Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/oEAtAouTHfTBqnmepSDZoeXhmj8.roa
File: oEAtAouTHfTBqnmepSDZoeXhmj8.roa (raw, json)
Hash identifier: 3MChsXNPlvpAIYu1pDr4rCfJNubcPs1g+wD++a2MaFk=
Subject key identifier: A0:40:2D:02:8B:93:1D:F4:C1:AA:79:9E:A5:20:D9:A1:E5:E1:9A:3F
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 01856F54AC09DA7873E8FB8FA462E590F038
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/oEAtAouTHfTBqnmepSDZoeXhmj8.roa
Signing time: Sun 01 Jan 2023 21:54:58 +0000
ROA not before: Sun 01 Jan 2023 21:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39164
IP address blocks: 185.222.210.0/24 maxlen: 24
2a10:8180::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:ac:09:da:78:73:e8:fb:8f:a4:62:e5:90:f0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Jan 1 21:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0402d028b931df4c1aa799ea520d9a1e5e19a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bf:69:f5:29:4e:35:f9:71:88:d4:69:57:39:
01:08:4d:e3:00:12:30:cf:18:fa:22:d8:cb:e0:a1:
34:b4:14:e2:56:42:9c:8b:e3:6c:19:a4:be:a5:06:
6d:80:c1:ea:a4:03:15:68:77:d7:10:d9:b6:db:a6:
c3:11:fd:2c:7a:c6:ab:30:f9:5e:2c:a7:d7:f2:ff:
0f:90:86:b3:8f:d4:3b:ee:f2:0e:d7:06:18:7f:2d:
80:97:72:15:f2:03:ac:c0:c9:b4:a6:dc:9d:8b:cd:
c2:4d:6a:b1:16:1e:9f:e0:e9:78:bd:e1:85:e3:95:
eb:70:32:0a:de:77:a9:01:47:6e:3e:37:a1:4f:40:
e7:81:40:ec:fb:c9:d4:e1:e8:ee:4a:e2:c7:67:d7:
33:16:c8:18:5f:05:ea:90:50:a2:83:6c:e0:0b:ce:
3e:db:4d:0a:b6:2e:4d:c6:ee:ff:f6:24:12:b8:20:
ab:6b:68:00:d3:d1:2e:36:00:7d:3f:05:6c:e8:31:
86:7f:33:eb:f9:19:45:a8:da:50:9a:c7:1b:a9:87:
e3:1f:d4:c2:29:f6:7c:33:57:c3:6f:03:9d:3c:07:
15:91:4f:ed:6b:b5:f9:4e:d5:55:64:d9:62:bd:f7:
07:28:bb:65:52:c0:81:b3:3b:b4:39:8c:37:af:bc:
0a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:40:2D:02:8B:93:1D:F4:C1:AA:79:9E:A5:20:D9:A1:E5:E1:9A:3F
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/oEAtAouTHfTBqnmepSDZoeXhmj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.210.0/24
IPv6:
2a10:8180::/29
Signature Algorithm: sha256WithRSAEncryption
58:ab:1c:e3:80:9f:5d:4e:53:f7:39:ed:8a:b5:61:2f:fb:5d:
20:81:99:10:df:e5:b6:0e:e2:20:0a:ac:17:00:54:df:f8:06:
3c:46:78:d9:d3:3a:28:9e:60:2b:60:32:18:ac:61:2a:09:52:
84:66:2f:eb:b5:a7:0c:b3:03:7e:ff:cf:fe:ef:32:29:5c:97:
b5:32:65:64:bf:fc:27:33:f4:1d:a8:78:16:e4:b8:b9:e1:ee:
93:0d:f5:ba:43:1b:c5:92:e6:b0:0c:fc:44:ba:15:e4:6d:d5:
28:b0:1d:3a:f3:42:d1:ec:b9:ee:e7:75:c0:fb:14:b8:cf:52:
0e:88:a4:b7:1c:a6:77:d4:46:1f:90:bc:b5:9f:87:e5:55:0a:
1a:3b:d4:13:3e:38:89:fa:21:f4:5f:6b:66:48:43:41:b9:f4:
4c:70:96:c2:43:3e:df:68:51:8f:71:25:a0:8e:4c:3c:23:de:
a6:da:99:25:55:76:73:1e:91:19:fb:55:73:99:c3:d5:99:ea:
4d:30:fa:f1:0a:b5:b6:c1:ff:d9:22:90:fe:da:bc:57:89:cd:
d6:8b:09:e7:9f:75:12:1e:c1:8d:45:db:fe:2b:0d:0f:68:c0:
10:db:5f:ab:fb:35:af:5f:3f:23:68:b3:53:e3:17:5d:f3:e2:
44:34:12:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:07 2024 by rpki-client on console-fra.rpki-client.org