Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/orP6HaPMDZCvZ04A5KrQTzshUjA.roa
File: orP6HaPMDZCvZ04A5KrQTzshUjA.roa (raw, json)
Hash identifier: yrVsTeQyQGUzq+kJ8HqfsMjMKQy7iaVoj2XvXKKK6eg=
Subject key identifier: A2:B3:FA:1D:A3:CC:0D:90:AF:67:4E:00:E4:AA:D0:4F:3B:21:52:30
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 01872A4221A0FC3330356B7B27314D847A89
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/orP6HaPMDZCvZ04A5KrQTzshUjA.roa
Signing time: Tue 28 Mar 2023 22:06:29 +0000
ROA not before: Tue 28 Mar 2023 22:06:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 185.137.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 12:38:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2a:42:21:a0:fc:33:30:35:6b:7b:27:31:4d:84:7a:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Mar 28 22:06:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2b3fa1da3cc0d90af674e00e4aad04f3b215230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0f:0a:7b:0f:59:8e:d8:cd:f2:58:05:68:88:
67:ab:e3:77:ae:1e:04:49:4a:6e:d9:e9:cd:b4:a1:
2f:88:9b:87:7b:f1:1f:5a:ff:8a:96:29:a0:ea:ba:
7e:73:5b:93:56:7a:62:8c:86:ad:43:16:e2:a6:b0:
01:1b:a8:b9:db:a9:09:44:96:44:6c:d4:a8:dd:bf:
5d:d9:2a:0d:2e:25:21:4e:04:7e:1b:9a:ad:5e:36:
84:ca:9c:30:12:fa:31:f8:91:1e:76:ea:7b:86:1c:
d3:09:ab:64:9a:23:2c:1c:90:d0:c3:cc:7d:18:09:
bc:e3:cc:c4:33:cd:c9:e8:68:8f:75:ef:02:d2:a0:
bb:36:54:e3:88:7b:3a:b6:51:a0:f1:03:79:a0:07:
60:fa:bb:1b:ea:94:f5:01:30:62:49:8f:0b:df:67:
5b:fe:6f:b1:9c:2a:8b:c7:7e:d6:b6:4c:73:01:a0:
ea:11:68:fc:72:af:4f:eb:7a:ef:dc:36:75:66:8b:
1f:4a:3f:27:af:de:b8:b0:be:48:03:88:71:63:44:
1f:48:7d:44:85:fd:b7:57:16:46:a1:2a:89:c8:b9:
55:36:27:eb:44:55:a6:54:cb:03:4f:35:2a:ed:54:
fa:04:70:8d:39:77:d4:11:2e:83:ff:c9:78:52:4a:
e4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B3:FA:1D:A3:CC:0D:90:AF:67:4E:00:E4:AA:D0:4F:3B:21:52:30
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/orP6HaPMDZCvZ04A5KrQTzshUjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.98.0/24
Signature Algorithm: sha256WithRSAEncryption
74:21:53:e5:d7:49:e5:ee:8b:93:e4:11:33:2c:77:74:5b:5a:
7a:90:59:01:ed:6d:bb:83:58:66:fa:dd:1f:ac:be:b2:f2:fb:
7d:09:10:fe:57:5e:52:15:37:39:ce:45:0b:40:51:12:02:47:
79:cd:57:95:6a:87:fa:96:9b:e2:a8:28:61:54:6b:e1:b9:ab:
57:af:87:fa:cc:e2:0c:b0:3e:66:b2:47:62:59:13:70:53:82:
7f:f6:b1:ef:ce:4d:d6:95:15:e5:f0:fb:b5:4a:88:67:89:5f:
32:74:2d:40:01:02:dd:02:11:86:f2:b9:04:59:89:6e:89:8c:
4c:7e:7e:e1:c1:a7:db:e9:72:90:45:42:a2:54:94:75:4c:9f:
58:9f:86:81:2d:70:4d:28:e5:f7:4e:75:77:97:4d:77:22:bb:
18:e9:9c:7b:cf:dc:b6:b2:2c:d2:c7:f3:b3:af:82:b4:b1:74:
d3:64:94:02:e8:cb:a0:81:88:85:75:68:12:a6:0d:78:34:fb:
6f:a1:c8:8b:46:4d:c7:f7:02:28:e7:c3:6e:69:d2:0b:15:58:
5b:4e:37:bb:08:04:3c:60:ea:d9:d7:25:fd:7e:c3:6e:8f:c9:
42:92:a6:06:a8:bb:ba:74:c9:1a:5b:0b:af:2d:c3:c7:3c:41:
87:e9:2f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:39 2024 by rpki-client on console-ams.rpki-client.org