Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/vOih18TgO4URJR7sFdljgPJ-GjM.roa
File: vOih18TgO4URJR7sFdljgPJ-GjM.roa (raw, json)
Hash identifier: G3XGWH9c0Y//tbboEiVpz+ZbgwgxOInoP0mAaDIY6TA=
Subject key identifier: BC:E8:A1:D7:C4:E0:3B:85:11:25:1E:EC:15:D9:63:80:F2:7E:1A:33
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 018CCA2B72C43FC62C6B90D28A846D263B09
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/vOih18TgO4URJR7sFdljgPJ-GjM.roa
Signing time: Tue 02 Jan 2024 12:34:54 +0000
ROA not before: Tue 02 Jan 2024 12:34:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202085
IP address blocks: 185.160.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 19:54:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:72:c4:3f:c6:2c:6b:90:d2:8a:84:6d:26:3b:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Jan 2 12:34:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bce8a1d7c4e03b8511251eec15d96380f27e1a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3b:2d:8c:3e:ec:0c:7f:b1:bc:58:91:20:8d:
49:57:96:58:a8:bf:75:bf:a9:01:62:70:34:e4:62:
a4:c5:fe:20:f8:3f:d0:b2:06:21:d1:74:1b:27:b9:
eb:56:12:06:66:c2:d8:67:2a:52:e5:d2:0a:77:92:
a1:ca:c4:52:0a:64:1f:6f:ec:70:d1:ba:eb:71:80:
e0:2c:a9:42:fb:6e:c8:78:a0:a9:7d:13:62:75:11:
9d:32:d2:ae:26:36:45:c5:e9:d4:b0:84:f3:0b:a4:
22:65:18:18:0e:55:d2:d1:12:56:30:6a:dd:4e:3b:
c0:7f:c6:cb:0e:45:da:4d:da:80:a0:cb:6c:e9:59:
9e:ec:1b:a8:7d:b8:2e:d0:af:cb:b1:8b:31:30:54:
c7:1e:6c:c7:d4:fe:39:4a:52:2d:8c:c3:dc:5d:7c:
d9:0e:26:0a:1a:b7:bf:5f:74:f5:49:94:99:84:31:
32:f5:02:ed:4e:24:f1:10:97:f0:66:81:46:29:65:
2c:b9:13:84:3a:84:14:53:e3:6d:48:75:56:19:bc:
68:27:d7:4a:08:4d:6e:d2:74:4b:b5:04:c0:08:e3:
f8:66:10:ad:a6:17:97:20:6b:bb:14:f2:8b:85:ff:
60:55:e4:93:7e:dd:6f:2b:a1:02:44:7a:f8:0d:fb:
0c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E8:A1:D7:C4:E0:3B:85:11:25:1E:EC:15:D9:63:80:F2:7E:1A:33
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/vOih18TgO4URJR7sFdljgPJ-GjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.140.0/24
Signature Algorithm: sha256WithRSAEncryption
34:13:8e:8f:85:d9:c9:89:b8:e1:a2:20:50:de:26:85:77:78:
07:8b:a6:f7:5e:04:5d:be:49:f7:82:ad:ce:b7:ab:0c:52:50:
b3:3f:da:4c:f8:bf:ed:c4:be:b0:12:c3:07:8e:4f:19:53:88:
20:48:d5:13:9c:cc:7d:37:54:8f:d6:67:90:7e:ac:52:fa:c4:
80:5d:4c:ab:8f:aa:df:18:02:00:07:a5:f4:ca:47:b4:8d:54:
46:bf:5f:93:e3:fd:55:c2:80:5e:3c:6b:9b:05:32:fd:41:40:
9c:dc:ee:e9:d0:8d:00:b3:e3:28:c1:f1:b9:a4:aa:2e:11:38:
9e:90:cf:5b:22:c9:e5:1f:57:05:36:15:6c:06:f7:d0:fe:54:
5a:a9:b6:9d:19:8e:1e:8e:65:83:c7:c4:df:db:93:39:2c:7d:
60:cc:51:3d:b7:fd:e4:67:ee:e2:b2:23:28:70:71:de:8b:9b:
31:3e:d9:47:4d:76:35:f8:77:d7:89:52:31:0f:51:cf:fc:b9:
dd:5a:6e:f2:f3:03:3b:83:be:e5:43:cc:ed:10:70:f1:8f:ab:
b5:4e:d8:05:ad:3a:5f:90:0d:bd:5f:d3:dd:c4:47:d7:9a:26:
ad:58:7d:b2:6f:ff:63:7c:7e:38:cf:5e:59:06:00:61:4a:ae:
25:53:b6:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:40 2024 by rpki-client on console-ams.rpki-client.org