Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/ovTq4RBgk9Gdho5F6KjqkFLGAlU.roa
File: ovTq4RBgk9Gdho5F6KjqkFLGAlU.roa (raw, json)
Hash identifier: 199EuIdM/h5UxGxzD414LHkFHhIfSJq6if/LsgSPeOY=
Subject key identifier: A2:F4:EA:E1:10:60:93:D1:9D:86:8E:45:E8:A8:EA:90:52:C6:02:55
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 01856C6EF9BA8967F4349707C593CB9E770E
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/ovTq4RBgk9Gdho5F6KjqkFLGAlU.roa
Signing time: Sun 01 Jan 2023 08:24:50 +0000
ROA not before: Sun 01 Jan 2023 08:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49150
IP address blocks: 93.174.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:f9:ba:89:67:f4:34:97:07:c5:93:cb:9e:77:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 08:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2f4eae1106093d19d868e45e8a8ea9052c60255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b5:bc:c0:b2:e3:a4:70:13:49:8c:45:1e:2d:
51:3c:83:23:91:49:e5:d5:ab:89:58:11:0e:27:a6:
62:8c:51:93:b2:47:5c:50:1d:1c:7e:01:65:c4:02:
22:82:c9:7b:cd:ea:96:13:94:ab:da:bc:70:45:0b:
02:eb:a9:a5:15:09:fe:2b:b3:f5:3b:22:f3:79:fe:
8d:4b:63:4e:fa:d9:02:29:d8:d7:ac:7f:9b:9e:15:
20:91:67:30:5f:b7:67:ca:7c:75:c6:a9:18:2b:61:
30:ec:37:fc:14:ca:f9:6e:3a:c2:19:9b:f5:d3:22:
20:92:eb:1c:5a:31:ee:6f:52:3b:9c:f9:9c:f6:bb:
a3:7f:6a:78:a5:b6:fc:b2:e0:9c:8f:ba:3c:4f:eb:
e1:b1:08:1c:bd:3d:c4:55:53:2f:be:97:59:31:29:
5d:be:ba:f9:94:36:55:3b:a8:d7:9e:78:75:e6:53:
44:f3:91:cc:c0:6d:44:fe:cf:de:9d:71:c4:89:08:
3c:38:22:66:70:62:41:29:29:3e:f4:c0:89:f3:83:
e2:4e:85:ae:1e:28:6c:67:b1:5a:4d:e3:51:6d:c1:
48:2c:d6:ca:6d:5a:ca:f1:30:4a:ad:df:60:16:db:
1f:0b:3d:89:7d:ff:63:9d:cd:d2:8b:f5:8f:f3:ad:
33:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F4:EA:E1:10:60:93:D1:9D:86:8E:45:E8:A8:EA:90:52:C6:02:55
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/ovTq4RBgk9Gdho5F6KjqkFLGAlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.174.161.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:62:dc:3d:92:c4:cb:9b:0c:a4:7c:55:6c:6e:66:ec:e5:11:
3d:1a:74:27:1e:4f:47:73:a5:4e:80:ab:d8:c9:04:91:be:25:
63:74:92:d5:fb:59:7b:52:64:f8:7e:47:6f:3b:3f:28:6f:71:
0e:e5:54:a4:18:12:97:94:96:8c:46:4d:7a:7b:73:e6:fb:89:
7d:e3:63:48:2f:49:11:57:74:10:f8:84:f8:b5:a9:ff:fb:b3:
2e:63:f5:77:23:c6:5f:d6:62:9d:f9:93:a2:be:e1:a9:60:6e:
14:ac:16:92:ce:20:c3:92:f0:ef:58:a0:e2:d8:31:b3:2e:ba:
00:76:8f:07:40:ab:97:57:7c:f8:e7:b0:e8:2a:cd:a4:d1:10:
f2:47:b9:bb:95:11:2c:01:91:fb:5b:b9:d5:34:24:c9:29:ff:
a7:67:53:6e:26:88:f2:a9:5b:e7:c6:2a:dc:24:1f:dc:61:5c:
4a:c5:60:43:85:eb:70:b3:6b:d5:0b:e7:10:6e:d7:0a:f1:06:
62:95:1f:34:2c:a5:42:17:74:e3:44:3d:68:4f:87:d3:2f:17:
f9:0d:58:f6:b4:94:2f:cc:04:ef:f9:2a:90:93:d2:d4:e3:3f:
4f:9a:94:f1:6b:b8:8d:73:56:2f:12:6f:8b:b1:54:49:a5:e9:
ff:0b:2c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:14 2024 by rpki-client on console-fra.rpki-client.org