Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/O2iScFk0SwtSIMJ7Itg62twcSRg.roa
File: O2iScFk0SwtSIMJ7Itg62twcSRg.roa (raw, json)
Hash identifier: yMnJBhIwSrw+0WTZIvzj2Kmd0In0O2cnDm4qF7qVQ5Y=
Subject key identifier: 3B:68:92:70:59:34:4B:0B:52:20:C2:7B:22:D8:3A:DA:DC:1C:49:18
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0186A61B8F887E6931E5AB78828B8FCE2669
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/O2iScFk0SwtSIMJ7Itg62twcSRg.roa
Signing time: Fri 03 Mar 2023 06:14:29 +0000
ROA not before: Fri 03 Mar 2023 06:14:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207724
IP address blocks: 185.239.2.0/24 maxlen: 24
185.239.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 08:46:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a6:1b:8f:88:7e:69:31:e5:ab:78:82:8b:8f:ce:26:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Mar 3 06:14:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b68927059344b0b5220c27b22d83adadc1c4918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:62:20:2d:64:e4:3c:72:13:f3:f4:5f:a7:40:
44:08:47:16:aa:0c:54:52:84:8e:0a:00:e3:3e:a3:
9d:ac:5a:bb:8c:c3:e0:d2:a3:09:ec:dc:76:20:2d:
96:1e:e3:20:47:b6:93:e3:37:d8:52:49:86:58:86:
1a:35:44:d4:a4:d7:ec:71:e0:b8:35:0a:61:fb:ef:
02:e3:3f:aa:e5:6a:ad:dd:17:a1:1f:34:bc:64:cf:
2e:6e:69:f8:ae:ce:86:35:92:c8:95:dc:da:3e:2c:
2d:f1:f0:26:5e:c7:6e:b9:52:cf:f9:97:60:76:0b:
1c:8a:23:80:51:8d:a5:7c:58:d9:3c:61:15:54:02:
bf:d1:cf:55:63:19:40:21:6f:57:c2:7c:0b:b1:f9:
59:46:0a:d4:12:78:31:d7:66:c3:42:57:ec:cc:ef:
b2:18:e3:87:d0:3f:00:3a:d4:04:a7:0f:04:87:c0:
94:36:34:78:7e:74:47:aa:79:27:6c:3e:d4:fc:e9:
6c:ad:ed:6e:aa:e8:d2:33:16:d5:20:86:d2:20:36:
21:78:33:60:5f:96:f2:48:ea:16:27:00:64:f4:1c:
39:10:3d:c2:93:8b:df:2c:95:1b:fa:5e:90:d6:e4:
a1:e0:ed:f8:ae:e6:15:05:7b:4d:71:04:4d:f4:d1:
5a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:68:92:70:59:34:4B:0B:52:20:C2:7B:22:D8:3A:DA:DC:1C:49:18
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/O2iScFk0SwtSIMJ7Itg62twcSRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.2.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:f7:1a:11:b9:af:60:d7:89:6b:57:ce:a7:32:3a:9c:eb:7e:
f1:8e:71:f5:1c:f5:62:1c:d5:8f:13:b3:d4:f0:bd:70:13:9f:
da:7f:b0:4c:21:a2:fd:88:2e:36:17:7f:06:94:e3:4a:56:14:
26:b6:51:88:1f:93:b5:d3:4e:b9:a0:87:54:7d:2f:da:73:c3:
ec:44:e4:df:31:bd:e5:70:b7:70:43:52:9d:62:49:f0:8b:24:
dc:a5:de:9b:01:7a:f4:ad:c3:58:59:c8:71:25:54:8d:29:07:
1a:20:53:8d:ae:a4:fe:76:6c:e1:69:3d:a3:ff:d5:14:9a:9d:
80:58:11:d0:06:d5:0c:ae:a6:ec:b8:5c:df:49:56:f4:dc:96:
67:e6:96:78:64:26:14:16:bb:71:a6:1e:ce:cd:f8:83:f7:be:
21:5d:2c:f4:f3:37:f8:a4:1b:06:49:b7:1d:bb:75:3b:55:a7:
f0:be:40:9b:4b:e3:84:6f:df:8e:f4:e8:ae:da:8c:7f:79:84:
3a:55:96:43:c2:7e:44:4f:cc:88:57:83:c5:82:ce:b1:4d:f5:
64:95:5c:49:01:5a:ff:f6:bc:56:d8:72:34:54:a4:0d:1c:74:
b2:fb:21:d6:7a:76:63:c0:1d:b0:ac:c9:f5:2c:44:ff:b9:12:
bb:af:1f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:49 2024 by rpki-client on console-ams.rpki-client.org