Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/b64a3b-d39a-4e60-bcbd-3fbef14726c5/1/oEH5-U64qgfGLC0ql8OKZHtJrSk.roa
File: oEH5-U64qgfGLC0ql8OKZHtJrSk.roa (raw, json)
Hash identifier: 4y6+lGgOsOHxi1PX30e7cKl6mm13HO1d+ncyX6fNpXI=
Subject key identifier: A0:41:F9:F9:4E:B8:AA:07:C6:2C:2D:2A:97:C3:8A:64:7B:49:AD:29
Certificate issuer: /CN=3d23d5ed0a141bfb44f6935d23588aeb9136c66d
Certificate serial: 01856F5DE43B1849C9AB1D539732C6E818FE
Authority key identifier: 3D:23:D5:ED:0A:14:1B:FB:44:F6:93:5D:23:58:8A:EB:91:36:C6:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PSPV7QoUG_tE9pNdI1iK65E2xm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/b64a3b-d39a-4e60-bcbd-3fbef14726c5/1/oEH5-U64qgfGLC0ql8OKZHtJrSk.roa
Signing time: Sun 01 Jan 2023 22:05:02 +0000
ROA not before: Sun 01 Jan 2023 22:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.191.252.0/23 maxlen: 23
185.191.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:e4:3b:18:49:c9:ab:1d:53:97:32:c6:e8:18:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d23d5ed0a141bfb44f6935d23588aeb9136c66d
Validity
Not Before: Jan 1 22:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a041f9f94eb8aa07c62c2d2a97c38a647b49ad29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5e:97:2f:a8:1b:9e:0f:63:4f:4e:29:76:02:
14:26:b4:9c:6f:e0:b9:b2:9f:92:e6:2d:81:f1:16:
a1:ab:4f:22:f7:ac:b2:45:39:97:ea:8e:cf:e6:3b:
36:db:f4:fa:59:20:4d:7f:10:ee:48:6d:54:73:0b:
2d:e6:2a:2b:7a:5a:61:3e:9b:1f:d6:43:57:92:7e:
ff:0b:6d:fe:f7:98:8d:a0:9c:b4:5f:c1:5e:f3:bd:
f1:57:38:d8:18:a1:93:28:1b:77:d5:da:dc:1e:dc:
ed:51:6c:54:f3:6a:96:1d:18:d2:25:a1:a6:52:8c:
04:f6:d2:f1:ab:f5:5b:8f:ae:41:af:77:33:5a:00:
7a:55:72:3e:f9:b9:ae:65:e9:a8:89:e9:0b:ff:ce:
7d:59:15:8c:ae:28:3e:28:7e:fa:6a:35:d3:f0:c5:
c9:13:4d:ab:fe:2b:e7:3a:7c:6c:bb:39:ad:b0:e4:
b2:f7:99:a4:a1:6f:ca:8a:4a:aa:45:e7:f4:86:4d:
c2:41:91:81:a5:10:7e:8a:c5:04:10:17:64:2e:17:
df:a7:2b:6a:f1:3a:17:e9:5e:1c:9b:b4:87:76:aa:
07:47:fb:75:72:97:8d:d8:d7:84:b3:b6:3f:80:09:
0e:e3:82:c2:26:69:c0:33:10:0d:a3:be:e5:82:8e:
42:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:41:F9:F9:4E:B8:AA:07:C6:2C:2D:2A:97:C3:8A:64:7B:49:AD:29
X509v3 Authority Key Identifier:
keyid:3D:23:D5:ED:0A:14:1B:FB:44:F6:93:5D:23:58:8A:EB:91:36:C6:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PSPV7QoUG_tE9pNdI1iK65E2xm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b64a3b-d39a-4e60-bcbd-3fbef14726c5/1/oEH5-U64qgfGLC0ql8OKZHtJrSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b64a3b-d39a-4e60-bcbd-3fbef14726c5/1/PSPV7QoUG_tE9pNdI1iK65E2xm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.252.0/22
Signature Algorithm: sha256WithRSAEncryption
58:be:49:5f:f2:82:85:2b:ac:64:73:a6:6f:f6:c9:b4:f5:db:
30:5e:2f:1d:f1:1e:c1:89:0d:ca:a8:7a:7d:e7:bc:92:be:82:
68:ee:84:15:f7:41:cc:3c:b4:7f:04:92:71:fc:2c:bc:d5:2f:
41:90:82:48:e3:15:8b:1f:8b:5c:42:25:8c:62:61:2b:45:aa:
cc:93:97:0d:0a:91:ce:c3:f4:51:15:ce:f5:8b:a0:f8:eb:52:
e2:3d:7f:66:f6:4a:3b:06:3b:fd:b0:81:4b:12:df:3c:45:47:
b2:87:cf:19:15:9c:5a:a2:19:fd:56:b8:f9:29:68:57:51:ea:
29:0c:70:68:3b:f2:71:13:f3:71:63:7b:b6:7e:65:81:98:ad:
3b:76:69:f3:7f:66:80:2c:7b:5d:5f:89:63:55:2a:72:b8:4c:
0e:6c:f8:d5:dc:11:ab:56:98:f9:38:d0:3b:29:32:ab:ca:e9:
b2:f1:f3:49:a4:32:46:1f:4a:3a:b4:bb:a4:aa:4b:66:6d:14:
95:48:6f:6c:36:c5:f1:80:52:5f:57:18:7c:bd:14:d3:5d:92:
c8:34:33:a6:a9:b8:9a:d3:04:b9:de:1c:65:4b:e9:e8:68:0e:
2a:27:e4:29:86:32:8b:d2:8f:d7:d0:b5:a2:31:da:30:94:ea:
06:b6:6a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:56 2024 by rpki-client on console-ams.rpki-client.org