Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/934ec3-b76a-40d0-8a3a-824729ab4b9a/1/oMTtOTparwe3igLC2B5KZV7iHm4.roa
File: oMTtOTparwe3igLC2B5KZV7iHm4.roa (raw, json)
Hash identifier: zEUg5vNL9+Bz85fLmhyLw59kxjN9oNnjvPcJ1icMS7U=
Subject key identifier: A0:C4:ED:39:3A:5A:AF:07:B7:8A:02:C2:D8:1E:4A:65:5E:E2:1E:6E
Certificate issuer: /CN=12133a6523e2ed0a0c9a36ea8a7c6f0e72a5dd64
Certificate serial: 018ACB9643E707D22850A3B33E639EFBFFC1
Authority key identifier: 12:13:3A:65:23:E2:ED:0A:0C:9A:36:EA:8A:7C:6F:0E:72:A5:DD:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhM6ZSPi7QoMmjbqinxvDnKl3WQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/934ec3-b76a-40d0-8a3a-824729ab4b9a/1/oMTtOTparwe3igLC2B5KZV7iHm4.roa
Signing time: Mon 25 Sep 2023 09:05:37 +0000
ROA not before: Mon 25 Sep 2023 09:05:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28716
IP address blocks: 185.9.148.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cb:96:43:e7:07:d2:28:50:a3:b3:3e:63:9e:fb:ff:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12133a6523e2ed0a0c9a36ea8a7c6f0e72a5dd64
Validity
Not Before: Sep 25 09:05:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0c4ed393a5aaf07b78a02c2d81e4a655ee21e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6d:0b:47:4f:6c:5d:89:38:b5:c6:45:c0:07:
d2:91:e5:ea:e4:80:70:de:40:70:b3:e4:41:ba:1b:
50:8c:d4:3b:b5:7b:31:12:61:4a:9e:2b:f8:0c:89:
99:9a:bf:20:6b:7c:57:d6:cb:15:c1:fb:84:07:57:
5f:b0:9c:92:c9:73:c2:5f:09:89:62:4c:17:c1:0f:
0e:0d:bb:28:aa:4b:0a:3b:80:46:46:7f:fd:ae:06:
d5:5b:9a:a0:91:d4:85:cd:58:45:32:ff:ba:9e:62:
52:6d:0e:a1:c8:ab:79:cf:29:c0:24:fb:f4:92:89:
96:57:ee:ce:ba:06:00:fa:6c:d0:ea:d5:be:db:b4:
17:8c:83:b4:f3:c2:f6:85:cb:24:51:36:76:d9:87:
bf:98:95:b0:13:c1:2c:74:43:90:46:ca:b5:27:77:
fa:71:7e:25:49:c1:cd:08:65:8b:66:8b:16:1e:a6:
47:56:f5:e8:ee:bb:5a:c2:3d:db:91:e0:fa:f8:5b:
56:36:94:7f:51:39:e8:85:f1:f9:c6:c8:58:1b:a9:
ae:fa:c6:fb:eb:3f:79:07:7f:9d:6d:ca:19:d0:7c:
1b:e3:8e:dd:93:36:00:f4:a2:95:d6:5e:0a:69:83:
ed:ac:da:c7:36:83:17:40:a9:9b:d0:f9:69:8f:d9:
98:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C4:ED:39:3A:5A:AF:07:B7:8A:02:C2:D8:1E:4A:65:5E:E2:1E:6E
X509v3 Authority Key Identifier:
keyid:12:13:3A:65:23:E2:ED:0A:0C:9A:36:EA:8A:7C:6F:0E:72:A5:DD:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhM6ZSPi7QoMmjbqinxvDnKl3WQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/934ec3-b76a-40d0-8a3a-824729ab4b9a/1/oMTtOTparwe3igLC2B5KZV7iHm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/934ec3-b76a-40d0-8a3a-824729ab4b9a/1/EhM6ZSPi7QoMmjbqinxvDnKl3WQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.9.148.0/22
Signature Algorithm: sha256WithRSAEncryption
90:00:7c:7a:0f:d2:5a:06:dd:11:33:da:e3:26:8f:8d:af:39:
3b:2a:92:5c:40:ae:bd:42:8b:49:b3:d7:ff:b7:d5:b7:85:d7:
95:37:36:96:89:af:6a:2b:e7:b4:39:32:b8:fb:74:0b:5f:99:
8f:c1:e3:e2:e5:a7:42:d8:88:ed:eb:75:b1:95:84:f0:68:5a:
e4:7b:68:d6:95:27:34:ae:7c:33:d8:38:4a:e2:27:b4:78:91:
ee:84:8f:a3:8e:f5:17:d9:8a:3a:d2:e9:3c:63:a3:8c:59:60:
62:04:3a:41:25:50:c9:1c:a8:dc:cd:22:f7:38:62:55:40:e6:
e4:c3:df:99:75:93:d1:43:3a:33:23:e8:b1:bd:81:62:71:7a:
61:04:36:af:17:37:03:22:7a:fe:6b:00:9b:82:d3:88:6d:2b:
17:83:9a:e4:5e:28:d2:0e:77:37:d4:17:41:c9:03:34:1d:57:
5a:ee:f4:8b:4e:fd:c6:7f:22:7b:2c:78:36:cd:41:d4:6c:49:
8b:96:17:b9:e5:ee:fc:26:4c:b8:c9:07:4b:55:ca:dd:d8:05:
6c:76:d7:9d:8e:90:91:e4:ea:82:f3:35:92:aa:e6:e2:84:94:
55:40:42:0b:1a:4b:b0:ef:58:2a:e1:3b:50:0f:07:fe:59:a2:
04:e5:52:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:48 2024 by rpki-client on console-fra.rpki-client.org