Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dsOaWjOvc1ojbUR4_bJsY1maUo8.roa
File: dsOaWjOvc1ojbUR4_bJsY1maUo8.roa (raw, json)
Hash identifier: v/L57SgDtnR4rwcCmZVEesxuwop+ueLTQ+1H86XyRj4=
Subject key identifier: 76:C3:9A:5A:33:AF:73:5A:23:6D:44:78:FD:B2:6C:63:59:9A:52:8F
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018F37D01CF68F9F6D125A927968A4658AD4
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dsOaWjOvc1ojbUR4_bJsY1maUo8.roa
Signing time: Thu 02 May 2024 05:38:56 +0000
ROA not before: Thu 02 May 2024 05:38:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41745
IP address blocks: 185.65.202.0/24 maxlen: 24
185.255.178.0/24 maxlen: 24
185.255.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 06:24:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:37:d0:1c:f6:8f:9f:6d:12:5a:92:79:68:a4:65:8a:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: May 2 05:38:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76c39a5a33af735a236d4478fdb26c63599a528f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2c:bb:29:45:24:62:a6:d4:f8:a2:3d:8d:cd:
33:62:3f:c7:00:01:7c:70:58:41:5b:80:12:99:49:
8b:23:be:d9:22:65:63:75:8a:d1:d7:8d:83:81:fa:
52:f5:96:2c:98:5c:bf:51:62:3f:3e:80:f5:5d:3b:
a0:3f:50:f8:ee:24:65:41:1f:95:43:7a:18:56:32:
71:b0:36:7b:0b:43:02:c5:18:ef:28:f2:37:5b:a5:
b2:dc:b1:7b:05:d5:a8:82:f2:d9:35:d1:5a:da:1c:
8a:5a:b2:12:24:34:10:a0:5a:fc:64:39:c4:36:17:
e1:0f:54:55:fa:44:a5:50:4b:72:22:14:25:e3:47:
16:63:e6:e7:eb:af:d1:61:8a:59:61:bb:74:97:cb:
4a:62:aa:25:6b:93:7f:b9:18:44:82:5e:33:44:d0:
98:3f:b4:45:02:31:5d:85:71:a9:85:fd:1e:ff:2a:
3e:66:f2:31:bd:d1:cd:77:81:ac:f2:78:8c:9a:31:
66:68:55:f0:02:a4:cc:54:c9:a5:25:5a:09:3e:f3:
33:f6:2b:41:2c:31:a2:e7:c7:f2:75:8b:e3:b9:e5:
9b:00:47:cb:a0:85:3e:f6:97:f0:75:f5:7a:70:6f:
69:28:57:19:e7:6b:79:7c:3e:d3:eb:b3:fa:66:a8:
03:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C3:9A:5A:33:AF:73:5A:23:6D:44:78:FD:B2:6C:63:59:9A:52:8F
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dsOaWjOvc1ojbUR4_bJsY1maUo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.202.0/24
185.255.178.0/23
Signature Algorithm: sha256WithRSAEncryption
75:4e:55:3b:64:b9:72:10:7b:d2:ed:2a:d2:e7:85:09:d4:a7:
db:2a:c5:a3:62:59:1b:26:e2:b0:21:7d:4f:d8:50:4b:6b:fa:
53:71:c4:25:b6:50:dc:9a:45:98:9e:93:0f:4c:a8:4a:69:fc:
11:3f:45:c4:c8:41:09:a2:e1:94:7c:87:6a:c0:d4:ac:6f:a9:
82:9b:6e:e8:e6:86:c3:fb:88:af:f3:9a:fa:9a:4f:69:01:ea:
d5:18:30:2f:b0:57:22:c8:32:44:99:ea:04:d2:19:3b:12:59:
30:4a:6d:d8:2d:2d:5e:43:38:c4:4b:a1:74:19:79:30:0f:0d:
31:12:ae:69:57:b3:f4:fc:e4:59:40:64:c0:3b:41:80:9f:f0:
ac:f9:92:b0:fe:28:fd:6a:54:75:7d:bd:9e:f8:0a:f1:24:87:
56:9b:f4:d7:e1:15:56:0b:7c:89:94:17:1d:e0:e6:b6:64:d1:
b4:6c:a1:a0:b6:dd:e3:7d:0a:c5:ea:c1:41:bb:89:cf:f2:90:
95:ae:d7:d5:75:18:fe:4d:d3:db:fb:31:7d:d9:34:b4:db:54:
fa:65:00:46:6b:1e:2b:f7:ab:6e:21:90:d2:fc:d6:a3:36:6f:
93:e4:ee:35:5b:4b:21:2f:c4:e7:94:43:4f:1a:c7:f3:37:6c:
04:58:ad:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 09:20:39 2024 by rpki-client on console-ams.rpki-client.org