Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/OeNh1PT6-RQr11H6gFw2Z6DSCOU.roa
File: OeNh1PT6-RQr11H6gFw2Z6DSCOU.roa (raw, json)
Hash identifier: CAAPC3vDf0NKbGAQ3P+tggWA2ET+46H3rXoWTmE4m4E=
Subject key identifier: 39:E3:61:D4:F4:FA:F9:14:2B:D7:51:FA:80:5C:36:67:A0:D2:08:E5
Certificate issuer: /CN=7938dfb9eb924079bb706cb616eda572864a9e13
Certificate serial: 01856BAEBDF2BE08AD034F6D122EF777F8A3
Authority key identifier: 79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/OeNh1PT6-RQr11H6gFw2Z6DSCOU.roa
Signing time: Sun 01 Jan 2023 04:54:51 +0000
ROA not before: Sun 01 Jan 2023 04:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60786
IP address blocks: 185.51.42.0/24 maxlen: 24
185.51.43.0/24 maxlen: 24
2a04:c147:8000::/34 maxlen: 34
2a04:c147:c000::/34 maxlen: 34
2a04:c147:4000::/34 maxlen: 34
2a04:c147::/34 maxlen: 34
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:bd:f2:be:08:ad:03:4f:6d:12:2e:f7:77:f8:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7938dfb9eb924079bb706cb616eda572864a9e13
Validity
Not Before: Jan 1 04:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39e361d4f4faf9142bd751fa805c3667a0d208e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ff:61:ff:d6:c5:4a:e9:b2:87:00:56:25:23:
7c:df:d8:f6:8d:67:34:d5:c3:6f:c7:51:68:f3:19:
89:d6:41:ae:54:28:f3:7a:32:40:cf:d9:9c:b2:2e:
37:85:2d:a0:b8:a6:4b:1a:6b:05:af:d7:7f:b6:cd:
fa:34:33:fc:dc:2f:87:38:f5:c4:98:de:c8:1c:00:
fb:b9:16:a6:0e:36:ba:ef:e0:4d:48:ea:a1:27:d6:
24:87:a3:39:83:a7:21:e9:a4:ad:d3:34:e4:8a:b1:
fe:2a:2e:ff:6a:ca:79:aa:07:75:d1:65:89:e1:20:
41:f9:75:89:64:2d:f7:6d:d0:63:a7:63:0c:67:f8:
e0:dd:03:14:81:c9:fd:7e:45:30:b2:e7:4e:e8:d7:
56:42:91:ce:4f:21:66:a9:6b:03:26:45:fd:98:c7:
99:07:16:89:c4:60:c8:90:10:d9:13:2a:bd:9d:c5:
30:7b:de:b5:83:d3:60:88:d0:61:44:d5:39:4b:02:
f8:fa:2a:73:ff:f7:2c:89:ac:fe:a3:06:ae:de:fe:
b8:53:aa:ec:b9:ba:98:d0:09:4a:c0:83:3b:c2:81:
c8:37:e0:84:09:7e:23:1f:ac:27:24:5d:ee:6f:31:
31:a6:6a:19:03:95:62:bf:51:bf:53:92:bc:79:0e:
35:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E3:61:D4:F4:FA:F9:14:2B:D7:51:FA:80:5C:36:67:A0:D2:08:E5
X509v3 Authority Key Identifier:
keyid:79:38:DF:B9:EB:92:40:79:BB:70:6C:B6:16:ED:A5:72:86:4A:9E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eTjfueuSQHm7cGy2Fu2lcoZKnhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/OeNh1PT6-RQr11H6gFw2Z6DSCOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f53ee-fb00-4df4-9764-06da2bb06071/1/eTjfueuSQHm7cGy2Fu2lcoZKnhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.42.0/23
IPv6:
2a04:c147::/32
Signature Algorithm: sha256WithRSAEncryption
45:7f:85:ee:60:bf:0a:f6:4c:3c:e7:b4:68:8c:1e:8f:18:98:
39:15:ba:f9:15:57:5e:f5:4b:e6:2c:98:0e:c2:9c:e5:de:47:
dc:87:f8:88:e8:c1:aa:1d:c2:93:11:e3:72:e8:db:15:39:fd:
09:14:23:dc:09:c9:79:3b:ce:b6:70:f1:c0:f5:6b:7e:ea:a3:
f5:4a:23:28:c6:de:82:9d:c9:16:b3:66:86:07:90:54:31:ea:
2e:67:d0:e4:82:6f:06:87:84:a8:a5:2e:c5:5b:ef:a9:ff:da:
a9:d7:f1:45:d6:a1:01:a3:92:a8:a8:6e:91:5a:83:15:d0:ea:
98:cf:e9:bf:6f:2f:d2:73:7b:e4:e6:9d:86:5c:59:84:d8:ef:
57:b1:d5:2e:91:4b:64:9a:28:ac:44:2a:5f:ad:86:6d:0f:92:
f1:91:e3:f3:f0:99:d5:46:6d:ff:8b:a0:a3:83:27:ad:07:c5:
e0:aa:87:fa:05:4b:e8:32:20:01:a5:19:85:08:a2:57:cd:93:
09:cb:35:60:89:a6:34:d2:3a:51:ca:a0:d6:00:d4:ae:a7:35:
ae:e5:e2:d8:4a:ac:b0:c2:bd:27:d3:1a:34:c1:0f:9b:73:f1:
0a:e2:95:c6:33:60:86:8c:ce:66:fb:23:b0:d1:6d:4d:3b:33:
e2:3a:53:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:29 2024 by rpki-client on console-fra.rpki-client.org