Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/OvHi55pIN91KdyotJVJkU4T5Qi4.roa
File: OvHi55pIN91KdyotJVJkU4T5Qi4.roa (raw, json)
Hash identifier: xPfoT9zHTocG1V38nrnlxXq11weUupvivTYX4oEcyzg=
Subject key identifier: 3A:F1:E2:E7:9A:48:37:DD:4A:77:2A:2D:25:52:64:53:84:F9:42:2E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01889FD7AEE79EC4A616E921E7711F23EB29
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/OvHi55pIN91KdyotJVJkU4T5Qi4.roa
Signing time: Fri 09 Jun 2023 11:08:12 +0000
ROA not before: Fri 09 Jun 2023 11:08:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 185.209.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 09:38:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9f:d7:ae:e7:9e:c4:a6:16:e9:21:e7:71:1f:23:eb:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 9 11:08:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3af1e2e79a4837dd4a772a2d2552645384f9422e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0d:d3:7f:a5:88:1d:91:d3:e0:81:4a:75:09:
b8:2a:73:62:e8:29:7d:5d:fc:fc:69:c0:2b:c9:02:
37:40:de:7f:55:29:8a:35:07:fd:db:ff:e6:75:05:
3d:f5:16:67:ba:30:69:ad:92:2f:82:f6:50:b0:33:
42:8b:98:46:50:c5:ef:fe:9f:de:77:33:bb:f4:49:
61:a3:97:0b:e9:06:4e:05:77:d7:1f:59:e8:c2:25:
e5:df:2f:42:c8:76:49:24:b9:3a:05:06:54:a6:0e:
e0:8a:7a:19:5b:af:fd:16:8b:4c:77:48:95:67:f7:
77:cf:85:f0:b7:2e:29:11:1a:1b:b7:62:32:a3:58:
29:b8:f0:66:f4:cd:49:5c:39:21:4d:3e:fd:bd:74:
1a:75:24:ec:a5:21:18:c7:d2:8c:49:6c:60:25:a5:
4f:c9:2b:51:11:c0:79:af:63:4b:56:41:90:1d:8b:
a8:dc:e4:56:d8:80:55:6e:99:4f:71:ce:64:a9:ff:
0f:94:79:bb:43:87:76:71:7b:33:bc:d1:e5:5c:c6:
76:18:23:45:5d:08:b6:58:07:23:ab:d4:71:f6:72:
d4:a0:37:b3:e2:ba:95:9c:13:ba:1b:62:11:35:d3:
da:de:0c:17:b9:75:d9:e3:79:8c:9a:8a:f3:1a:f9:
81:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F1:E2:E7:9A:48:37:DD:4A:77:2A:2D:25:52:64:53:84:F9:42:2E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/OvHi55pIN91KdyotJVJkU4T5Qi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.73.0/24
Signature Algorithm: sha256WithRSAEncryption
82:dc:0a:e7:cb:1c:8c:c9:fc:8d:e9:53:a8:70:a1:d0:3c:9b:
71:2e:e5:e6:68:3f:73:d2:f6:ce:b5:8a:0f:5b:69:50:b4:df:
80:e0:2d:3e:4b:a1:10:b5:de:01:4d:74:6d:b7:04:8c:87:41:
ab:a5:2c:ac:ae:8b:64:9b:e4:13:98:4e:32:17:40:53:73:53:
2b:c3:d8:b9:3c:73:e3:ae:c4:7c:dc:91:c0:f3:d0:9b:1a:57:
34:89:a7:be:d0:3b:96:31:ff:b1:35:5c:d3:ff:85:c3:5f:75:
1f:11:9d:63:fc:74:c9:08:8b:73:c2:cc:26:29:d5:04:ee:ef:
6a:ac:e1:cc:27:75:b0:60:6b:b6:a5:3d:da:18:30:99:43:fa:
01:39:ce:36:3d:e1:07:27:54:d9:1a:d9:cf:32:ea:a8:02:bf:
6d:78:fa:de:6b:58:ae:40:4d:70:82:fc:e2:7f:ff:c3:a8:27:
14:d5:30:72:c0:cd:21:8b:5d:ac:38:08:68:62:93:d5:1e:27:
3b:43:2e:fe:66:4b:60:90:0a:62:b6:bb:c3:42:8e:30:c4:80:
cb:8b:45:3c:91:cb:d0:12:b3:61:d9:63:0a:8e:a2:16:4a:8c:
77:9c:d6:84:d7:99:ab:da:e7:e2:d1:f2:2e:25:e0:f3:0c:3c:
75:7f:42:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org