Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/o2TcaddPR_QV5ijhdjTwAo77QEQ.roa
File: o2TcaddPR_QV5ijhdjTwAo77QEQ.roa (raw, json)
Hash identifier: DY10TcvDLPwxTZxBdxNvhAL+rd5tmcBi7p9lLWxRWN8=
Subject key identifier: A3:64:DC:69:D7:4F:47:F4:15:E6:28:E1:76:34:F0:02:8E:FB:40:44
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 018756888E27BAADDD6A50764C33E9AD72C2
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/o2TcaddPR_QV5ijhdjTwAo77QEQ.roa
Signing time: Thu 06 Apr 2023 12:26:42 +0000
ROA not before: Thu 06 Apr 2023 12:26:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60542
IP address blocks: 185.190.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:88:8e:27:ba:ad:dd:6a:50:76:4c:33:e9:ad:72:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Apr 6 12:26:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a364dc69d74f47f415e628e17634f0028efb4044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5f:ee:60:50:3f:5e:a7:eb:9a:29:5c:f2:82:
b3:19:ab:0a:ef:7b:02:75:0c:07:37:67:39:15:b0:
b5:a6:ef:c8:0a:0e:12:a6:71:99:c6:aa:c4:04:d9:
9a:6e:55:6e:4b:4b:1d:0d:69:fe:ef:71:23:09:5c:
b3:49:cd:13:07:c5:7f:a6:83:43:ea:11:1f:61:57:
0c:82:a0:7a:95:a1:ae:c3:9d:7e:c4:74:2f:92:68:
19:2c:c7:e0:6a:bd:e7:9a:ab:fa:69:8e:c0:50:5a:
87:0a:09:d6:c7:9b:9f:69:ad:ee:f2:21:9a:36:45:
6b:25:ea:8e:1c:cb:78:12:96:8a:ea:9c:51:02:07:
51:be:50:38:a3:c8:4a:f0:25:2b:7e:c4:99:3f:cb:
2e:62:a0:52:eb:ec:8a:08:c3:f4:9d:80:82:35:6d:
d9:db:6f:de:e6:53:2a:11:33:7e:3e:68:71:7b:12:
e2:e3:f8:1f:8d:dd:e6:c8:f9:06:6a:d1:59:ba:57:
5a:93:48:ea:07:8a:4e:ef:64:8e:4c:b0:9d:83:ac:
4e:a5:ea:a5:2e:62:8e:f7:38:49:f3:6f:b8:93:c3:
d6:f6:65:b9:1a:a8:8b:46:ce:a8:30:b8:ad:13:f2:
ef:e2:e8:ba:9d:d6:52:cd:3c:c0:9a:e5:fb:47:84:
f0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:64:DC:69:D7:4F:47:F4:15:E6:28:E1:76:34:F0:02:8E:FB:40:44
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/o2TcaddPR_QV5ijhdjTwAo77QEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.25.0/24
Signature Algorithm: sha256WithRSAEncryption
64:8d:80:7f:a2:ae:d3:18:af:ef:3c:f2:99:f4:ed:b5:b7:9a:
51:b0:49:e1:ec:ba:1f:29:55:38:76:77:c6:24:6c:0e:24:95:
5c:b6:4b:57:0f:33:18:62:17:5c:80:e8:91:a7:19:ea:35:42:
fe:75:67:b5:20:9b:93:bb:f5:88:c2:6d:8b:8c:f0:08:bb:8a:
d0:a1:6c:da:72:0e:20:10:51:2e:0b:8e:0a:0e:75:25:1e:88:
df:0f:2e:49:90:8a:bc:e1:78:4a:7a:24:4f:72:9f:bd:95:dc:
f3:b0:72:68:8e:d5:84:d8:19:42:27:ec:f6:33:fb:80:ee:11:
bf:d8:dc:d4:20:a4:06:b4:21:cb:fe:db:3a:f3:43:51:1e:1d:
a3:5b:40:88:86:b8:8a:9e:d3:13:54:97:92:5e:3c:1b:98:29:
29:ed:53:89:2f:67:00:18:96:33:57:9d:26:77:0b:b1:78:2f:
80:4b:24:19:c0:52:90:a8:45:4d:bf:91:49:1e:1f:a1:9a:a1:
40:b1:b7:49:73:d2:87:0c:0c:f6:47:ee:b6:9b:2d:29:3a:8c:
26:02:ac:62:9a:63:9d:b6:72:dd:dc:13:b4:7e:57:9d:69:c5:
df:0d:59:32:0c:67:dc:e4:64:d7:2b:6d:03:d5:78:7e:0d:3a:
fb:8e:6b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org