Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oIRSqjA83nw8tigPyacAS_nWPHY.roa
File: oIRSqjA83nw8tigPyacAS_nWPHY.roa (raw, json)
Hash identifier: IlszxQIYVYsHdH0+1Oh16/e/t2tFggxLZxjCfWSbxvo=
Subject key identifier: A0:84:52:AA:30:3C:DE:7C:3C:B6:28:0F:C9:A7:00:4B:F9:D6:3C:76
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0186B656B84CD04CC5E35C1B65DF893CB4ED
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oIRSqjA83nw8tigPyacAS_nWPHY.roa
Signing time: Mon 06 Mar 2023 09:53:01 +0000
ROA not before: Mon 06 Mar 2023 09:53:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200017
IP address blocks: 185.228.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 11:42:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b6:56:b8:4c:d0:4c:c5:e3:5c:1b:65:df:89:3c:b4:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 6 09:53:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a08452aa303cde7c3cb6280fc9a7004bf9d63c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:26:79:04:de:0a:53:8b:2c:ce:8e:73:e6:72:
9d:e9:b1:f7:08:d6:ef:42:80:24:13:51:7d:9e:ca:
2f:af:dd:6d:3b:f1:bc:78:38:84:3e:36:82:3f:14:
15:1b:64:52:0f:5c:79:6e:92:40:01:1d:f3:10:dc:
0b:08:78:ff:2d:c3:cd:f8:84:ab:7b:fd:02:22:1d:
fa:a7:a1:48:63:20:1c:5c:43:18:88:af:6d:86:b0:
4f:93:42:8d:75:5b:2f:fa:4f:0a:ac:fc:4b:4a:0e:
5e:bf:09:21:aa:d7:0a:21:3c:5d:65:ba:36:11:45:
c1:ee:50:9c:fb:d8:c1:26:fb:60:30:8d:47:7d:83:
d2:54:e3:f5:ee:cb:9f:09:7b:e4:4e:8d:dc:3b:c5:
d0:41:8f:47:11:53:58:01:27:87:66:73:3d:88:25:
cc:8e:9f:82:2b:e0:81:db:69:4b:f9:4b:fb:91:35:
ff:26:b0:c8:a2:d9:b4:82:9c:5d:5b:70:12:8b:52:
fd:da:7a:4b:36:6d:a0:04:d7:57:5c:42:1d:a7:5d:
9d:f9:af:c5:e5:97:47:4e:6f:ff:74:d5:1e:e1:83:
4d:9d:0a:8e:3e:aa:0c:d1:79:2e:45:56:d0:3c:c9:
82:e6:64:a5:05:c0:11:4a:7c:6e:0f:8f:04:0d:08:
49:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:84:52:AA:30:3C:DE:7C:3C:B6:28:0F:C9:A7:00:4B:F9:D6:3C:76
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/oIRSqjA83nw8tigPyacAS_nWPHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.73.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:4e:51:7a:44:4b:c8:a2:06:8a:2d:79:2f:2b:7a:2b:97:a8:
b7:bb:08:37:b9:4d:df:63:0a:8e:22:bb:88:ab:63:6c:07:32:
49:ce:64:cb:76:47:39:93:34:3c:e4:f7:02:f4:ca:16:c5:f7:
47:94:d5:e3:66:d6:5d:7e:25:dc:a0:55:89:19:be:4a:4a:1e:
92:98:dd:0b:4e:6e:29:cb:1a:74:d1:17:fc:6f:23:f7:59:a6:
36:55:da:36:6a:e0:7a:1e:20:96:98:05:47:0e:84:6f:11:32:
9e:da:2d:e7:a7:2f:60:57:db:6c:32:f0:b2:1c:d5:b3:16:3d:
29:6b:18:82:a3:21:5f:ec:71:45:dc:f2:b5:04:ff:ab:6a:76:
37:2d:32:52:42:54:d4:00:22:9b:b5:53:bd:6f:df:1f:37:17:
1b:f1:f5:cf:16:58:68:b2:f5:87:99:f5:ab:a2:1c:10:4b:78:
3a:8a:e2:e9:d2:7c:9d:07:f6:c8:60:ee:ba:cb:d7:7a:62:75:
68:cb:5e:70:06:ad:86:45:6a:44:fc:c1:b2:cb:15:35:7d:94:
8d:53:83:0f:16:15:2a:6b:46:b0:4d:b4:81:5e:97:31:4c:b8:
c3:ac:8c:20:f0:86:17:57:6f:3e:67:8e:d7:b6:80:b4:a2:bf:
dd:a9:52:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org