Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/o_dnWalkELyhBV4Q2t3xfXKWIGo.roa
File: o_dnWalkELyhBV4Q2t3xfXKWIGo.roa (raw, json)
Hash identifier: 0uLEEgrrZIyQ+wcvplJJMXRGYBp10G6gf7uWLR22YCU=
Subject key identifier: A3:F7:67:59:A9:64:10:BC:A1:05:5E:10:DA:DD:F1:7D:72:96:20:6A
Certificate issuer: /CN=c19b5a2c49e1c648a70c708ae1bde40b644c7802
Certificate serial: 018CC500ECD8AB4B964AF600B0031C284A4E
Authority key identifier: C1:9B:5A:2C:49:E1:C6:48:A7:0C:70:8A:E1:BD:E4:0B:64:4C:78:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wZtaLEnhxkinDHCK4b3kC2RMeAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/o_dnWalkELyhBV4Q2t3xfXKWIGo.roa
Signing time: Mon 01 Jan 2024 12:30:21 +0000
ROA not before: Mon 01 Jan 2024 12:30:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42148
IP address blocks: 185.150.152.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 26 Mar 2024 09:50:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:ec:d8:ab:4b:96:4a:f6:00:b0:03:1c:28:4a:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c19b5a2c49e1c648a70c708ae1bde40b644c7802
Validity
Not Before: Jan 1 12:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3f76759a96410bca1055e10daddf17d7296206a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:57:fd:c4:85:fa:68:79:14:15:70:98:ae:dd:
e5:d4:78:8f:a9:80:0d:f3:ad:c6:f9:55:11:9b:3b:
1a:8a:3d:f4:33:29:b9:8d:a8:aa:c5:29:a9:fc:3f:
41:4a:50:9b:97:ca:15:d3:7d:07:a8:3e:b3:47:fe:
75:50:76:b0:f7:8b:f7:07:e8:c6:22:cd:76:0a:b3:
3a:12:73:a7:3d:77:58:37:00:4b:71:e9:17:3c:71:
f3:ab:0a:ea:01:9c:51:bf:6f:d8:61:a0:10:e5:9d:
7a:95:30:a5:f1:7c:42:10:5a:1e:4f:67:33:41:15:
81:9b:2e:cf:63:f6:00:dc:41:79:2d:42:7d:c2:1e:
53:c6:f4:63:40:bc:31:d8:e4:74:6a:74:7d:3e:d2:
d0:c8:f6:b4:3c:23:ea:7c:f1:f3:39:5b:d0:c6:6d:
78:90:c4:1f:f6:2c:84:e8:41:d2:6b:58:53:55:35:
ff:42:1f:78:fe:16:9a:93:13:88:83:42:b7:34:01:
e8:02:c6:2b:cf:a5:a1:fd:fe:53:84:22:b4:44:eb:
f6:ae:79:5b:34:8a:c2:e0:ae:00:59:e8:9b:8d:b4:
96:0b:8f:5c:b4:4e:94:ce:49:08:5f:6e:f8:63:de:
8f:d0:e7:4c:fd:0b:d4:c6:ff:7d:9e:02:8d:e1:e5:
4f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F7:67:59:A9:64:10:BC:A1:05:5E:10:DA:DD:F1:7D:72:96:20:6A
X509v3 Authority Key Identifier:
keyid:C1:9B:5A:2C:49:E1:C6:48:A7:0C:70:8A:E1:BD:E4:0B:64:4C:78:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wZtaLEnhxkinDHCK4b3kC2RMeAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/o_dnWalkELyhBV4Q2t3xfXKWIGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/wZtaLEnhxkinDHCK4b3kC2RMeAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.152.0/22
Signature Algorithm: sha256WithRSAEncryption
66:bd:d1:19:80:fc:51:24:a6:77:ae:55:ac:e6:61:53:7a:cf:
bc:49:57:cd:40:0a:19:b1:1d:b3:14:1f:d0:95:f3:6a:91:f9:
62:c8:44:27:3e:5f:4a:aa:49:27:c6:54:18:7b:40:e9:bc:bb:
fe:ba:a8:b1:84:1e:cd:1e:6f:ae:cd:f2:fa:9d:17:f5:10:75:
cd:d0:8d:38:8a:ae:86:07:ca:df:0e:71:75:b5:36:c4:62:2d:
ba:4a:49:f5:a1:26:50:ca:ba:93:40:49:0b:a6:fa:46:68:7b:
ce:72:29:9b:a8:b1:b4:ea:75:22:c7:60:8a:be:90:f9:5e:ad:
eb:da:28:30:f8:b7:f8:46:f0:ce:9d:e3:98:00:4a:09:01:54:
1e:6d:cf:9a:39:9f:2c:35:b3:58:88:f7:9b:a5:a4:ac:27:d4:
e1:0d:63:44:a4:63:b8:24:93:14:b0:91:a5:53:a1:28:50:cc:
b0:ab:41:d3:74:ba:78:fa:1d:e5:f4:9a:e2:bd:2e:15:01:dc:
a9:72:ff:9d:9b:78:5a:55:86:dd:ad:47:0b:14:94:15:4f:b5:
e7:7a:f9:e8:92:99:67:13:38:cf:58:25:34:9d:56:62:c3:bc:
0c:c5:fa:ec:89:0a:85:41:06:df:69:b7:fa:94:de:7e:9b:78:
5a:f9:28:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:19 2024 by rpki-client on console-ams.rpki-client.org