Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/7609a0-af3a-4d7d-bb21-7fbde58c4429/1/aoULO7eg5CEHumkmL5udJiKzTeQ.roa
File: aoULO7eg5CEHumkmL5udJiKzTeQ.roa (raw, json)
Hash identifier: s26GGLDCpfNH5oueYmyGZYnv0Oqv9rYXnFkszZhKtkE=
Subject key identifier: 6A:85:0B:3B:B7:A0:E4:21:07:BA:69:26:2F:9B:9D:26:22:B3:4D:E4
Certificate issuer: /CN=5b9c145403203444959bc2619aa6819a1c5d01d9
Certificate serial: 0185729EE98F1A0D5A0CFFF5B3B5DDB4E521
Authority key identifier: 5B:9C:14:54:03:20:34:44:95:9B:C2:61:9A:A6:81:9A:1C:5D:01:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5wUVAMgNESVm8JhmqaBmhxdAdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/7609a0-af3a-4d7d-bb21-7fbde58c4429/1/aoULO7eg5CEHumkmL5udJiKzTeQ.roa
Signing time: Mon 02 Jan 2023 13:14:55 +0000
ROA not before: Mon 02 Jan 2023 13:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 185.225.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:e9:8f:1a:0d:5a:0c:ff:f5:b3:b5:dd:b4:e5:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b9c145403203444959bc2619aa6819a1c5d01d9
Validity
Not Before: Jan 2 13:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a850b3bb7a0e42107ba69262f9b9d2622b34de4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:29:8c:d1:8f:c0:f6:9b:13:a0:be:99:e7:c7:
71:cf:ba:89:12:80:fc:4a:07:31:2d:5f:bc:20:4f:
a3:45:c5:48:db:5b:7c:1a:b4:6a:02:b7:de:6d:4a:
7a:02:46:3f:ea:33:cc:f1:66:1e:ba:80:03:c6:dc:
e1:8d:9e:7f:1d:ad:6e:15:73:e8:13:87:0e:4f:52:
f1:80:e2:7b:53:32:2c:c1:59:f0:bb:68:63:78:2c:
bb:60:13:9f:f1:0a:e3:c5:fb:a4:78:a9:e9:90:a1:
ad:bc:66:e0:5b:dc:86:02:6d:dc:2c:02:fb:5f:e2:
0b:f4:26:52:ec:e5:ef:7c:89:1c:18:1b:75:c1:3a:
18:3b:03:0c:da:07:ca:0c:09:1d:ac:3e:52:b5:be:
9f:63:d4:c0:a0:2d:81:b2:bb:0f:13:32:b2:5b:32:
9b:05:b0:b8:71:d2:14:c1:4a:d5:2b:37:7c:e7:8d:
c3:44:2f:19:a2:b3:94:b0:7e:65:2f:12:4c:87:9a:
99:49:51:6e:d7:53:cb:f1:92:90:ec:b5:f6:a4:5a:
f7:2d:32:c0:fa:11:22:18:ae:79:0b:18:cc:62:e2:
2b:28:91:1d:1f:85:34:4a:06:16:56:b3:0a:8b:bc:
8d:d6:28:49:4e:4f:d0:3c:e9:f8:e0:cf:d9:2c:c9:
ae:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:85:0B:3B:B7:A0:E4:21:07:BA:69:26:2F:9B:9D:26:22:B3:4D:E4
X509v3 Authority Key Identifier:
keyid:5B:9C:14:54:03:20:34:44:95:9B:C2:61:9A:A6:81:9A:1C:5D:01:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5wUVAMgNESVm8JhmqaBmhxdAdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/7609a0-af3a-4d7d-bb21-7fbde58c4429/1/aoULO7eg5CEHumkmL5udJiKzTeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/7609a0-af3a-4d7d-bb21-7fbde58c4429/1/W5wUVAMgNESVm8JhmqaBmhxdAdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.188.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:a4:83:ff:68:4f:65:2b:bf:cd:b0:7f:ed:ce:aa:82:71:46:
90:aa:9d:31:c7:d4:1b:6e:4a:36:7a:47:ac:0a:64:db:90:96:
6b:03:6d:17:01:42:21:31:ae:0c:4f:9c:39:d0:e1:15:dc:d6:
7d:4e:94:af:c5:5f:da:ef:a5:f8:31:c0:17:b4:9a:e3:bf:e8:
5a:d8:84:2a:2d:38:17:c3:86:ed:19:51:31:f4:53:05:4b:e4:
e3:2d:e3:4a:ba:8f:23:69:e5:66:c7:6f:f5:eb:6b:4c:ab:b8:
60:a8:c9:59:b2:1d:ed:c3:5c:3f:3f:4f:07:d9:b9:52:66:7c:
5a:bc:82:9b:9e:b0:f8:1c:01:31:75:5b:db:7b:de:d9:c8:50:
50:bb:fc:fd:f5:53:ab:03:43:e0:a9:e3:8d:ba:05:2d:f8:3e:
25:04:98:fa:8c:f6:56:39:1b:28:9b:23:62:f3:2e:f1:e9:02:
9d:75:f8:4b:ca:4c:d3:bf:fc:99:b3:e2:24:46:dd:3c:0c:bb:
37:60:ff:7e:1a:ea:f3:2a:72:ee:cd:32:a7:b6:c7:d6:50:de:
8e:21:18:7a:18:59:01:aa:6b:00:19:20:a7:88:f1:92:a1:11:
3c:10:f3:b7:56:a2:57:35:8d:6e:b8:5f:3d:d1:f5:37:68:33:
15:d2:82:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:37 2024 by rpki-client on console-fra.rpki-client.org