Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/O5ZNeibCWq1E4QJ_RxxcgYl08yk.roa
File: O5ZNeibCWq1E4QJ_RxxcgYl08yk.roa (raw, json)
Hash identifier: 9n5t2XKpgieI0PeRFji9p4P1KYFM3VDu9D3R0I+iXDw=
Subject key identifier: 3B:96:4D:7A:26:C2:5A:AD:44:E1:02:7F:47:1C:5C:81:89:74:F3:29
Certificate issuer: /CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Certificate serial: 01863FC0D80E283B4E2003201DDD841FA680
Authority key identifier: 12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/O5ZNeibCWq1E4QJ_RxxcgYl08yk.roa
Signing time: Sat 11 Feb 2023 09:14:08 +0000
ROA not before: Sat 11 Feb 2023 09:14:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 18254
IP address blocks: 185.243.42.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3f:c0:d8:0e:28:3b:4e:20:03:20:1d:dd:84:1f:a6:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Validity
Not Before: Feb 11 09:14:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b964d7a26c25aad44e1027f471c5c818974f329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:38:ac:00:08:02:14:34:12:d7:67:65:7c:fb:
07:b1:a1:2d:da:f7:56:7a:8d:31:ab:32:6b:89:43:
97:0c:d9:e0:08:bf:1c:8c:95:d4:9c:0d:a9:e4:64:
f1:ba:b3:51:15:f8:a2:ec:1d:62:4d:a7:a1:b7:71:
bb:27:32:d7:2e:7e:3d:c7:f5:30:a8:93:bd:fa:ca:
f0:26:ce:24:8a:9d:01:b7:ef:e7:0d:10:45:41:e3:
6d:85:ff:20:21:df:55:08:e7:70:89:b7:d6:36:4a:
07:42:af:4a:29:02:ee:f5:af:fc:b8:09:75:d2:1b:
87:e3:83:7d:09:c0:36:55:e2:bd:ba:98:c7:35:e0:
0c:9b:c8:16:8a:c6:79:f4:ce:43:34:a8:6e:79:92:
d7:ca:fd:38:7a:13:ff:6d:4b:5f:20:c9:f0:3f:f4:
39:15:9a:a5:97:6b:6c:dd:45:f8:16:cc:14:a7:50:
50:b2:de:cc:d3:1c:90:19:4f:d9:ff:3b:a7:ca:a2:
55:02:32:d1:91:a1:ed:4f:4e:f7:fa:5f:94:00:a1:
dc:c2:5c:b7:5c:99:98:76:5c:fa:e6:af:3b:7e:da:
ec:33:d1:7f:78:41:e6:48:0b:0e:52:a2:3e:8e:8c:
62:72:01:99:b6:19:29:a0:08:47:a0:7c:89:fb:f1:
f2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:96:4D:7A:26:C2:5A:AD:44:E1:02:7F:47:1C:5C:81:89:74:F3:29
X509v3 Authority Key Identifier:
keyid:12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/O5ZNeibCWq1E4QJ_RxxcgYl08yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/EiDdK5LaKExjzsRvb2pBwBOpyIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.42.0/24
Signature Algorithm: sha256WithRSAEncryption
40:13:08:8f:27:50:0f:3a:14:73:04:da:84:4d:ff:42:9c:3e:
e6:5a:51:36:94:fc:28:55:dd:26:61:a6:03:4e:7c:cc:5b:e9:
f0:9f:22:5b:88:4b:4a:5a:da:48:48:86:f1:b1:45:a2:41:d4:
4a:e8:9f:fc:5a:41:8b:17:a3:2d:b4:b9:f7:2a:6c:cc:e9:7a:
9a:cc:1f:b9:17:8a:e6:4d:ff:b9:1e:a8:ab:28:4c:3b:ec:4d:
20:e3:2a:f5:2e:8c:92:6e:07:6c:34:ae:29:41:ca:cf:05:b5:
df:8b:42:40:f2:5f:05:4d:42:8e:67:90:2a:ab:b9:12:bb:75:
15:de:2c:12:67:61:85:49:c7:ce:7d:b4:10:ab:39:2a:fc:94:
8a:35:59:82:1e:22:18:bb:25:7d:c0:70:55:03:f4:5d:85:78:
c4:03:a6:29:9b:4d:15:9b:b6:53:62:da:04:7a:d3:6b:5c:04:
bc:46:b1:30:90:5d:2e:5a:ed:7c:94:67:1b:c8:d8:bf:78:7e:
68:59:da:9e:47:97:36:13:9a:5a:b2:bf:1d:fe:9d:bd:0b:b5:
e9:d7:d5:69:a4:ff:c5:ba:62:3c:ed:33:12:fe:d8:57:9b:83:
1e:99:d7:5b:98:5f:07:73:2c:11:a1:2f:9d:45:e5:f8:78:6b:
a2:b2:4f:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:35 2024 by rpki-client on console-ams.rpki-client.org