Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/OskzntbJuA-uhKC83YRERnOHaFM.roa
File: OskzntbJuA-uhKC83YRERnOHaFM.roa (raw, json)
Hash identifier: uX2+MKh1sF1mcUFHjWypj8U5XR4pIGy5+H+Lp0U6Rpg=
Subject key identifier: 3A:C9:33:9E:D6:C9:B8:0F:AE:84:A0:BC:DD:84:44:46:73:87:68:53
Certificate issuer: /CN=8fa9aeb426c28a34808776f9568935d3b9ec9e08
Certificate serial: 01856D9421E489B2CDAF47FAC84F09B285A6
Authority key identifier: 8F:A9:AE:B4:26:C2:8A:34:80:87:76:F9:56:89:35:D3:B9:EC:9E:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j6mutCbCijSAh3b5Vok107nsngg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/OskzntbJuA-uhKC83YRERnOHaFM.roa
Signing time: Sun 01 Jan 2023 13:45:02 +0000
ROA not before: Sun 01 Jan 2023 13:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211569
IP address blocks: 185.225.10.0/24 maxlen: 24
2a10:e480::/29 maxlen: 56
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:94:21:e4:89:b2:cd:af:47:fa:c8:4f:09:b2:85:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fa9aeb426c28a34808776f9568935d3b9ec9e08
Validity
Not Before: Jan 1 13:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ac9339ed6c9b80fae84a0bcdd84444673876853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:db:99:99:ee:cf:f3:90:6f:5d:9c:9e:16:37:
e6:7e:6c:93:a8:41:6f:e5:5e:65:c9:cb:d0:28:8d:
41:0e:1b:ef:1f:2c:5b:99:4b:03:77:ad:f0:88:6c:
ab:f9:0f:28:14:29:6f:65:99:6e:8c:41:7f:c3:a1:
ee:cc:4c:6b:47:c3:00:6a:b2:96:72:60:d4:71:3d:
36:28:81:42:2a:dd:c1:2a:e9:a2:c5:6a:4f:88:73:
e9:6e:e4:49:6d:a0:56:0b:39:26:ff:99:76:3a:c9:
c4:9e:1d:a3:fe:a7:2d:a1:41:8b:f8:c0:46:90:97:
bf:dd:2e:50:41:24:af:d9:76:58:5c:9d:96:ba:5d:
14:ac:17:d2:21:dc:a2:0b:f1:fc:a9:5b:f9:88:a7:
15:39:6c:79:79:7b:ca:74:50:cb:5b:d6:0d:6e:1f:
b5:02:a1:aa:4d:a1:67:2b:21:9b:4c:2f:a4:9e:6b:
ed:4a:b0:64:31:5d:52:5e:d5:c7:d4:59:2d:c6:0d:
6e:b2:e0:c6:1f:4b:92:7b:fe:52:8f:73:07:ce:42:
80:85:e2:b5:e2:f7:4a:6d:61:ca:e3:4d:ba:23:91:
90:c5:a9:45:48:3f:fd:04:f1:5f:52:df:1b:a5:86:
45:8c:6a:fd:e1:79:ee:34:e0:27:1d:ea:ab:51:66:
ef:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:C9:33:9E:D6:C9:B8:0F:AE:84:A0:BC:DD:84:44:46:73:87:68:53
X509v3 Authority Key Identifier:
keyid:8F:A9:AE:B4:26:C2:8A:34:80:87:76:F9:56:89:35:D3:B9:EC:9E:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j6mutCbCijSAh3b5Vok107nsngg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/OskzntbJuA-uhKC83YRERnOHaFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/j6mutCbCijSAh3b5Vok107nsngg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.10.0/24
IPv6:
2a10:e480::/29
Signature Algorithm: sha256WithRSAEncryption
45:03:00:00:e9:1b:2d:c9:a7:28:2b:6c:a7:f7:06:f9:91:12:
04:4c:31:c3:f3:ad:73:17:d6:49:13:7b:16:45:6b:7c:c8:71:
78:d5:5d:6b:e9:b6:f8:a8:1a:80:0a:de:5f:62:07:fc:81:b9:
f9:2e:c7:6d:7f:35:85:da:34:65:05:e8:e9:e8:33:cc:55:cf:
90:21:7f:77:a6:6c:08:27:b8:3b:0c:98:23:5a:c9:75:13:9c:
2b:7f:24:13:0d:dc:0d:cb:f3:22:c8:17:85:b5:c1:d7:81:b0:
03:a2:ce:eb:90:86:a6:dc:b9:b4:91:c0:50:8e:8c:64:36:61:
4d:79:49:7e:78:25:f4:25:73:38:89:72:6f:a9:2c:8e:7a:bb:
a5:e6:8f:5b:21:84:4f:6c:6d:22:45:02:b5:a9:fa:da:95:ef:
4c:2a:58:5e:9e:39:79:72:b5:8c:e2:2d:23:56:12:e1:4c:58:
ee:6b:01:dc:b4:e4:a6:5e:e9:0c:ea:c0:88:f8:a0:b3:c9:d6:
3b:ad:06:15:25:a9:12:3c:0b:95:02:46:9c:b4:41:c0:d2:86:
74:39:6d:68:af:2c:3f:6b:68:43:32:4b:68:61:d0:0b:a8:f3:
72:0a:a9:3f:d8:23:4e:b1:65:24:86:b5:d5:98:b4:35:9d:27:
19:9c:7c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:48 2024 by rpki-client on console-ams.rpki-client.org