Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/OPDITILROL_WM7w8KNV4vQB34zU.roa
File: OPDITILROL_WM7w8KNV4vQB34zU.roa (raw, json)
Hash identifier: 5UIFIw6SYdQAXiqepu3vv+2qwlllBAUvQnthTMLZE6E=
Subject key identifier: 38:F0:C8:4C:82:D1:38:BF:D6:33:BC:3C:28:D5:78:BD:00:77:E3:35
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018E8B514DAC1379272345E1E422320480E5
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/OPDITILROL_WM7w8KNV4vQB34zU.roa
Signing time: Fri 29 Mar 2024 17:45:45 +0000
ROA not before: Fri 29 Mar 2024 17:45:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64289
IP address blocks: 92.118.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Mar 2024 08:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:8b:51:4d:ac:13:79:27:23:45:e1:e4:22:32:04:80:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 29 17:45:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38f0c84c82d138bfd633bc3c28d578bd0077e335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:37:72:49:37:62:df:8b:b3:93:a3:63:07:7f:
9b:7b:7d:ab:3b:ef:dd:f6:97:3b:10:c8:c5:03:7a:
2e:a6:76:f4:f1:3e:74:93:03:17:64:56:a7:2e:e9:
88:5a:d3:1f:59:34:05:f2:48:37:c5:dd:98:57:1c:
90:ed:12:c9:fe:1a:72:a6:70:45:db:51:67:48:aa:
0b:e8:31:2d:50:64:99:e2:e9:d5:1d:28:57:e6:5c:
62:77:d3:ee:9e:07:e5:8b:93:0a:7d:a2:ac:94:d3:
39:02:36:d5:6f:cb:33:1c:62:3c:e1:71:1b:b5:8a:
5b:fc:45:bf:93:13:87:d1:2f:3a:80:87:e7:4e:2a:
02:6a:ea:77:38:5e:ab:ee:b7:77:94:10:98:27:99:
7e:37:9e:ce:ad:09:1a:f3:4c:04:65:d4:6e:1c:e9:
b4:c2:1e:b0:2f:f2:17:de:11:b1:b9:f1:21:f5:22:
67:65:90:e3:7a:34:9c:3e:30:88:1d:36:62:ad:19:
f7:64:a4:f2:46:bb:0f:4e:f0:56:3e:f5:4d:59:a2:
06:9f:13:8e:4e:df:c2:aa:05:f4:61:20:6b:9a:29:
04:fa:1f:c6:72:d1:4c:20:0d:03:f4:d3:57:35:cf:
35:1a:5c:e7:17:02:7c:e9:9f:d4:e9:22:e2:77:15:
6b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F0:C8:4C:82:D1:38:BF:D6:33:BC:3C:28:D5:78:BD:00:77:E3:35
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/OPDITILROL_WM7w8KNV4vQB34zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.205.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:d0:f0:77:30:78:3a:14:aa:dd:a4:71:11:a4:1e:96:9c:3a:
dc:29:23:43:ea:ce:8c:ce:05:41:46:19:43:9d:09:ac:14:b3:
60:b5:4b:70:30:89:f5:8a:ab:3d:eb:71:10:97:dc:d7:cc:13:
f6:5b:74:bc:d3:a0:2b:de:ea:9e:54:3e:d4:35:09:8b:27:26:
00:37:78:dd:f5:51:4a:13:14:13:74:23:04:46:db:c3:b4:85:
2e:25:1d:04:73:48:10:13:97:b2:7e:59:eb:8f:1e:20:61:70:
56:89:f0:1d:84:85:6e:b5:ea:e9:b4:4b:73:a6:16:3f:ca:dc:
c7:af:7b:2a:5b:d4:bd:bd:5c:82:0a:a4:f6:08:a8:55:9e:ba:
c9:7f:19:11:94:0a:ef:c2:41:c1:3a:46:79:52:74:45:a2:06:
ae:c7:b1:b4:e5:c0:d0:93:b0:eb:11:d7:50:88:c0:d2:ed:19:
76:c9:0c:c4:f2:48:6d:14:eb:95:ee:84:dc:1b:03:00:f6:db:
cf:b1:2d:76:1a:81:39:db:52:d5:a6:0b:38:ed:36:80:6a:a7:
f7:a6:98:4c:fc:86:00:6b:3d:1e:84:88:83:e0:a0:c7:1a:89:
4d:ad:ca:fb:93:0d:cf:a8:a0:1a:75:23:3a:b2:cc:ec:ff:8a:
0f:2b:37:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 30 08:43:33 2024 by rpki-client on console-fra.rpki-client.org