Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/OEBs3dFqawH0LCsTA3mOixhZd3w.roa
File: OEBs3dFqawH0LCsTA3mOixhZd3w.roa (raw, json)
Hash identifier: 5dcurWkBmqCnLCa1QvEwPZAlq20oiG3GC9dTzari4ik=
Subject key identifier: 38:40:6C:DD:D1:6A:6B:01:F4:2C:2B:13:03:79:8E:8B:18:59:77:7C
Certificate issuer: /CN=56f722a885abeb9aaffb32da764ef091b5b20340
Certificate serial: 0186FFF92921B416516C13EEF6D5AB15D3AE
Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/OEBs3dFqawH0LCsTA3mOixhZd3w.roa
Signing time: Mon 20 Mar 2023 17:02:44 +0000
ROA not before: Mon 20 Mar 2023 17:02:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15547
IP address blocks: 185.201.216.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:f9:29:21:b4:16:51:6c:13:ee:f6:d5:ab:15:d3:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340
Validity
Not Before: Mar 20 17:02:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38406cddd16a6b01f42c2b1303798e8b1859777c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d3:c3:d6:cb:57:7c:8d:4d:be:4b:aa:f1:2e:
7c:7d:3e:07:38:63:6b:08:19:4e:38:ad:27:0e:5c:
b3:a1:5b:ad:41:a7:c6:dd:e5:e0:e3:57:fd:c3:6e:
b2:fd:5f:80:9b:46:b8:01:d5:a8:ff:d3:22:c2:7e:
27:5f:f2:af:1d:e5:5e:15:bf:cb:cc:c1:10:3e:8f:
af:89:c5:7a:60:78:df:de:3f:33:51:fb:f9:88:c9:
ec:5d:dc:f1:f7:e7:e2:e4:fa:c1:b4:67:53:a6:89:
3f:45:33:db:11:5b:ac:96:da:3e:a8:ca:da:71:94:
d5:33:df:3c:6d:b0:fa:c0:27:dc:6f:c2:a6:c3:bc:
fe:87:a7:db:31:16:f3:22:fd:dd:5f:f1:84:51:eb:
8a:66:81:93:2b:0e:13:1c:c1:a1:fc:c3:1f:bc:3d:
60:6d:00:86:a0:0b:ae:5d:5d:69:19:ad:b7:93:5f:
75:0c:4d:ec:71:d7:ec:6f:3f:c9:05:b7:c2:17:74:
5d:4a:78:9b:94:c1:1b:29:47:de:6a:58:45:63:ec:
1f:9a:39:73:4e:eb:64:cf:0e:4c:91:9d:a8:fc:f5:
83:81:7c:18:42:14:f8:2e:d2:6e:1e:9d:6f:be:65:
96:ed:95:4f:e4:16:bd:9e:bb:40:d9:50:da:8c:9b:
74:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:40:6C:DD:D1:6A:6B:01:F4:2C:2B:13:03:79:8E:8B:18:59:77:7C
X509v3 Authority Key Identifier:
keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/OEBs3dFqawH0LCsTA3mOixhZd3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.216.0/22
Signature Algorithm: sha256WithRSAEncryption
78:db:51:2e:bc:d2:73:1c:08:ef:bf:3f:97:21:77:e6:e7:21:
bf:5a:1b:4b:c2:ba:cf:02:f3:22:5f:65:94:86:27:b1:ed:da:
0c:83:47:9d:d9:e0:1f:a1:28:fb:fb:0d:a6:b6:6d:4c:8e:1a:
43:3d:9b:34:74:6e:14:f7:c2:c1:73:1c:e7:e1:49:ae:84:fa:
28:58:06:0f:35:13:8d:00:82:43:d7:74:cf:c1:81:b6:00:bd:
87:2f:1e:cc:5d:aa:31:24:2c:49:0b:4c:2e:90:36:02:7b:a9:
df:22:14:de:7a:00:4c:f8:2f:f7:80:2e:d6:78:7e:65:ec:d6:
6b:c5:c5:55:e3:78:92:94:1c:cd:49:06:9f:73:0a:84:02:61:
fa:ee:40:59:a8:be:6e:80:2c:f6:a3:3a:3e:ee:3f:9b:33:26:
98:f4:b1:ef:72:ea:62:f2:41:59:55:87:23:e3:05:45:6b:6b:
4a:cf:8f:4e:40:ed:5f:ba:97:13:b9:74:0d:84:d1:c2:67:ce:
84:e8:01:c5:11:e8:89:87:d9:62:88:ca:b2:55:aa:74:d4:68:
f1:47:38:37:4a:96:b3:f7:f7:0b:5f:c7:09:79:57:2e:7e:26:
b4:d5:61:89:da:bd:a5:9b:3b:3c:7d:1d:e4:d1:99:c0:85:56:
c4:17:df:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:13 2024 by rpki-client on console-fra.rpki-client.org