Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/oWO2bNJECt3-eCYgnqAh3oqSVh8.roa
File: oWO2bNJECt3-eCYgnqAh3oqSVh8.roa (raw, json)
Hash identifier: BPkFvnAH0u/frFQMhQiE76mWP4W6tH2bMEJupveOgp0=
Subject key identifier: A1:63:B6:6C:D2:44:0A:DD:FE:78:26:20:9E:A0:21:DE:8A:92:56:1F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018B70E9DC9BACF948C558FECF44AA120E01
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/oWO2bNJECt3-eCYgnqAh3oqSVh8.roa
Signing time: Fri 27 Oct 2023 11:34:16 +0000
ROA not before: Fri 27 Oct 2023 11:34:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48795
IP address blocks: 185.238.188.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:e9:dc:9b:ac:f9:48:c5:58:fe:cf:44:aa:12:0e:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 27 11:34:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a163b66cd2440addfe7826209ea021de8a92561f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:97:e3:c8:26:65:70:a9:ce:b0:3d:b3:9b:16:
ec:50:94:07:94:6e:27:f5:70:09:90:33:72:03:b5:
67:72:89:57:9a:31:5c:c3:6f:52:27:14:e1:4c:37:
33:97:21:ca:3f:e2:d4:52:16:ae:a4:b9:80:b5:14:
f3:63:b3:3d:d3:21:f2:d7:a6:7e:12:3c:5e:a2:cf:
05:27:56:0d:1b:25:27:15:37:bb:b7:9a:00:05:e1:
99:68:1d:24:6a:0b:65:91:58:d2:d7:a3:dc:d2:82:
fb:6f:a0:ea:01:0f:07:de:52:79:69:38:2d:96:d5:
a7:d7:5c:f8:5c:c1:02:3d:87:9d:19:08:57:4d:76:
2d:9b:88:dc:7f:7a:cd:32:a0:ef:9b:c5:c0:eb:ff:
79:71:50:de:10:6a:1e:4f:9b:2c:21:6f:5d:ab:9a:
7e:05:9f:c3:37:88:51:46:6b:de:74:f5:32:db:cf:
30:4a:1c:88:36:de:62:d7:cf:23:04:63:34:58:e7:
5b:2e:56:e0:7f:af:48:f3:b8:18:9c:87:a1:58:4d:
38:dd:b3:ba:cb:28:99:67:ce:84:a4:4c:80:23:34:
7d:6a:3c:4a:99:a4:e0:48:49:91:aa:0b:53:23:a7:
88:53:3b:43:2e:6b:87:0c:8d:d6:ee:a4:22:43:92:
0a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:63:B6:6C:D2:44:0A:DD:FE:78:26:20:9E:A0:21:DE:8A:92:56:1F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/oWO2bNJECt3-eCYgnqAh3oqSVh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.188.0/22
Signature Algorithm: sha256WithRSAEncryption
76:53:87:28:0e:ec:89:df:19:72:41:17:a8:b7:37:42:6b:95:
0b:a5:9e:99:27:e1:3a:0f:f6:d9:db:3e:9f:cf:8b:64:aa:c3:
5d:6c:15:12:77:e4:5b:4c:5f:08:fb:af:2f:3b:96:50:3e:e1:
e1:b2:6c:ce:87:49:e7:19:ff:03:09:d1:80:d1:0d:bd:66:75:
f3:f3:36:e3:13:8d:78:29:56:90:12:ef:8b:17:26:ec:8e:c6:
19:c4:e0:34:d2:ab:f7:24:2a:9a:f3:94:2a:70:dc:df:3b:b7:
ef:4e:20:0e:71:f2:c6:6e:40:17:04:87:54:59:2c:fd:d6:81:
02:8d:49:df:90:6f:0d:1d:ef:d5:ce:08:72:d0:26:22:3f:7f:
27:5a:d9:74:87:39:bd:a8:12:09:7a:f3:0d:74:a1:1c:e4:c8:
0f:e4:75:6b:0f:1a:38:32:22:72:e4:a9:f5:0c:7c:4d:93:5f:
93:03:83:fe:7e:12:10:7f:b9:16:89:b5:c4:8b:1c:d2:34:98:
52:bc:b2:ed:d5:b3:f9:c8:1a:99:d8:75:dd:e6:78:90:1d:b9:
ce:6e:63:fc:c1:2c:9f:a3:93:71:32:23:5d:db:b2:dd:78:b5:
c0:ef:a6:1a:80:e1:24:7e:5b:e6:90:13:8f:b5:42:07:ba:16:
ee:1a:84:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 20 14:31:38 2023 by rpki-client on console-fra.rpki-client.org