Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/Or7SiYZdXo8G_hNB-OsBtdKRFgk.roa
File: Or7SiYZdXo8G_hNB-OsBtdKRFgk.roa (raw, json)
Hash identifier: TaJfWBzLz5qEVE0He2hFks4Tw9EjdjR4O0F5a9n52Oc=
Subject key identifier: 3A:BE:D2:89:86:5D:5E:8F:06:FE:13:41:F8:EB:01:B5:D2:91:16:09
Certificate issuer: /CN=b5253c2552d4403f43b83c25e762238df12dae81
Certificate serial: 018B00190DC030B8B367E80263BB02D5B7CB
Authority key identifier: B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/Or7SiYZdXo8G_hNB-OsBtdKRFgk.roa
Signing time: Thu 05 Oct 2023 13:48:43 +0000
ROA not before: Thu 05 Oct 2023 13:48:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203419
IP address blocks: 185.135.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:00:19:0d:c0:30:b8:b3:67:e8:02:63:bb:02:d5:b7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5253c2552d4403f43b83c25e762238df12dae81
Validity
Not Before: Oct 5 13:48:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3abed289865d5e8f06fe1341f8eb01b5d2911609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9b:7f:01:45:82:21:77:f9:02:b3:5a:58:ea:
eb:23:4b:ad:30:26:b7:69:77:02:7a:71:76:3a:a9:
99:d9:2f:59:38:4c:93:98:e2:5a:08:b4:34:93:e8:
28:03:1d:c9:2e:14:33:67:6b:df:fb:10:5a:3e:45:
29:13:7c:e3:5d:e9:f5:ba:74:59:58:60:7c:79:6c:
f5:8e:93:31:cd:50:cd:50:5c:52:43:64:ff:35:ec:
28:7e:1e:08:33:f7:82:0d:88:b0:e5:01:f5:6f:e5:
ae:da:b0:8a:54:99:99:c9:b2:52:2b:60:47:ed:4e:
47:83:b7:0a:0b:15:da:83:ee:53:d0:9c:e9:37:dc:
74:8c:fe:00:ed:2d:c8:9a:1c:4e:ec:ef:d5:c0:0c:
9a:96:00:e0:3b:b2:b9:66:05:09:42:b3:8c:d0:15:
8a:cd:3b:51:91:f2:2e:ff:71:ff:0f:da:9e:38:09:
4d:7e:86:14:ee:33:2c:dc:2d:24:5a:1b:7f:90:db:
97:35:81:0e:91:2b:de:1c:e8:f3:5d:ef:6e:5c:54:
49:05:fd:8b:f0:10:3e:1c:60:37:73:29:89:12:30:
2c:6f:84:57:46:e2:72:3f:b7:d8:ab:91:82:a8:fb:
5d:f7:c4:d1:8f:87:8c:71:9f:72:5b:68:05:e1:69:
fe:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BE:D2:89:86:5D:5E:8F:06:FE:13:41:F8:EB:01:B5:D2:91:16:09
X509v3 Authority Key Identifier:
keyid:B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/Or7SiYZdXo8G_hNB-OsBtdKRFgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.112.0/24
Signature Algorithm: sha256WithRSAEncryption
61:f0:04:d5:15:6d:b5:2e:4a:67:89:fb:f5:11:68:8d:be:b8:
2b:28:74:96:16:31:d7:69:9d:b3:aa:39:00:d7:a3:14:3a:13:
af:6e:86:45:b8:c4:b3:f9:aa:bb:e3:5f:ed:79:71:52:5c:a3:
25:19:54:25:f6:fb:e1:ca:75:b5:f6:e3:7e:f6:32:b4:98:a6:
f9:06:7c:8d:ec:73:6a:3a:c2:b2:78:77:41:2d:2d:b8:09:1f:
46:5e:eb:70:8b:5e:54:b1:98:59:3c:5f:f3:55:cd:b5:46:37:
15:a1:45:ad:05:a7:08:e1:b6:53:57:fa:a5:1a:9b:5b:91:21:
a4:25:67:31:a5:e4:fd:71:19:0e:4b:17:8d:54:a4:64:a1:eb:
cb:cb:60:f3:20:b2:c8:02:36:f0:00:f6:99:eb:e8:6d:3a:48:
d5:a6:1e:f4:b5:93:8e:0f:51:cb:9e:e4:63:c9:76:fc:c5:1f:
b9:22:30:66:5c:d8:0d:b0:2a:99:d3:f2:fb:77:47:7d:af:f2:
d2:d4:d6:de:bd:ce:a5:b4:4e:f1:31:dd:60:e3:48:fb:7c:df:
08:3a:73:88:bf:3e:2a:54:e0:5f:54:92:0d:09:49:52:d3:c3:
a0:47:4c:0e:70:d5:f8:b9:22:f9:b0:82:3e:db:9b:ea:fe:a6:
66:0d:b5:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:12 2024 by rpki-client on console-fra.rpki-client.org