Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/OtxsJvw5oOUkgiljYqtN6Z3vkJY.roa
File: OtxsJvw5oOUkgiljYqtN6Z3vkJY.roa (raw, json)
Hash identifier: QXwgb17/mgu+QbXOTua+dwBRyoEcUOpiYVqfcS6N388=
Subject key identifier: 3A:DC:6C:26:FC:39:A0:E5:24:82:29:63:62:AB:4D:E9:9D:EF:90:96
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 018AEF1C8C1A71D9DA7C4EDA6A5EC6585FCC
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/OtxsJvw5oOUkgiljYqtN6Z3vkJY.roa
Signing time: Mon 02 Oct 2023 06:39:00 +0000
ROA not before: Mon 02 Oct 2023 06:39:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.212.204.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:1c:8c:1a:71:d9:da:7c:4e:da:6a:5e:c6:58:5f:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Oct 2 06:39:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3adc6c26fc39a0e52482296362ab4de99def9096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a2:6b:ba:24:4c:fa:ef:21:53:0f:93:c3:f5:
ff:73:be:bb:ae:ae:ba:48:16:78:7d:1c:0c:3b:a8:
10:dd:6a:88:23:43:8a:64:ac:df:c9:d5:9b:e9:15:
28:22:ee:10:d1:c0:18:40:2b:a2:16:fd:b0:e0:a3:
e3:20:7b:ff:a7:3d:c1:a4:88:4d:7d:43:78:7c:4b:
11:d5:d1:ae:a8:30:07:4a:05:21:04:50:dc:45:42:
b5:a7:f7:7c:45:16:b6:a4:71:98:70:b5:e0:e3:cd:
d7:c7:02:85:12:87:b3:7d:72:ee:fb:19:da:ff:ca:
a1:9a:cb:ca:1c:03:22:fc:df:35:08:db:27:79:1f:
67:99:e6:8b:22:07:2e:22:0a:ed:82:36:4f:5d:2b:
b0:e4:2d:fd:58:9e:df:dd:b5:ef:cb:21:f6:0c:f4:
7e:82:53:f1:fb:01:6a:f1:cb:88:a2:bb:65:30:74:
ce:68:49:f6:42:71:a1:b3:00:c8:e3:35:bb:14:e7:
bd:07:d1:c2:07:90:51:77:fd:48:6b:da:28:fb:c7:
49:3c:6a:85:6e:e0:b2:c5:8c:b2:56:8e:71:d6:da:
05:a8:e5:6e:7a:53:d3:16:a4:aa:02:57:49:9e:f1:
68:b5:a8:2e:9d:99:b5:06:f1:f1:79:b2:70:20:8e:
23:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:DC:6C:26:FC:39:A0:E5:24:82:29:63:62:AB:4D:E9:9D:EF:90:96
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/OtxsJvw5oOUkgiljYqtN6Z3vkJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.204.0/23
Signature Algorithm: sha256WithRSAEncryption
13:9e:20:6b:c6:c0:e7:cd:fa:4a:40:ac:ef:4e:7b:f8:89:54:
a2:c5:05:00:42:e3:ca:b6:80:a8:4d:9e:ad:72:77:f1:c1:27:
1b:13:8e:90:f2:59:4b:9a:71:82:21:4e:4f:e0:b8:2c:66:5a:
2e:d5:6c:ce:bf:9a:17:75:02:50:97:11:60:4c:d1:19:0e:c1:
63:5e:f5:9a:1d:2e:63:ff:02:80:39:8e:15:21:2b:c1:c6:53:
11:46:1d:73:09:95:65:60:b8:df:f6:03:92:7f:56:91:d0:db:
71:c8:23:87:b6:36:59:4c:c6:26:6b:23:0b:8f:78:16:b1:48:
1e:d8:66:a6:57:db:e6:f0:a8:30:16:45:09:4d:ca:5d:57:a9:
15:de:20:d2:e7:4f:3d:bc:ed:f0:fb:70:ed:2d:fe:f4:e1:07:
22:14:ce:73:10:fc:f1:81:df:4b:96:cb:05:2b:ca:8c:d1:04:
2e:ad:5d:4a:a1:f8:76:13:fd:e6:af:d4:87:93:08:8d:6a:07:
31:71:f3:9f:fb:97:a4:b7:7c:f5:07:c3:4d:e7:72:03:d9:37:
a6:e7:2e:94:6e:5a:2a:29:eb:d0:d5:00:27:03:ea:e8:aa:5e:
b0:95:87:26:a7:fd:38:8a:d6:b3:27:2f:46:60:ad:bd:7a:d8:
35:48:a1:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:02 2024 by rpki-client on console-ams.rpki-client.org