Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/ObqHyEPxKdA4RbpWY2iaeWoTR4A.roa
File: ObqHyEPxKdA4RbpWY2iaeWoTR4A.roa (raw, json)
Hash identifier: o2Ah+4Odz/nN+dfEw+yLVpAxexVORSSyXEsapblfzRQ=
Subject key identifier: 39:BA:87:C8:43:F1:29:D0:38:45:BA:56:63:68:9A:79:6A:13:47:80
Certificate issuer: /CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Certificate serial: 018CC493978A54B0FD0377452D65D61F5359
Authority key identifier: 12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/ObqHyEPxKdA4RbpWY2iaeWoTR4A.roa
Signing time: Mon 01 Jan 2024 10:30:56 +0000
ROA not before: Mon 01 Jan 2024 10:30:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61414
IP address blocks: 185.243.40.0/24 maxlen: 24
185.243.41.0/24 maxlen: 24
193.3.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 06:38:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:97:8a:54:b0:fd:03:77:45:2d:65:d6:1f:53:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Validity
Not Before: Jan 1 10:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39ba87c843f129d03845ba5663689a796a134780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e9:78:e9:65:74:42:8f:cd:2a:97:49:ae:18:
8d:e3:43:bf:cd:a3:7d:77:1e:52:67:ca:8d:6a:80:
76:85:be:3c:b9:48:ce:08:1e:7f:13:dd:d4:ac:3f:
11:34:31:81:dc:83:91:c8:39:3f:5a:c5:d9:d9:0a:
d2:b8:ed:b6:12:35:8b:89:83:3c:7f:24:0e:2c:9a:
3e:e5:62:a1:c2:e1:94:71:7a:45:df:4c:8d:db:62:
c9:ad:14:35:3d:9b:66:93:22:e3:25:9b:32:62:d1:
f2:db:ae:ae:05:f4:e1:f1:e2:da:d6:5e:98:d1:24:
d6:aa:d8:ea:1f:e1:c9:a7:c4:2f:7a:ab:e0:a1:5e:
73:90:13:c9:05:2e:51:d5:9a:9f:ed:d9:77:a2:e2:
60:a0:d8:35:12:f8:d4:e2:8d:95:d5:16:f6:46:d6:
77:ec:68:aa:96:07:a5:b9:61:dd:fe:96:18:cc:14:
9f:0a:eb:6f:40:06:66:04:69:e6:13:57:9c:52:0b:
7f:14:5b:f1:b1:f3:41:a5:b2:e6:4b:26:cf:15:70:
f4:0c:17:af:d4:e5:32:3d:37:df:a8:b0:90:49:e4:
27:04:21:7c:e5:80:ee:21:78:57:35:f9:59:ff:b1:
2b:ee:9b:ca:38:53:db:26:40:d3:62:b3:33:8f:f7:
3d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:BA:87:C8:43:F1:29:D0:38:45:BA:56:63:68:9A:79:6A:13:47:80
X509v3 Authority Key Identifier:
keyid:12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/ObqHyEPxKdA4RbpWY2iaeWoTR4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/EiDdK5LaKExjzsRvb2pBwBOpyIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.40.0/23
193.3.191.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:5b:38:69:46:55:d0:4a:e9:e6:2f:0e:e2:d6:7e:73:16:9d:
54:de:4d:d7:a6:37:13:08:92:46:f2:6c:e3:f8:b5:af:6b:71:
f3:5f:70:6c:02:e0:9d:c8:cf:d7:f2:1e:1b:83:22:20:ab:05:
2f:1a:c1:c8:ce:cc:fa:5b:3d:7c:87:5d:20:94:60:6d:f2:97:
ad:2a:95:11:75:83:43:5e:e0:15:23:8e:c9:1a:de:75:ae:72:
d4:a1:2d:58:9a:72:60:fc:62:6c:29:4c:79:da:48:df:20:2e:
e3:82:b3:f5:73:55:0a:ff:43:48:f6:7b:15:3d:17:37:ba:8b:
0d:4c:b7:f9:ec:d2:cd:f5:0e:d7:78:e4:2d:3f:43:6d:e4:24:
90:f1:4d:6b:df:f3:15:0c:01:2a:5a:37:15:c0:a3:e1:55:1c:
ef:c4:e2:e2:95:4a:bf:04:42:1f:89:ba:68:33:6b:3e:bf:eb:
69:06:12:50:1b:ea:11:ba:ce:12:2a:73:d9:0d:8a:cf:74:b5:
72:c0:9f:07:a5:65:1f:04:22:f6:4b:8c:a5:01:89:19:12:b3:
61:25:0b:44:12:c4:b3:15:4d:d5:f3:b8:df:01:58:24:e8:f7:
53:87:c3:4d:3f:02:98:dd:6c:4c:76:27:cf:09:49:d8:3a:c0:
65:dc:28:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org