Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/e20c95-0f92-4598-96df-cbc2797c1d0a/1/osVjqPeWUNY1jMAuskvVfZOBebA.roa
File: osVjqPeWUNY1jMAuskvVfZOBebA.roa (raw, json)
Hash identifier: wBKHRIvxEZEsEHE7wP+QljfhOza2IRaIlikz7vEkfnk=
Subject key identifier: A2:C5:63:A8:F7:96:50:D6:35:8C:C0:2E:B2:4B:D5:7D:93:81:79:B0
Certificate issuer: /CN=98901c7cffd19a4fea78f79b1004999266dcc224
Certificate serial: 0190259A196642EA83577F95CA76FC7158A8
Authority key identifier: 98:90:1C:7C:FF:D1:9A:4F:EA:78:F7:9B:10:04:99:92:66:DC:C2:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mJAcfP_Rmk_qePebEASZkmbcwiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/e20c95-0f92-4598-96df-cbc2797c1d0a/1/osVjqPeWUNY1jMAuskvVfZOBebA.roa
Signing time: Mon 17 Jun 2024 09:49:34 +0000
ROA not before: Mon 17 Jun 2024 09:49:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29550
IP address blocks: 185.43.232.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 20 Jun 2024 12:33:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:25:9a:19:66:42:ea:83:57:7f:95:ca:76:fc:71:58:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98901c7cffd19a4fea78f79b1004999266dcc224
Validity
Not Before: Jun 17 09:49:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2c563a8f79650d6358cc02eb24bd57d938179b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:13:9a:f2:f0:60:13:4f:fc:7e:f8:6e:aa:aa:
bd:7c:33:0f:bb:4d:50:df:d6:65:71:7a:91:ae:14:
42:4a:d7:23:35:cb:b1:00:75:a5:f8:23:cc:57:7e:
be:bb:1c:ca:d9:e9:82:e4:a7:1b:fc:af:f8:4a:3c:
9c:33:ba:22:1a:7d:3f:b5:06:3f:4b:46:0c:9c:13:
7f:32:e6:3e:d9:f7:e8:16:ce:d5:34:1c:24:86:58:
4a:2d:ae:15:ae:23:eb:10:01:b5:85:6d:a8:4b:79:
33:02:28:3b:f6:db:de:ff:d2:44:60:74:43:2f:91:
63:48:1a:82:2b:23:d9:3e:98:5b:6f:91:a3:00:fc:
ba:c6:2d:7f:31:20:15:dd:50:4b:50:0b:25:e8:11:
16:60:e4:49:9a:9f:6e:0e:08:85:83:f2:90:8e:34:
a9:b4:4b:bc:10:63:04:86:25:ba:b7:0a:e0:b6:f4:
aa:90:fc:2c:77:b1:a8:a5:33:7c:e2:53:74:be:72:
5d:b9:96:20:0c:2c:af:4c:bb:26:e5:c4:0c:79:63:
30:a1:04:2e:0b:6b:cf:63:c5:68:03:fb:90:8f:45:
9a:53:85:e1:70:d8:30:c9:cc:e3:60:a0:8d:ef:97:
e5:b6:55:01:fd:1a:b1:b9:f8:b2:ce:d0:77:7f:ef:
69:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C5:63:A8:F7:96:50:D6:35:8C:C0:2E:B2:4B:D5:7D:93:81:79:B0
X509v3 Authority Key Identifier:
keyid:98:90:1C:7C:FF:D1:9A:4F:EA:78:F7:9B:10:04:99:92:66:DC:C2:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mJAcfP_Rmk_qePebEASZkmbcwiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/e20c95-0f92-4598-96df-cbc2797c1d0a/1/osVjqPeWUNY1jMAuskvVfZOBebA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/e20c95-0f92-4598-96df-cbc2797c1d0a/1/mJAcfP_Rmk_qePebEASZkmbcwiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.232.0/22
Signature Algorithm: sha256WithRSAEncryption
70:c1:97:b9:c4:70:fb:09:03:6c:1e:61:f7:ee:79:5d:5f:fd:
f2:d2:d2:36:0c:8f:19:32:75:64:df:2b:57:c6:c7:85:fd:ff:
89:a5:82:5d:dd:1d:ba:a6:e4:1d:ec:e5:d4:24:73:42:9b:e0:
f2:b2:3f:33:35:99:9d:14:dc:87:ac:b4:b4:a3:8f:5d:bb:d5:
45:84:b2:38:40:47:12:65:a1:9a:55:76:c8:0f:aa:47:79:a2:
1d:42:1d:37:a5:1a:eb:79:51:87:7f:4c:b2:54:24:e5:63:c3:
cb:d2:b0:f0:8b:27:ea:ff:ed:a7:4b:bc:6d:2a:f6:02:e1:f7:
48:21:20:1f:77:1e:f5:be:91:7c:5a:05:b0:77:99:6a:c5:e8:
57:c5:6f:33:67:35:f7:14:93:4d:e4:85:e4:c3:93:91:ca:1d:
89:d7:49:5c:a6:d8:5d:0b:f1:a2:9a:d2:d3:1e:3e:c6:dc:58:
98:44:43:6f:75:f7:97:3b:9f:51:d9:1e:8a:1f:8a:e4:10:82:
16:17:6b:0e:73:be:d8:2d:5a:b4:ff:95:11:25:a3:86:65:ac:
f1:74:da:b5:4a:d5:e0:11:b3:ca:14:bc:93:b3:e6:4a:46:55:
17:29:09:bb:35:b7:20:f3:0a:61:4f:ab:34:8d:33:f5:62:e7:
18:97:bf:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 14:44:48 2024 by rpki-client on console-fra.rpki-client.org