Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/OpmGHHWmd8WA3oDl3Mo0GF304S4.roa
File: OpmGHHWmd8WA3oDl3Mo0GF304S4.roa (raw, json)
Hash identifier: pQOCsGo6G351e7IaJZlls7gymy4nPL1Njqn9ZcaCMrE=
Subject key identifier: 3A:99:86:1C:75:A6:77:C5:80:DE:80:E5:DC:CA:34:18:5D:F4:E1:2E
Certificate issuer: /CN=269b8a3748440c9d5c2c508bd03b46d7273eee56
Certificate serial: 01856DCAFEBC91D4B4335E82A0540D096596
Authority key identifier: 26:9B:8A:37:48:44:0C:9D:5C:2C:50:8B:D0:3B:46:D7:27:3E:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/OpmGHHWmd8WA3oDl3Mo0GF304S4.roa
Signing time: Sun 01 Jan 2023 14:44:58 +0000
ROA not before: Sun 01 Jan 2023 14:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62119
IP address blocks: 185.244.160.0/24 maxlen: 24
2a12:42c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:fe:bc:91:d4:b4:33:5e:82:a0:54:0d:09:65:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=269b8a3748440c9d5c2c508bd03b46d7273eee56
Validity
Not Before: Jan 1 14:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a99861c75a677c580de80e5dcca34185df4e12e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d9:c2:0d:fb:ee:bd:d3:00:81:bc:28:19:21:
b5:b8:83:9b:56:ae:69:d8:77:18:f1:f3:c5:d8:17:
3c:ad:67:14:de:55:fd:b7:cd:2a:15:5a:d1:94:16:
e9:7f:88:fb:dc:d8:43:36:91:ed:e0:f5:c4:b4:85:
b8:f5:05:0b:3b:77:fe:32:bd:0c:e9:77:4d:59:8a:
cb:cb:6f:95:96:24:62:48:b4:b7:37:45:82:f8:30:
76:e2:c9:a7:d7:10:ff:ea:ae:53:37:2c:1e:52:b1:
11:51:c1:c7:b8:25:ee:89:fc:1b:5b:a1:3f:31:b3:
01:1f:2b:f1:74:40:f3:44:4f:17:13:8f:19:94:1e:
34:2e:c6:b6:57:6c:0c:52:09:23:31:11:88:c1:60:
d5:5c:15:63:13:10:fc:7e:7a:f1:82:e5:b7:b4:af:
b2:2b:96:39:0f:8d:27:d6:6d:9d:34:bd:3f:1a:44:
49:9a:8e:8e:43:25:23:89:f5:5b:50:a0:98:a2:43:
e1:b7:bc:0b:3c:f7:3d:bf:57:66:a4:37:5f:04:47:
56:02:ae:39:f3:06:39:74:59:40:c3:6e:f0:ed:e0:
84:62:46:bd:6b:60:f4:bd:16:e4:f9:97:1b:ec:ca:
9d:ef:0e:f1:92:f0:b2:12:0f:c7:86:67:b2:02:d9:
f8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:99:86:1C:75:A6:77:C5:80:DE:80:E5:DC:CA:34:18:5D:F4:E1:2E
X509v3 Authority Key Identifier:
keyid:26:9B:8A:37:48:44:0C:9D:5C:2C:50:8B:D0:3B:46:D7:27:3E:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/OpmGHHWmd8WA3oDl3Mo0GF304S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/94aae4-771c-429a-a7cd-f87bc173d2aa/1/JpuKN0hEDJ1cLFCL0DtG1yc-7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.160.0/24
IPv6:
2a12:42c0::/29
Signature Algorithm: sha256WithRSAEncryption
92:9d:91:e0:da:b5:3b:12:93:1c:e2:09:46:37:4a:e1:61:d5:
70:f9:ad:ab:2e:f5:22:18:c4:3a:a3:71:c5:29:fa:27:8f:65:
53:61:e9:12:38:f5:24:cd:3b:55:99:13:b2:6f:54:f3:98:02:
f6:83:f5:62:91:cf:3d:00:f4:9c:7d:90:e8:d3:49:ad:30:18:
08:3c:1e:db:41:cb:e9:82:5a:1a:d4:7b:68:3e:84:b5:db:93:
19:bd:21:3a:60:33:a9:ae:31:0d:67:41:35:f4:af:08:55:ac:
0b:e1:a0:35:d9:c8:2d:a6:dd:91:d7:5b:86:ef:dd:26:49:cd:
33:19:a2:7b:04:7d:1d:85:d4:92:4a:f8:c9:6e:30:a7:6d:c6:
31:3f:67:84:3e:69:d0:81:01:03:7d:9e:06:cb:53:2a:bb:5a:
09:96:26:14:3c:00:dd:e2:d0:1a:a2:6a:bf:5b:29:5d:1c:17:
e6:f0:58:29:d5:bc:71:6e:14:a5:a3:14:b5:19:39:64:47:b8:
87:21:2b:56:06:25:8e:1e:bb:ab:3c:2a:d0:c5:bf:dd:2d:2a:
3c:1d:c3:5c:80:36:d9:57:e2:0f:e7:e5:ae:b4:54:17:9a:0b:
6e:cf:8f:38:f5:a7:2a:76:4f:79:92:04:d5:75:45:6e:81:fe:
1a:b6:4a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:57 2024 by rpki-client on console-ams.rpki-client.org