Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/d1cfd7-98d3-43b9-981e-c0dd4771c2aa/1/_oy7HuN5QbdWY3HfNqS8xxHtgSA.roa
File: _oy7HuN5QbdWY3HfNqS8xxHtgSA.roa (raw, json)
Hash identifier: Q+25vh6va9ppo8GC8vo/DNcO+7ehk8PDIG35nFEby0k=
Subject key identifier: FE:8C:BB:1E:E3:79:41:B7:56:63:71:DF:36:A4:BC:C7:11:ED:81:20
Certificate issuer: /CN=3dc23e8a8ec9396b1b54cffb271c55766d949199
Certificate serial: 018571832A274583B083FE9A97B3728B412F
Authority key identifier: 3D:C2:3E:8A:8E:C9:39:6B:1B:54:CF:FB:27:1C:55:76:6D:94:91:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PcI-io7JOWsbVM_7JxxVdm2UkZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/d1cfd7-98d3-43b9-981e-c0dd4771c2aa/1/_oy7HuN5QbdWY3HfNqS8xxHtgSA.roa
Signing time: Mon 02 Jan 2023 08:04:59 +0000
ROA not before: Mon 02 Jan 2023 08:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211994
IP address blocks: 185.233.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:2a:27:45:83:b0:83:fe:9a:97:b3:72:8b:41:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3dc23e8a8ec9396b1b54cffb271c55766d949199
Validity
Not Before: Jan 2 08:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe8cbb1ee37941b7566371df36a4bcc711ed8120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:be:71:0e:57:fb:d6:ea:a3:9c:1d:23:81:53:
6b:db:cb:15:5c:5e:5d:b8:24:5e:af:9c:60:15:fc:
a8:1a:b2:21:dd:b7:3f:70:22:7e:cc:43:71:87:c2:
90:d5:c9:4a:34:65:30:6c:aa:b8:ad:cb:ce:fb:88:
bb:cd:a1:cb:57:9a:5a:74:c3:1d:68:b7:6a:7c:9d:
47:63:d0:4a:03:49:89:3b:64:ac:70:5b:12:21:9c:
23:3e:11:71:cc:24:b1:41:2d:ee:35:8f:07:0a:28:
e5:37:98:fa:a7:b5:2e:30:61:0c:4c:4d:30:a4:bd:
06:c1:bc:b8:28:75:97:41:53:85:34:3c:2a:62:1a:
2d:37:cc:02:b5:fc:2a:37:da:60:f1:96:f3:59:50:
33:27:9d:65:f5:c6:6b:5d:fc:bf:95:cd:7d:f5:a3:
72:7e:a0:c4:26:8c:89:40:27:98:2d:44:78:56:35:
73:56:fa:58:87:00:0b:29:a6:f2:5a:5f:34:9c:54:
4f:42:88:a4:7a:8b:d4:bd:82:81:70:3d:ce:f9:46:
a7:ef:14:87:6a:4a:9e:6a:87:8e:ca:01:b8:0d:1f:
dc:51:c4:55:7e:89:0a:a0:fd:08:a9:0d:3b:f0:3c:
45:81:31:0b:04:a7:85:fd:ac:d3:c4:33:88:18:f3:
c0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:8C:BB:1E:E3:79:41:B7:56:63:71:DF:36:A4:BC:C7:11:ED:81:20
X509v3 Authority Key Identifier:
keyid:3D:C2:3E:8A:8E:C9:39:6B:1B:54:CF:FB:27:1C:55:76:6D:94:91:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PcI-io7JOWsbVM_7JxxVdm2UkZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d1cfd7-98d3-43b9-981e-c0dd4771c2aa/1/_oy7HuN5QbdWY3HfNqS8xxHtgSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d1cfd7-98d3-43b9-981e-c0dd4771c2aa/1/PcI-io7JOWsbVM_7JxxVdm2UkZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.64.0/24
Signature Algorithm: sha256WithRSAEncryption
12:2d:db:98:5e:a3:fe:f1:26:4c:00:1e:03:02:bb:80:76:52:
d5:44:d2:d7:92:58:13:20:60:a7:7a:06:db:cc:2a:9f:bd:53:
82:f3:cb:27:a6:13:05:dd:bf:38:91:d2:c4:47:64:3a:52:f9:
9c:5e:ee:10:f5:90:38:9f:54:06:04:e4:29:17:1b:61:d0:5a:
7e:a6:3a:d1:d1:d0:8c:0d:5f:91:00:ba:aa:de:16:43:94:58:
ec:89:4a:d9:80:d6:02:91:8d:66:f1:90:b2:93:a6:92:4f:f7:
f0:91:a6:d1:b1:ca:22:d0:96:a9:2d:30:70:83:82:9f:bf:63:
7e:3a:9c:d2:1e:2b:b0:cb:e7:a0:c0:85:c0:28:f7:de:b0:de:
06:3d:a6:94:d4:ee:45:5f:30:ee:3b:d9:06:9c:da:8d:24:7c:
6a:83:6c:8a:79:42:ac:f5:48:6b:38:ed:37:dd:7e:e7:b7:e6:
25:7f:99:00:d2:6c:60:8c:c5:85:f5:1e:91:e9:71:5a:61:58:
c6:6f:eb:3c:70:11:43:4e:4e:a8:d3:fc:6e:d6:9a:d5:96:7f:
95:63:c1:e7:9d:0f:f1:dd:20:96:2e:95:af:8c:9e:a3:8e:af:
56:57:37:ee:9d:43:ec:2d:86:6e:49:d3:ee:20:4a:8d:10:90:
4d:6b:d0:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:43 2024 by rpki-client on console-ams.rpki-client.org