Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/oqxW3mvfEtjc4Xx3WSF_DIKLLMM.roa
File: oqxW3mvfEtjc4Xx3WSF_DIKLLMM.roa (raw, json)
Hash identifier: yZ0zIL7qh6cn3+r5KzuYdQSpQQ6Kmz+khajdHhUtl+I=
Subject key identifier: A2:AC:56:DE:6B:DF:12:D8:DC:E1:7C:77:59:21:7F:0C:82:8B:2C:C3
Certificate issuer: /CN=823b6f3b7af87bb8ef6dd843bebd6d81b0559213
Certificate serial: 01867481086E4053765D70FA1E46B80ED759
Authority key identifier: 82:3B:6F:3B:7A:F8:7B:B8:EF:6D:D8:43:BE:BD:6D:81:B0:55:92:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gjtvO3r4e7jvbdhDvr1tgbBVkhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/oqxW3mvfEtjc4Xx3WSF_DIKLLMM.roa
Signing time: Tue 21 Feb 2023 15:04:18 +0000
ROA not before: Tue 21 Feb 2023 15:04:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212669
IP address blocks: 185.102.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Oct 2023 08:40:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:81:08:6e:40:53:76:5d:70:fa:1e:46:b8:0e:d7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=823b6f3b7af87bb8ef6dd843bebd6d81b0559213
Validity
Not Before: Feb 21 15:04:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2ac56de6bdf12d8dce17c7759217f0c828b2cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7d:db:5d:b3:56:c0:9b:0a:a4:b9:3c:5c:78:
c5:bb:72:e7:00:e1:05:ac:5c:24:cd:fd:34:92:04:
07:c3:17:46:52:b0:0c:8a:5f:66:4c:f0:1d:39:63:
05:47:29:09:c8:2a:d1:8d:78:9b:10:b0:14:d6:15:
72:79:54:54:17:bf:63:0b:38:8c:53:69:97:e0:5c:
37:bd:4a:b7:b6:ff:c1:37:75:be:2f:06:f6:3b:4c:
8c:f0:7b:0c:5c:7a:de:16:56:66:0e:ce:63:59:6a:
69:f5:f2:b3:53:bd:ca:fa:18:7f:ab:b1:60:40:20:
32:92:b0:fc:ab:f3:53:a2:53:bf:5d:51:80:cd:0a:
9f:d5:cc:84:80:fb:df:16:c8:41:b1:66:63:ea:fd:
b4:45:20:88:96:ab:03:b6:45:0f:dc:15:74:ba:77:
a6:c8:68:1d:cc:d4:e0:f7:d4:8e:9b:d2:2e:07:67:
98:c9:06:81:aa:54:fb:d8:1e:fb:30:ee:df:9d:b6:
dd:d8:a7:6e:4b:ea:7d:02:9c:d6:d0:f8:65:73:a6:
91:ed:ff:22:af:39:41:12:a5:a3:a3:04:87:4b:f5:
0e:01:30:37:25:54:d8:64:2b:49:fd:e1:d1:5c:6e:
1e:e4:a6:e6:bd:17:a1:62:f5:4a:5c:92:66:f5:f1:
e4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AC:56:DE:6B:DF:12:D8:DC:E1:7C:77:59:21:7F:0C:82:8B:2C:C3
X509v3 Authority Key Identifier:
keyid:82:3B:6F:3B:7A:F8:7B:B8:EF:6D:D8:43:BE:BD:6D:81:B0:55:92:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gjtvO3r4e7jvbdhDvr1tgbBVkhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/oqxW3mvfEtjc4Xx3WSF_DIKLLMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c494cb-2517-41a8-a457-e710c2a14bce/1/gjtvO3r4e7jvbdhDvr1tgbBVkhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.86.0/24
Signature Algorithm: sha256WithRSAEncryption
13:f6:76:d4:c2:5c:45:3c:d5:5f:34:cb:63:32:b8:dd:18:95:
da:db:7b:6c:8c:dd:68:32:29:e9:ec:08:b7:93:b0:28:c7:ae:
fc:70:a6:69:31:80:8d:d6:ad:dc:ab:85:ff:13:bf:ac:eb:80:
11:9f:4a:e5:4a:11:7d:4d:3e:a5:24:d2:3f:64:bf:05:13:d0:
0a:43:6b:33:e4:1c:c1:3d:44:0a:35:d2:ff:cf:bb:3c:7d:a1:
85:d6:f1:95:d0:8a:14:07:21:c1:e9:4d:d6:82:0f:1c:23:a4:
89:d3:17:2d:f4:8b:29:35:a6:2e:81:5d:18:ae:15:32:6e:fa:
95:a8:31:a6:2c:8d:4a:af:ce:56:2f:72:14:e1:a8:7b:83:70:
df:22:72:9e:4f:5a:b9:f8:2e:db:4d:36:c1:ff:7a:b3:39:82:
48:c6:7e:92:e6:e8:63:57:da:60:97:f3:3f:8d:6f:b8:db:70:
14:c2:21:9a:84:81:01:26:38:97:13:20:24:81:1d:07:f7:46:
ca:78:c3:dd:ea:f0:90:56:5b:28:41:0e:bb:84:bd:85:87:37:
ff:3c:4b:18:5b:d4:e3:28:29:66:d9:b3:b7:11:ee:24:00:0e:
b3:e5:32:74:fe:43:0d:24:c6:66:f1:fa:42:f4:0d:6f:bd:6a:
a1:ba:bc:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:05 2024 by rpki-client on console-fra.rpki-client.org