Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/OqFNZzvmvziWKSFMBdD1krLdetg.roa
File: OqFNZzvmvziWKSFMBdD1krLdetg.roa (raw, json)
Hash identifier: +QqtRCyCKc6w3HOLuG25t4n3xXMqg9YaGxP1eSKkhQk=
Subject key identifier: 3A:A1:4D:67:3B:E6:BF:38:96:29:21:4C:05:D0:F5:92:B2:DD:7A:D8
Certificate issuer: /CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Certificate serial: 018570151E938B696979D3DEC02E95EE2A79
Authority key identifier: B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/OqFNZzvmvziWKSFMBdD1krLdetg.roa
Signing time: Mon 02 Jan 2023 01:25:10 +0000
ROA not before: Mon 02 Jan 2023 01:25:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62081
IP address blocks: 185.48.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:1e:93:8b:69:69:79:d3:de:c0:2e:95:ee:2a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Validity
Not Before: Jan 2 01:25:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3aa14d673be6bf389629214c05d0f592b2dd7ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:bb:0b:94:0d:23:56:19:1e:05:74:9e:4e:a6:
bf:fe:41:45:d6:fc:b1:18:4f:64:2e:a4:79:d4:1b:
ca:c9:e6:b9:56:98:f3:80:c0:d4:5f:52:8f:48:10:
99:14:9c:84:ee:9f:a3:6d:94:b9:38:e2:fd:1a:d7:
2f:27:6a:2d:e7:94:84:38:69:e5:d0:05:c7:6a:eb:
22:43:78:9c:3f:e2:1a:2a:7a:fa:23:38:13:59:ff:
f6:94:25:c1:bb:10:d6:be:3c:af:24:a1:46:b9:78:
21:af:26:95:11:64:ee:09:99:a6:b1:10:38:32:3f:
8d:e7:c7:ef:af:60:be:de:2e:8e:06:87:3f:3e:dc:
26:59:e5:ff:fb:44:99:24:7a:3d:21:a9:1f:e2:2c:
40:f8:29:b3:1d:4e:ac:5b:48:25:0a:ed:7c:a2:bd:
8e:13:00:9f:d0:86:49:62:ef:9b:bd:3d:90:5d:91:
c2:ef:5c:2f:ea:76:18:a3:9f:8d:e1:7e:90:96:0b:
2c:fc:21:2c:f4:6d:a9:52:70:a9:f2:e6:24:51:02:
d4:4b:9f:9e:56:37:a0:16:ca:9e:d5:f6:33:12:f6:
5e:39:04:28:94:c6:ee:3b:ba:b5:80:71:25:41:07:
c4:b8:de:1c:97:f9:ed:4d:41:17:07:d4:5c:b0:2a:
bc:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:A1:4D:67:3B:E6:BF:38:96:29:21:4C:05:D0:F5:92:B2:DD:7A:D8
X509v3 Authority Key Identifier:
keyid:B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/OqFNZzvmvziWKSFMBdD1krLdetg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.48.8.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:c2:52:46:b8:06:0d:96:9a:ee:ce:b2:05:d7:33:1b:be:64:
3b:b9:bf:dd:88:50:c8:8b:6a:b4:46:e8:5d:78:6f:d8:e5:e9:
78:93:0f:25:ef:8c:25:a3:a3:6e:2b:f0:39:59:a8:15:2f:a3:
73:d0:d2:6d:33:1a:8a:cf:01:c4:26:7e:f5:c3:41:6c:08:fc:
45:8a:87:13:5b:99:15:a0:5f:f3:21:b8:85:54:39:4c:cd:2e:
18:4e:a4:a2:49:b1:a5:b8:72:4e:62:48:76:5f:16:c1:5d:a3:
3e:22:47:ef:74:51:f8:36:45:e3:49:54:43:d5:c8:4a:c0:06:
be:ef:1e:0c:2d:ea:a1:60:a5:38:dd:ae:ba:ac:dd:9e:3b:cd:
20:9c:b5:77:a4:5d:ae:2f:e2:bd:d1:9e:a0:dc:8f:3e:a7:9f:
57:04:58:c1:81:04:09:93:9a:5e:65:c2:11:92:1f:52:61:8d:
04:55:63:78:72:03:bc:af:41:3b:3c:77:8a:fe:ce:f8:f2:77:
9c:4f:d7:df:25:4e:92:30:2e:0b:5f:af:d0:60:00:79:c4:69:
8b:0c:6a:bb:83:fe:74:b1:84:ef:d9:d5:1b:13:40:e2:17:ab:
b0:93:5d:96:ce:a8:88:56:f9:68:da:e2:a9:44:4f:b7:43:2a:
ee:87:a8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:38 2024 by rpki-client on console-ams.rpki-client.org