Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/O5l-6nQA0JTMAkALXV97tx6IzqM.roa
File: O5l-6nQA0JTMAkALXV97tx6IzqM.roa (raw, json)
Hash identifier: 3e24Q0zMgf6V0WWVw4r0iM6lzWmXIJJYPoq2qmTMNdM=
Subject key identifier: 3B:99:7E:EA:74:00:D0:94:CC:02:40:0B:5D:5F:7B:B7:1E:88:CE:A3
Certificate issuer: /CN=a316c7659af1d56bc718faf614f092758f5edc7f
Certificate serial: 01856EEFDF84E8A8CE6AF7E4236D62E9B6FE
Authority key identifier: A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/O5l-6nQA0JTMAkALXV97tx6IzqM.roa
Signing time: Sun 01 Jan 2023 20:04:52 +0000
ROA not before: Sun 01 Jan 2023 20:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.221.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:df:84:e8:a8:ce:6a:f7:e4:23:6d:62:e9:b6:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a316c7659af1d56bc718faf614f092758f5edc7f
Validity
Not Before: Jan 1 20:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b997eea7400d094cc02400b5d5f7bb71e88cea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c0:24:92:aa:9d:69:aa:cd:e0:0b:03:03:b0:
ea:5e:60:ea:7d:b5:a6:8c:86:af:9a:6e:d4:1c:e9:
eb:0a:3c:20:e9:b3:dd:a1:57:19:20:82:5d:2f:38:
b0:55:70:f0:a0:19:87:2b:f2:3b:df:04:28:21:48:
5c:6a:d7:4c:7a:ad:63:2c:43:97:3d:2a:0c:8f:19:
71:0d:be:65:60:19:c9:3f:82:c6:26:14:1f:b1:d0:
9f:61:b8:21:bc:54:01:21:fe:7b:6a:e0:7f:9a:94:
e8:84:85:cb:c0:6b:6c:90:84:7a:ef:74:5b:71:0f:
89:5c:ea:8b:a4:fa:28:90:9a:18:ad:e8:b6:70:55:
84:df:30:25:51:db:9b:3d:f6:49:72:b4:92:ce:ad:
d9:1f:15:2c:61:ee:78:58:eb:f4:a9:55:a8:d0:78:
cf:21:47:4a:7c:ee:d2:4a:6c:c1:c3:d4:e3:bd:12:
fd:2a:dd:97:da:78:ce:1b:94:58:a4:52:a5:c6:f8:
bf:59:f0:0d:aa:92:9c:b9:e7:2c:fa:7e:e3:77:6e:
33:a2:64:c3:68:ad:9e:1e:27:29:67:af:42:b2:4f:
1d:5b:26:1c:2b:af:5c:4c:ea:9b:4f:ae:62:aa:92:
ba:d9:78:90:36:1d:c5:7e:d7:d5:c7:f5:2b:98:e9:
36:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:99:7E:EA:74:00:D0:94:CC:02:40:0B:5D:5F:7B:B7:1E:88:CE:A3
X509v3 Authority Key Identifier:
keyid:A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/O5l-6nQA0JTMAkALXV97tx6IzqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.84.0/24
Signature Algorithm: sha256WithRSAEncryption
20:bd:41:22:8e:05:51:fb:36:e0:07:1b:7f:57:39:64:f4:5d:
0e:b6:fe:58:59:27:23:92:6b:55:85:85:0c:b3:67:55:51:15:
87:00:e8:b3:45:7f:eb:7b:89:0b:dd:a9:7a:f5:70:6e:bd:2b:
5b:79:07:05:d7:28:fa:c5:02:6d:0a:0f:90:97:31:71:54:f7:
5f:e2:88:41:9d:27:0e:69:50:78:1c:f7:d7:a7:ce:81:82:1e:
8b:04:2a:c7:d6:d0:36:81:37:ac:93:a1:6d:60:56:2d:26:1c:
6f:dc:8d:ab:d7:e9:11:90:93:51:f3:38:04:d4:e8:a7:c0:bd:
15:e3:7b:2a:1e:49:c6:bf:90:03:34:53:08:87:91:b4:d0:06:
96:bd:ab:ee:2c:8e:6a:c8:df:52:11:2e:7a:46:b6:e1:ef:72:
4c:28:1e:da:2c:8c:31:4b:b1:62:ba:bd:d8:c0:2a:61:09:d3:
0e:cd:78:9d:44:26:44:cf:5b:3e:f7:4a:ad:7f:a2:49:4f:09:
42:1b:bb:3f:00:d8:a6:7e:e4:72:2c:93:89:c1:3d:6a:4b:28:
16:30:49:1c:6e:d7:6a:d8:7f:a2:9b:99:2a:d1:08:17:bf:23:
12:76:75:2e:af:ef:4f:65:93:a8:81:5a:f1:d3:6f:31:a2:55:
50:e0:d3:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:06 2024 by rpki-client on console-fra.rpki-client.org