Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/D0G24BQ6lkdvUEsd3nflAq3ReYw.roa
File: D0G24BQ6lkdvUEsd3nflAq3ReYw.roa (raw, json)
Hash identifier: mogs5rsj4H3kdn7q/+4qaWREmErqEmTapuuWW4anSjE=
Subject key identifier: 0F:41:B6:E0:14:3A:96:47:6F:50:4B:1D:DE:77:E5:02:AD:D1:79:8C
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 0187B9D33CFEEA7106A6C05DFBD449B8D668
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/D0G24BQ6lkdvUEsd3nflAq3ReYw.roa
Signing time: Tue 25 Apr 2023 19:10:41 +0000
ROA not before: Tue 25 Apr 2023 19:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.189.35.0/24 maxlen: 24
147.161.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 May 2023 14:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b9:d3:3c:fe:ea:71:06:a6:c0:5d:fb:d4:49:b8:d6:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Apr 25 19:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f41b6e0143a96476f504b1dde77e502add1798c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9f:9c:b8:32:74:4a:dc:e6:1c:af:1a:c1:c3:
75:c6:10:26:47:60:f1:ee:5d:b1:3d:9d:de:90:5b:
9c:b9:ab:0f:0d:67:bd:02:78:15:5d:8a:09:ba:f1:
a3:a4:83:9b:67:6d:b6:73:2e:94:c1:60:cc:d4:d0:
79:eb:c5:d6:fa:2f:f7:a1:15:3c:7d:67:29:a7:8c:
43:96:71:1a:54:b8:04:fe:47:85:88:04:25:1b:0b:
18:b2:93:37:f1:40:be:e5:46:cc:34:91:c4:f9:22:
19:2d:0d:5d:86:67:fc:11:40:e7:2e:6e:6b:96:22:
56:ed:bd:0a:8a:24:ff:26:d8:82:2f:e0:2d:e7:f6:
71:4b:35:32:3b:e9:7d:3b:75:8d:71:99:45:4f:c9:
a6:b5:1a:9f:8b:df:3e:f4:41:d3:05:f6:79:de:ed:
9c:1e:8c:61:96:c1:41:8c:cb:b9:55:69:e7:64:87:
4e:56:b4:d3:0d:45:62:5c:f8:50:6c:c4:40:82:14:
ed:f9:9a:81:fa:8e:38:36:04:90:8b:2d:12:ba:f9:
24:25:e0:f8:cf:af:09:5a:f4:b2:e8:43:b2:84:f6:
05:14:35:10:3b:37:51:21:4a:df:bb:0a:17:63:d8:
53:07:a5:77:3a:9e:f5:a1:c6:15:dd:4b:11:a1:ac:
fd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:41:B6:E0:14:3A:96:47:6F:50:4B:1D:DE:77:E5:02:AD:D1:79:8C
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/D0G24BQ6lkdvUEsd3nflAq3ReYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.3.0/24
185.189.35.0/24
Signature Algorithm: sha256WithRSAEncryption
44:87:9c:73:dc:b3:02:2c:95:d7:7e:1b:9f:47:3c:58:87:21:
25:b7:0d:07:60:22:40:64:30:32:f3:f1:c2:36:aa:a6:d8:0c:
33:38:d7:e7:e9:2e:86:6b:54:58:31:5b:b1:9c:43:60:d2:5d:
eb:92:49:89:dd:db:22:85:6e:95:fe:37:82:d9:34:cc:25:60:
53:33:6f:0f:e5:09:10:46:ad:d7:cc:09:6d:1f:ba:fc:a6:10:
56:f4:3d:7f:4d:07:12:70:79:46:73:c3:57:54:78:14:01:42:
a0:ae:18:4e:4d:aa:78:c4:d5:3a:50:71:c1:c8:d9:25:d3:19:
41:f7:ce:9e:9b:e8:1e:7a:7c:45:09:b4:46:38:cd:b1:5a:5c:
ed:83:31:ba:ef:89:7d:a4:b1:1f:d2:4a:1a:dc:95:a9:7c:c6:
6a:05:07:db:58:34:63:66:b8:79:92:4b:3b:13:e5:ca:fa:10:
c8:a9:f5:42:3a:ca:cf:1b:2f:c9:77:a6:39:e2:81:25:cd:3f:
6e:e7:6f:db:7b:7c:6d:69:db:85:80:f4:88:88:8b:d9:d1:31:
bf:b8:f5:90:b8:cc:86:8e:3c:84:bd:45:41:32:75:27:ef:c6:
30:32:d5:5e:f7:10:9d:20:58:20:f1:4d:b3:f4:d5:99:06:e1:
38:25:8c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org