Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/Oy8W0u_eiYO7VujlmPv-Cs5JRBQ.roa
File: Oy8W0u_eiYO7VujlmPv-Cs5JRBQ.roa (raw, json)
Hash identifier: F7l6dMQCBFl4QZO5bBLqi+RyW9lOGfuSzWTjFDq8wPk=
Subject key identifier: 3B:2F:16:D2:EF:DE:89:83:BB:56:E8:E5:98:FB:FE:0A:CE:49:44:14
Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635
Certificate serial: 01856CCAC564F4EECC9BA04AEAC79A488DF3
Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/Oy8W0u_eiYO7VujlmPv-Cs5JRBQ.roa
Signing time: Sun 01 Jan 2023 10:05:06 +0000
ROA not before: Sun 01 Jan 2023 10:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.172.152.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:c5:64:f4:ee:cc:9b:a0:4a:ea:c7:9a:48:8d:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635
Validity
Not Before: Jan 1 10:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b2f16d2efde8983bb56e8e598fbfe0ace494414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:6e:28:2f:ed:bd:9c:6b:6d:ac:73:32:f1:23:
f9:55:86:42:7d:de:ca:02:c1:a2:57:cc:d6:6c:83:
cb:a8:d2:17:0f:25:ee:48:43:3f:75:a0:48:f0:c4:
2f:85:22:bd:9e:43:3c:6b:28:98:3e:d7:9e:2f:f2:
e9:a5:6d:e0:ad:ab:33:99:e0:2a:d4:54:4f:d5:de:
a3:15:64:a5:c1:20:7c:58:8b:17:5f:91:78:20:ac:
4a:ad:4d:84:98:60:b4:b1:aa:82:f2:db:ba:71:d9:
90:db:c6:1b:24:e1:c3:ff:03:a1:82:b7:31:51:90:
78:fc:7b:6a:fa:8a:e9:3e:18:5e:84:8e:ef:8a:b1:
54:0b:d9:5f:a3:2d:35:be:6b:cd:32:47:b4:9f:5f:
a9:f1:21:ea:f2:e4:37:5e:1c:ff:a0:10:55:dc:cd:
27:b9:c7:a7:08:4a:33:cd:ad:f3:34:cc:94:a8:01:
0b:50:19:47:a1:f2:ea:f1:8f:c3:c0:df:40:33:01:
ec:02:df:7e:6d:af:76:bf:19:2b:12:8a:9c:b5:e0:
21:5f:36:76:ae:3d:18:78:f8:fe:ad:d4:77:ec:60:
a2:40:6f:b0:36:34:dd:cb:04:d3:34:f4:38:db:53:
ed:45:23:20:80:b6:48:70:6a:99:42:de:d0:2e:b5:
95:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2F:16:D2:EF:DE:89:83:BB:56:E8:E5:98:FB:FE:0A:CE:49:44:14
X509v3 Authority Key Identifier:
keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/Oy8W0u_eiYO7VujlmPv-Cs5JRBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.152.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:b6:bc:73:63:e1:74:e0:9d:d1:bd:0f:b9:27:c2:5f:0e:19:
d0:74:03:dd:86:9e:d1:9c:ed:9b:24:11:1b:20:51:6f:cf:07:
19:57:b3:7f:c0:11:6b:f6:db:c5:43:b0:c3:b6:66:fd:b9:fa:
b4:6a:a4:94:21:cc:ab:16:04:a7:69:9a:82:cd:26:84:a9:f7:
f6:51:3a:8f:63:1d:0a:31:d1:6b:f7:32:46:80:e7:97:61:63:
67:e4:84:33:63:58:1c:8f:3f:86:a8:e9:26:86:75:ea:99:86:
d5:46:4a:df:cf:e5:48:7b:7d:e2:31:3d:87:ce:34:42:fa:98:
9c:e0:f9:83:5b:83:76:ed:57:89:9a:23:b7:5a:07:76:de:36:
50:db:8a:bf:32:45:a1:dd:96:99:f5:01:f2:29:6d:4b:7f:50:
f3:db:39:e5:2e:c6:56:c7:94:1a:0a:97:ce:9f:53:e5:3b:37:
3d:8d:3a:2b:37:58:a2:55:20:a7:bc:2b:6f:e4:4f:79:78:33:
a1:b5:5c:24:89:82:b9:7a:4b:e2:ac:15:e7:07:1b:a4:2a:bf:
05:a9:ad:6c:9d:10:cc:9c:cb:d7:1b:32:c3:50:41:bf:b3:4f:
2b:7c:2b:e1:51:d5:19:8e:33:ad:1d:92:a2:b1:d8:c2:f5:28:
13:82:cc:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:40 2024 by rpki-client on console-fra.rpki-client.org