Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/1-oa62FhKI7IewY8wIduWBzvxICk.roa
File: 1-oa62FhKI7IewY8wIduWBzvxICk.roa (raw, json)
Hash identifier: jNJQ0/UKYr4X6eB37UAC08qkYSMzIX6oVupVGvtz5LY=
Subject key identifier: FA:86:BA:D8:58:4A:23:B2:1E:C1:8F:30:21:DB:96:07:3B:F1:20:29
Certificate issuer: /CN=69042c1f27a7d7862475087023dc97c3330f73c6
Certificate serial: 01856E1D3C26CC1191063410C0602DB6A137
Authority key identifier: 69:04:2C:1F:27:A7:D7:86:24:75:08:70:23:DC:97:C3:33:0F:73:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQQsHyen14YkdQhwI9yXwzMPc8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/1-oa62FhKI7IewY8wIduWBzvxICk.roa
Signing time: Sun 01 Jan 2023 16:14:47 +0000
ROA not before: Sun 01 Jan 2023 16:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3176
IP address blocks: 185.104.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:1d:3c:26:cc:11:91:06:34:10:c0:60:2d:b6:a1:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69042c1f27a7d7862475087023dc97c3330f73c6
Validity
Not Before: Jan 1 16:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa86bad8584a23b21ec18f3021db96073bf12029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:70:03:85:99:c4:2e:a4:6d:1d:d6:6e:2b:e3:
ee:11:39:eb:4f:a1:a8:ab:00:94:81:33:f4:98:71:
fd:d1:d2:e0:76:9a:df:00:62:09:94:38:4f:92:46:
fe:5c:ae:69:40:58:42:ea:7f:14:a0:f4:1a:2c:fe:
07:49:2a:52:85:62:db:74:aa:97:75:5f:ae:49:d1:
cb:be:5e:5f:33:4c:0a:04:a0:5a:e4:58:40:ea:89:
bf:eb:85:c9:cb:7a:ea:29:5d:b0:68:9b:05:80:b5:
2e:ae:6e:90:31:5c:5f:4d:07:e6:87:9f:45:f3:29:
0f:64:0e:00:c2:3b:d0:5f:5a:21:64:52:f4:73:5e:
17:25:79:19:23:47:55:90:ea:ac:57:df:cb:27:1c:
f3:f0:d6:03:72:20:aa:65:b1:c4:e1:56:48:2c:44:
a3:4d:4d:05:95:39:8c:c6:78:62:bd:bf:e4:c3:f5:
95:ab:89:97:0c:12:47:57:5d:0b:5e:d8:7f:85:99:
13:e4:2d:5c:b5:94:79:df:43:a6:2c:6e:c2:2a:b0:
bc:c1:fd:68:bb:08:e0:2e:3b:33:68:b6:ba:d3:9b:
03:78:65:77:31:c7:34:7d:c5:30:ae:12:7e:30:79:
32:6e:88:70:12:2f:53:35:4d:01:12:9a:a1:8f:30:
c5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:86:BA:D8:58:4A:23:B2:1E:C1:8F:30:21:DB:96:07:3B:F1:20:29
X509v3 Authority Key Identifier:
keyid:69:04:2C:1F:27:A7:D7:86:24:75:08:70:23:DC:97:C3:33:0F:73:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQQsHyen14YkdQhwI9yXwzMPc8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/1-oa62FhKI7IewY8wIduWBzvxICk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4ae64b-f73e-408c-b4a8-cbb3d635d82f/1/aQQsHyen14YkdQhwI9yXwzMPc8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.69.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:0a:49:38:9a:c3:77:54:79:a3:6f:dc:6a:9d:23:18:d3:f3:
c5:02:38:d9:c5:a6:37:1d:bd:85:c9:22:89:fa:06:13:ef:58:
b4:39:2b:51:5a:d8:fa:47:a1:12:3c:aa:df:22:fb:a7:ba:2a:
f0:c4:62:74:de:ed:50:f2:c8:e3:77:d5:24:36:7a:97:4a:ed:
4d:8d:10:d7:a3:e6:71:96:b6:f3:33:d0:2b:d0:08:01:d6:f7:
db:f3:c7:95:2a:bf:66:ad:5e:05:86:41:ba:90:68:12:e7:52:
2f:fd:a2:84:43:f5:d8:18:26:0c:8f:34:dc:c7:fe:02:fb:5b:
ee:6e:dd:4c:47:47:2b:c6:53:04:05:bd:f7:b4:f3:84:d3:2f:
47:69:f5:df:6d:fe:b3:6d:6d:f6:b8:9c:c9:49:35:d1:bd:ef:
94:22:f5:51:a1:4e:21:2b:94:ec:8a:60:1f:ae:24:44:6f:35:
21:cb:99:af:69:85:00:b0:1b:ca:b4:42:1e:7b:a2:d3:37:8a:
94:be:d3:71:7a:10:f3:10:60:5f:18:08:bd:56:c0:fb:43:45:
9e:19:17:9b:dc:0f:69:c8:6d:ec:f1:54:cf:8f:14:a8:8e:eb:
4c:c4:a2:38:6f:06:13:97:c0:67:fc:a4:4c:a4:ce:7f:95:df:
ac:08:fd:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:27 2024 by rpki-client on console-fra.rpki-client.org