Jan 2023 11:24:55 +0000
ROA not before: Sun 01 Jan 2023 11:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197060
IP address blocks: 185.155.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:d9:de:e1:b7:34:41:aa:07:49:67:34:e3:66:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=394c6f73b3c83881ffc8e6603a6b64f45365acf1
Validity
Not Before: Jan 1 11:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2a1860cfc9b5773bea52f083ae8921e8ca1ee5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d6:5c:55:1c:3b:09:c4:67:3f:d9:37:c8:16:
1d:15:2a:a9:07:0c:80:68:9d:7f:91:e7:dd:a9:bf:
3c:59:84:47:2b:0b:1a:4d:06:fa:56:f6:be:2d:d7:
a3:77:f0:90:c2:f1:c9:fd:70:c4:b4:17:d0:f8:7b:
e7:c1:93:c1:89:e8:65:cb:74:07:35:0c:c6:25:0c:
42:71:46:0d:fc:a0:85:80:d0:be:02:6e:d4:7f:d8:
ed:70:db:b1:ed:4f:ed:d5:fb:88:b5:13:9b:19:d3:
56:ff:3c:4e:65:35:5e:66:a8:de:85:e2:2a:45:88:
a4:bd:41:ef:41:a5:b3:e9:95:99:15:3a:26:d5:a3:
15:a6:2b:1b:99:d1:7c:23:57:1f:ff:e4:64:c9:e0:
0b:74:01:3e:e2:03:b6:ae:05:61:32:26:fd:88:62:
cc:3c:f0:8b:31:69:67:b8:84:cc:2f:a5:1f:91:4b:
cb:23:b7:2c:4e:85:01:ca:cd:b5:52:c7:ce:0f:66:
91:33:73:e4:63:0f:df:06:fe:b2:72:a1:28:00:9d:
0b:24:19:54:e4:37:99:39:e2:38:b3:fa:b3:13:a8:
7f:20:0e:5f:0f:c4:9c:05:6b:b8:a5:5d:15:69:98:
0a:f3:ef:1e:81:4f:7f:df:c2:b4:36:c6:c4:f2:d6:
f2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A1:86:0C:FC:9B:57:73:BE:A5:2F:08:3A:E8:92:1E:8C:A1:EE:5C
X509v3 Authority Key Identifier:
keyid:39:4C:6F:73:B3:C8:38:81:FF:C8:E6:60:3A:6B:64:F4:53:65:AC:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUxvc7PIOIH_yOZgOmtk9FNlrPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/0c3d2a-adb7-49e9-adfa-6968e2d81826/1/0qGGDPybV3O-pS8IOuiSHoyh7lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/0c3d2a-adb7-49e9-adfa-6968e2d81826/1/OUxvc7PIOIH_yOZgOmtk9FNlrPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.252.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:23:ed:b3:52:33:8e:2b:94:43:f8:f6:2a:e6:b3:a4:4c:10:
70:7f:4e:18:d8:5c:0b:0f:d5:d6:e9:82:53:4a:7f:0a:1b:de:
32:3e:16:3c:01:d1:f0:9c:84:18:f8:83:58:98:bb:f8:43:d9:
de:3e:0f:c4:44:38:0f:9a:b6:a2:6a:8d:0d:1e:ee:90:77:e1:
c4:ea:d0:16:d8:53:a4:73:f6:ef:2d:50:c7:e8:74:11:90:67:
62:64:c2:5c:ad:0e:e6:f8:7a:10:7f:6d:33:39:31:40:fa:47:
5f:52:70:54:ff:a7:47:53:bc:fa:ef:3e:d7:97:a4:b9:6e:70:
eb:e3:69:7b:79:29:7a:2f:2e:42:a2:4a:6b:09:fb:7b:8a:b8:
fe:a8:c9:d5:73:44:f4:ba:7f:2c:d8:db:da:7e:74:1d:cc:95:
4e:9a:a3:54:d2:5c:a5:30:8b:f1:7a:ef:d6:2e:8c:c8:34:0b:
7c:30:99:85:c4:a1:1a:8b:f4:7b:1e:9a:da:33:84:4b:48:80:
4e:b1:8f:56:f5:4d:b1:fc:b1:1a:40:13:b8:84:36:a3:0e:53:
b7:17:1a:40:14:ea:1a:e7:47:91:ee:70:ff:74:8c:67:cb:48:
01:3d:37:0b:83:78:5f:6e:34:18:f7:fa:04:dc:95:ec:ec:d5:
54:9f:d8:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:51 2024 by rpki-client on console-fra.rpki-client.org