Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/sOTOmcXk4G4Y4meMH0VqyYIEe4Y.roa
File: sOTOmcXk4G4Y4meMH0VqyYIEe4Y.roa (raw, json)
Hash identifier: rqbHrXf1VFqgf2jDSphWPacSjhBpdcg/4TkH2blGFpw=
Subject key identifier: B0:E4:CE:99:C5:E4:E0:6E:18:E2:67:8C:1F:45:6A:C9:82:04:7B:86
Certificate issuer: /CN=09e2af08cf6e12e2304fb3bdec64cfbcedaa8522
Certificate serial: 018A2D055756CACB8E343AEF205A2066AFA3
Authority key identifier: 09:E2:AF:08:CF:6E:12:E2:30:4F:B3:BD:EC:64:CF:BC:ED:AA:85:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/sOTOmcXk4G4Y4meMH0VqyYIEe4Y.roa
Signing time: Fri 25 Aug 2023 14:07:19 +0000
ROA not before: Fri 25 Aug 2023 14:07:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56443
IP address blocks: 185.105.58.0/24 maxlen: 24
185.128.132.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2d:05:57:56:ca:cb:8e:34:3a:ef:20:5a:20:66:af:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e2af08cf6e12e2304fb3bdec64cfbcedaa8522
Validity
Not Before: Aug 25 14:07:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0e4ce99c5e4e06e18e2678c1f456ac982047b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:69:71:59:87:c0:b7:40:f4:93:9c:d4:50:6e:
df:61:1a:42:76:ac:ee:76:21:77:2c:c0:b6:78:ca:
cc:cd:df:62:f5:f8:2d:18:0f:3f:bb:2a:8c:79:90:
a1:0d:b8:2c:0c:5d:8e:98:9e:6b:3f:b5:fa:8a:5c:
38:35:15:06:93:26:a5:83:c0:88:4b:8a:de:3a:fc:
7a:a4:b4:5e:84:09:f9:a4:40:a0:ab:a4:0f:74:e8:
51:b8:08:c3:e1:f3:43:94:f7:0c:9c:a2:db:40:d0:
59:42:33:a7:77:9b:73:ee:0f:2a:e6:f9:dd:21:31:
02:a4:cd:62:da:de:c4:a7:e2:b1:21:e5:ef:ef:fa:
2d:90:ab:cf:c1:a4:27:19:aa:9d:a0:07:ab:62:c6:
0b:f8:af:0e:f9:bc:24:75:79:5a:b4:a4:e7:0d:b8:
01:35:cf:f9:cc:c8:2f:ad:98:1b:ec:26:8d:f4:ef:
3e:9a:0c:1a:36:a2:95:3e:a8:cb:ac:74:ab:e1:53:
35:35:6b:25:b3:1c:24:5c:9b:30:d1:88:57:55:47:
8f:21:95:0e:f7:c4:dc:eb:1f:f2:c2:aa:2a:e5:09:
96:7c:5d:12:ff:fb:e2:4a:6c:85:84:12:dd:6e:ee:
fb:94:a2:8e:a1:b9:36:fe:de:d0:a4:bb:81:82:28:
e0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E4:CE:99:C5:E4:E0:6E:18:E2:67:8C:1F:45:6A:C9:82:04:7B:86
X509v3 Authority Key Identifier:
keyid:09:E2:AF:08:CF:6E:12:E2:30:4F:B3:BD:EC:64:CF:BC:ED:AA:85:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/sOTOmcXk4G4Y4meMH0VqyYIEe4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.58.0/24
185.128.132.0/23
Signature Algorithm: sha256WithRSAEncryption
13:da:ce:16:f0:30:31:8e:ae:82:4f:b8:72:61:87:3c:69:c7:
57:10:14:ca:da:46:b6:10:c3:7f:5d:18:59:3d:4d:ae:f8:8f:
15:b5:b0:1f:64:78:53:3d:11:f7:8f:8f:34:83:54:26:cd:2c:
fc:ec:26:08:e8:12:fd:9e:59:08:3e:1d:8f:e4:de:1f:d3:24:
53:d7:7c:b1:ef:d2:85:19:27:b4:86:6b:24:39:9b:ec:8b:6f:
3c:f0:4e:40:6d:72:c3:ec:5d:0d:45:ff:48:04:0c:a4:7c:4d:
4b:ea:7d:93:30:a6:50:28:6a:15:5f:99:6c:fe:8c:2c:2d:c4:
39:e5:a9:b5:db:8b:12:13:6c:2d:39:75:8f:16:3e:44:4e:56:
e1:f0:0a:2d:24:b8:f9:d8:17:b6:92:b5:af:4e:74:3c:7f:90:
cc:65:4b:aa:aa:a9:56:11:35:fc:de:fd:13:9b:72:30:fb:79:
51:1a:2c:03:41:41:07:d3:50:cd:64:7d:67:fd:71:94:10:5d:
72:04:0b:28:d9:5c:ee:c0:ab:6c:98:8c:46:17:ad:13:25:62:
de:bd:2c:bc:ef:bc:73:25:3c:9a:f1:2f:a2:30:35:33:10:7a:
9e:0b:bc:17:b7:c2:cd:a4:ca:74:f7:7f:51:ed:e5:d8:2d:df:
3d:91:3c:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:47 2024 by rpki-client on console-ams.rpki-client.org