Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/0vsH3hSKSTFGJEKhb3AXCagDN4A.roa
File: 0vsH3hSKSTFGJEKhb3AXCagDN4A.roa (raw, json)
Hash identifier: WiEivFOXRz8xoQ6TjLd6W2tnUnTFgmH2a3MB7hJLAvQ=
Subject key identifier: D2:FB:07:DE:14:8A:49:31:46:24:42:A1:6F:70:17:09:A8:03:37:80
Certificate issuer: /CN=331706b915bab8dac2b5547fbc87adeb61e6aede
Certificate serial: 01881EE737EDC2CF6787E4C75403EBC52842
Authority key identifier: 33:17:06:B9:15:BA:B8:DA:C2:B5:54:7F:BC:87:AD:EB:61:E6:AE:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxcGuRW6uNrCtVR_vIet62Hmrt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/0vsH3hSKSTFGJEKhb3AXCagDN4A.roa
Signing time: Mon 15 May 2023 10:14:09 +0000
ROA not before: Mon 15 May 2023 10:14:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47297
IP address blocks: 185.7.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:e7:37:ed:c2:cf:67:87:e4:c7:54:03:eb:c5:28:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331706b915bab8dac2b5547fbc87adeb61e6aede
Validity
Not Before: May 15 10:14:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2fb07de148a4931462442a16f701709a8033780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d4:b3:e7:45:06:f2:c1:6f:03:f7:d3:02:1d:
25:71:84:7c:6d:59:2d:25:38:18:02:fc:6d:7e:23:
a0:f2:96:52:ce:b2:74:a7:a3:00:f9:90:05:0d:1e:
f2:70:ef:79:5a:6b:4b:39:95:fe:13:a1:85:59:87:
d8:10:11:e6:95:a5:2b:c1:2d:6f:59:34:7b:78:c6:
47:3b:92:26:af:c2:75:71:5b:eb:00:4a:ae:e4:3a:
72:53:e3:fe:58:65:03:96:c5:97:b7:2b:66:a8:eb:
18:48:0e:d3:7a:eb:ca:ba:3a:09:ea:8e:16:0c:58:
ff:b6:cc:6f:ff:1b:b4:ab:70:90:59:89:aa:77:70:
43:87:13:9f:ac:11:72:8d:96:b1:8c:47:a5:9c:71:
c0:4b:5a:3b:8b:5b:d8:6e:67:67:9c:c6:9e:cf:61:
0a:e4:06:67:4c:7d:fd:04:5b:38:c6:19:59:7e:6f:
dc:50:f8:f9:28:d1:74:d2:48:ce:eb:21:89:0e:20:
03:d9:a6:a9:f0:23:a6:3f:ec:6f:f0:04:79:64:2d:
a4:44:72:01:1b:f8:e7:28:09:a0:17:e7:ff:72:a9:
ca:78:55:d6:bc:6e:4d:86:96:21:45:5b:99:5f:3a:
68:9b:0d:0a:38:67:94:a6:af:e8:b0:e2:80:86:3c:
98:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:FB:07:DE:14:8A:49:31:46:24:42:A1:6F:70:17:09:A8:03:37:80
X509v3 Authority Key Identifier:
keyid:33:17:06:B9:15:BA:B8:DA:C2:B5:54:7F:BC:87:AD:EB:61:E6:AE:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxcGuRW6uNrCtVR_vIet62Hmrt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/0vsH3hSKSTFGJEKhb3AXCagDN4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/112ce7-7415-4c5d-a890-ec95148fd236/1/MxcGuRW6uNrCtVR_vIet62Hmrt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.7.68.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:86:66:6f:75:10:92:65:f1:a3:6b:8e:3c:e6:11:7e:62:f6:
3e:5f:47:1f:e3:4d:5e:af:69:ea:91:e3:92:1b:2e:3b:e5:c8:
41:6d:6b:49:14:e3:29:8a:48:04:d5:5c:12:ae:4d:94:9d:64:
ad:19:8f:5f:75:d2:46:ee:31:e6:9b:4b:e5:09:0d:80:38:51:
6f:e5:f2:02:56:ba:fb:ed:36:72:2a:86:d6:1d:a9:16:4f:bb:
f5:d3:c6:f8:d1:2c:09:8e:3d:f8:f8:72:11:17:43:a8:0f:43:
69:07:6f:d2:62:92:34:e1:4d:a7:e8:3e:15:86:0d:b5:0f:3c:
27:ef:ac:cc:78:83:86:48:f7:c1:59:1a:f8:29:6b:32:16:49:
9e:28:92:fb:39:7a:1e:13:84:cb:72:fd:a8:1b:72:41:7d:78:
27:f5:db:12:fe:d1:d2:2e:12:e7:49:63:2d:8e:ea:d5:c4:2e:
4b:79:83:c0:1d:6e:d3:44:ed:2e:fb:b5:fe:21:71:05:64:21:
ea:bf:ca:4f:20:69:00:d5:8d:e1:69:7b:00:bb:66:b7:1b:e3:
17:fd:2a:69:82:48:41:ca:13:e3:06:db:0d:d8:a3:1a:0c:34:
b1:3a:6e:3a:45:31:3e:be:86:17:64:b2:18:fb:05:6d:c4:fa:
e5:bd:f6:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:03 2024 by rpki-client on console-fra.rpki-client.org