Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OAHtQQEm7wujUQoLe3jrQXi4_0g.roa
File: OAHtQQEm7wujUQoLe3jrQXi4_0g.roa (raw, json)
Hash identifier: zDnprA55TafpzbN65wFw8ZdqWAtslXEVGCxTwQL8BPg=
Subject key identifier: 38:01:ED:41:01:26:EF:0B:A3:51:0A:0B:7B:78:EB:41:78:B8:FF:48
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 0191E58D9D0E80E80E50F7C3344EF7126168
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OAHtQQEm7wujUQoLe3jrQXi4_0g.roa
Signing time: Thu 12 Sep 2024 09:25:48 +0000
ROA not before: Thu 12 Sep 2024 09:25:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.243.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 11:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e5:8d:9d:0e:80:e8:0e:50:f7:c3:34:4e:f7:12:61:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Sep 12 09:25:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3801ed410126ef0ba3510a0b7b78eb4178b8ff48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d0:de:bc:82:41:45:69:85:a7:ea:d5:e5:35:
e9:9c:42:d8:39:de:1e:2a:63:da:9e:91:f5:e2:81:
3b:96:7c:c7:6e:17:6c:1e:18:7c:5e:cc:f1:07:5a:
17:7e:14:4d:0c:91:17:cb:a3:d9:9d:4a:a3:9f:07:
4e:a6:86:e0:d0:aa:c1:1e:c5:cf:4c:d3:6e:13:e6:
65:92:43:7b:24:27:52:77:82:24:e9:96:d0:9b:f2:
4d:85:75:1c:42:36:da:ab:2d:19:01:a1:7d:c6:c5:
b4:e0:3e:6d:ff:cf:cc:41:53:3e:e6:3a:e9:29:12:
62:85:fc:51:7b:ac:83:bb:6b:4b:0d:52:7a:57:d8:
57:4d:17:8c:04:49:df:73:e3:43:4d:ba:5c:5b:20:
72:4e:48:f7:d8:16:bd:4f:ba:22:65:bd:00:d3:55:
c6:ab:19:7a:43:07:69:16:9d:ac:27:ff:ea:da:ae:
cc:88:ba:b7:ac:b2:fa:85:ac:62:47:73:98:cb:89:
b8:8d:d6:f5:ca:6b:bb:e3:26:70:ce:96:2a:0f:e0:
93:0d:e0:a2:09:6d:c4:31:db:d1:3b:8b:d5:db:cf:
65:2b:56:a0:96:dc:7c:5d:3a:15:07:70:49:62:d9:
94:34:9b:d1:a1:53:75:da:16:ef:6c:f2:7f:33:69:
71:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:01:ED:41:01:26:EF:0B:A3:51:0A:0B:7B:78:EB:41:78:B8:FF:48
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OAHtQQEm7wujUQoLe3jrQXi4_0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.152.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:d3:49:74:65:35:9b:ac:44:e8:10:2c:ea:a6:1d:41:6c:5c:
2c:49:bc:24:01:5f:9a:5a:a2:bb:ff:bc:5a:1f:04:fd:fa:f6:
2b:01:62:b4:94:cb:c4:2b:ea:86:4f:9f:c1:e2:88:8d:c8:6b:
0d:b6:5d:dd:2e:8b:47:e5:cc:03:88:de:60:ad:2f:13:7c:80:
89:04:91:47:a1:61:7c:7c:91:29:64:4e:39:2a:01:26:9c:4c:
00:0b:d8:a9:aa:82:21:62:ec:3f:f4:fc:37:eb:0d:87:f2:f6:
59:91:08:88:d1:fb:19:05:90:81:42:1b:86:0d:21:f5:4c:bb:
e9:8f:35:a3:e4:26:1c:2f:41:ef:2e:96:8d:f9:b3:7c:0e:98:
35:03:d0:a8:68:ba:b4:e8:5b:73:54:7f:00:a9:2e:2f:19:91:
f2:b8:d9:e7:37:18:d9:d1:b7:d1:02:24:20:12:37:3b:e3:00:
75:f8:27:ee:c1:a7:0e:76:2f:24:df:43:e1:07:ac:0a:b0:5f:
ed:1e:19:d3:49:9f:e2:a2:05:44:9a:fe:eb:65:ce:29:be:77:
3c:65:d2:07:f5:fb:aa:87:7f:95:1d:ec:59:87:e7:0a:66:2b:
6b:ec:5b:60:9c:73:02:f1:e9:3f:39:4e:60:4d:e4:3f:53:b6:
0c:43:4f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 15:54:04 2024 by rpki-client on console-fra.rpki-client.org