Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/19f37b-446c-4910-9c6f-1d09c79b2540/1/9ott5-tvQLFZo5bKLrTtXCgtCXc.roa
File: 9ott5-tvQLFZo5bKLrTtXCgtCXc.roa (raw, json)
Hash identifier: VuLocmqW3XAUBeDfLR1PE1Nr0YY/lPQJja52yMOkCJs=
Subject key identifier: F6:8B:6D:E7:EB:6F:40:B1:59:A3:96:CA:2E:B4:ED:5C:28:2D:09:77
Certificate issuer: /CN=b9d9305fcbd59cda4b68f888df6020485b74e982
Certificate serial: 018CC49309CE112A77C9B53573081018CC2E
Authority key identifier: B9:D9:30:5F:CB:D5:9C:DA:4B:68:F8:88:DF:60:20:48:5B:74:E9:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/udkwX8vVnNpLaPiI32AgSFt06YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/19f37b-446c-4910-9c6f-1d09c79b2540/1/9ott5-tvQLFZo5bKLrTtXCgtCXc.roa
Signing time: Mon 01 Jan 2024 10:30:19 +0000
ROA not before: Mon 01 Jan 2024 10:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12703
IP address blocks: 185.38.104.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 09 Jan 2024 10:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:09:ce:11:2a:77:c9:b5:35:73:08:10:18:cc:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9d9305fcbd59cda4b68f888df6020485b74e982
Validity
Not Before: Jan 1 10:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f68b6de7eb6f40b159a396ca2eb4ed5c282d0977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:05:32:21:a9:33:3d:0c:ab:63:5e:4c:59:ad:
9b:e4:06:62:fb:9a:8b:98:c0:0d:ff:73:48:39:80:
4c:0f:a6:fd:a8:2f:e5:67:be:61:33:8c:87:06:b3:
f4:f0:4b:c1:47:dc:b8:bf:7b:82:8f:91:0d:cd:5e:
a2:ac:af:98:55:f3:84:da:73:a0:40:68:96:96:b4:
d3:20:81:ab:5b:e4:27:01:99:78:9b:7a:50:96:fb:
c8:ec:08:54:db:74:2a:a3:d3:bf:c0:d6:ba:a8:34:
37:52:71:61:9a:aa:5b:c1:b0:a0:f4:c1:a4:de:d6:
97:9d:57:73:8f:06:84:c2:36:61:dc:6f:06:ea:64:
c4:2c:f1:65:85:3b:52:36:27:5e:eb:cd:3b:8b:87:
86:9a:18:39:6d:f4:ee:22:58:e5:22:ac:fd:1e:b2:
40:71:c7:a2:10:b5:9d:ba:ff:9f:d4:9a:29:1a:0c:
05:6e:2e:14:df:22:5c:41:ec:9b:b4:7b:99:c9:13:
98:49:30:1d:92:b1:15:c6:7b:a0:42:f7:bd:f7:f9:
e4:3e:99:8f:ba:d9:0e:2d:cd:18:c8:25:a9:c7:11:
4c:eb:05:09:a2:9f:83:3f:38:49:0a:55:cf:d5:e8:
7a:a3:b8:46:d5:f4:26:2b:c5:18:60:57:01:3e:31:
66:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8B:6D:E7:EB:6F:40:B1:59:A3:96:CA:2E:B4:ED:5C:28:2D:09:77
X509v3 Authority Key Identifier:
keyid:B9:D9:30:5F:CB:D5:9C:DA:4B:68:F8:88:DF:60:20:48:5B:74:E9:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/udkwX8vVnNpLaPiI32AgSFt06YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19f37b-446c-4910-9c6f-1d09c79b2540/1/9ott5-tvQLFZo5bKLrTtXCgtCXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19f37b-446c-4910-9c6f-1d09c79b2540/1/udkwX8vVnNpLaPiI32AgSFt06YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.104.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:7a:b7:1c:7a:e5:be:70:b1:04:b6:bc:91:f0:e7:fc:54:d1:
8d:cf:80:5e:56:ac:44:f7:d1:89:74:01:f9:ba:5c:26:bc:04:
fa:27:64:fb:8e:e7:14:fd:ff:be:6c:18:e0:f1:9b:db:10:7a:
9c:5c:2f:e0:21:f3:f8:fe:b5:89:c5:7c:56:0e:90:2c:37:64:
9c:b2:59:3b:01:88:17:00:34:b8:a2:05:b5:b8:55:05:b3:a6:
e9:88:bc:ee:f4:db:77:f0:4c:77:d0:24:11:10:a5:57:6c:dd:
49:8c:5c:88:c7:c9:f8:48:75:8d:60:8a:04:8c:76:64:a6:d1:
2d:8f:5e:e4:ce:fb:73:36:7a:52:66:ca:55:ef:ab:3e:12:fb:
8e:37:90:85:24:c8:f0:d6:47:7e:0f:ac:2b:3e:24:b7:6e:24:
63:15:9f:47:ae:1d:f5:43:ce:9b:21:43:47:69:ed:12:67:26:
78:28:fe:8f:f5:87:4c:8a:05:39:1e:77:31:c3:80:40:74:cd:
a0:11:57:a3:95:e6:20:1c:31:54:17:c3:bd:3a:92:4b:a8:27:
ef:a7:db:3b:e2:67:68:46:be:d8:36:d2:ef:57:bf:96:46:ba:
d9:cb:e6:9d:3b:e0:a9:7b:8b:62:a9:6b:f4:f3:0f:04:09:c4:
ff:b9:fb:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:34 2024 by rpki-client on console-ams.rpki-client.org