Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/Om7HFbPNeFpGUaqtt4o11CuQn2k.roa
File: Om7HFbPNeFpGUaqtt4o11CuQn2k.roa (raw, json)
Hash identifier: xjNAuCKgpTVoIi5amV1S52x2XJMM1sW6AblZ66AUOrA=
Subject key identifier: 3A:6E:C7:15:B3:CD:78:5A:46:51:AA:AD:B7:8A:35:D4:2B:90:9F:69
Certificate issuer: /CN=c15e7d7bb69efacb0c73902972c74d72d29bf77f
Certificate serial: 018C9562EB40303778B82FCC8839370A3504
Authority key identifier: C1:5E:7D:7B:B6:9E:FA:CB:0C:73:90:29:72:C7:4D:72:D2:9B:F7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wV59e7ae-ssMc5ApcsdNctKb938.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/Om7HFbPNeFpGUaqtt4o11CuQn2k.roa
Signing time: Sat 23 Dec 2023 06:35:37 +0000
ROA not before: Sat 23 Dec 2023 06:35:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210636
IP address blocks: 185.102.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:95:62:eb:40:30:37:78:b8:2f:cc:88:39:37:0a:35:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c15e7d7bb69efacb0c73902972c74d72d29bf77f
Validity
Not Before: Dec 23 06:35:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a6ec715b3cd785a4651aaadb78a35d42b909f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:50:02:90:48:c7:db:6d:80:c0:6a:b6:a7:e6:
a3:2b:b0:ee:d5:b8:33:d2:c5:0c:59:5c:30:26:68:
35:87:86:29:aa:cd:b3:43:58:66:3f:9c:b6:1a:c5:
6c:3a:22:66:4e:b2:89:84:c7:35:d2:3c:e8:d8:69:
bc:0b:de:d0:75:d2:da:d2:e2:8d:dc:fa:e4:79:e5:
03:9f:47:ff:96:5e:b4:5d:26:75:08:1c:08:43:86:
4e:13:26:05:43:62:d9:59:81:96:54:b4:5a:15:2d:
dd:b7:6a:91:4d:27:ab:96:a0:42:8e:b6:35:60:e1:
88:ed:ff:0b:bc:7a:63:61:21:48:4d:27:0a:47:41:
de:ef:43:e8:6f:2c:30:69:c5:7c:29:30:69:70:1b:
a7:d0:f6:94:ee:97:7f:09:56:81:1c:7f:1c:33:e4:
d9:ce:74:34:e7:36:8e:1d:da:fd:05:21:76:96:c3:
8b:58:b6:e7:37:6a:ae:e4:60:3c:23:68:27:6b:fa:
f5:fc:21:36:4c:a2:11:5a:48:2b:d6:7c:81:70:72:
88:39:12:a2:22:92:64:be:85:0c:13:13:a8:dd:7d:
83:58:31:53:2d:19:d4:76:b5:d0:46:75:d0:15:ff:
d4:4a:45:ac:01:1d:8f:0a:96:47:2b:75:d3:66:98:
17:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:6E:C7:15:B3:CD:78:5A:46:51:AA:AD:B7:8A:35:D4:2B:90:9F:69
X509v3 Authority Key Identifier:
keyid:C1:5E:7D:7B:B6:9E:FA:CB:0C:73:90:29:72:C7:4D:72:D2:9B:F7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wV59e7ae-ssMc5ApcsdNctKb938.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/Om7HFbPNeFpGUaqtt4o11CuQn2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/wV59e7ae-ssMc5ApcsdNctKb938.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.169.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:7b:a5:08:7e:5f:27:1c:ed:f0:7a:99:7f:92:54:4a:c1:cf:
04:ee:12:b6:0c:87:2d:9c:12:e9:b0:09:5f:55:f7:8f:e2:6d:
41:61:1d:a9:00:37:f0:2f:1f:e4:99:47:5c:0a:2e:fc:3e:a1:
25:fe:32:c2:bd:15:ed:6f:32:9d:2d:3a:6b:36:9a:e7:98:93:
4f:73:63:bf:a7:54:9d:c2:4f:39:29:a2:1c:9b:bf:b0:55:e3:
88:03:20:8b:d9:35:58:ee:0f:70:e7:17:c6:8c:81:2f:01:a7:
a6:ba:93:4c:c9:8a:e4:5a:a9:60:cf:5f:58:71:d4:9e:80:30:
41:9c:ba:e6:01:db:07:dc:f3:1c:dc:83:13:f9:8e:9f:40:11:
94:22:bc:0c:4e:ad:14:ce:cb:76:d4:a4:62:f3:eb:07:d1:4b:
1a:fd:50:f1:0a:d8:20:2f:c2:96:c5:69:13:cd:ed:d5:d6:1f:
be:1d:41:00:56:12:68:5b:8c:73:37:d2:46:52:a6:2e:af:02:
f4:6a:17:8c:17:6f:aa:d8:b6:bf:50:e9:5c:02:1d:f2:b1:71:
80:94:cc:a2:6b:30:e8:85:d8:fe:ec:fb:ac:27:14:cd:ba:52:
fc:0b:74:34:bf:e2:15:ca:4f:26:ab:ed:57:9f:2b:5f:44:69:
ca:9d:82:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:19 2024 by rpki-client on console-ams.rpki-client.org