Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ab3e73-d13d-4ec2-bf3f-177b5ba32327/1/OoVDVxG6eEIG94Z042yxo9Bvgjw.roa
File: OoVDVxG6eEIG94Z042yxo9Bvgjw.roa (raw, json)
Hash identifier: ZiU3zxdzr6c7PllfKlQu3moMjIsWyBLjOR75M6eZCLE=
Subject key identifier: 3A:85:43:57:11:BA:78:42:06:F7:86:74:E3:6C:B1:A3:D0:6F:82:3C
Certificate issuer: /CN=dd4dcb56f79f4a1ded8d95482333961d0264faa5
Certificate serial: 01856E8B5113815B8FAE4C817932F6907F96
Authority key identifier: DD:4D:CB:56:F7:9F:4A:1D:ED:8D:95:48:23:33:96:1D:02:64:FA:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3U3LVvefSh3tjZVIIzOWHQJk-qU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ab3e73-d13d-4ec2-bf3f-177b5ba32327/1/OoVDVxG6eEIG94Z042yxo9Bvgjw.roa
Signing time: Sun 01 Jan 2023 18:15:01 +0000
ROA not before: Sun 01 Jan 2023 18:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200303
IP address blocks: 91.246.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:51:13:81:5b:8f:ae:4c:81:79:32:f6:90:7f:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd4dcb56f79f4a1ded8d95482333961d0264faa5
Validity
Not Before: Jan 1 18:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a85435711ba784206f78674e36cb1a3d06f823c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:65:bc:d3:81:05:de:bf:71:9f:8a:39:c3:1d:
73:cf:63:c3:8b:aa:40:18:7a:55:ee:9e:10:bb:32:
09:10:d3:98:e9:62:23:39:ac:3f:47:34:ea:dd:b0:
fe:fb:e6:74:68:36:75:97:07:d8:c9:f8:50:f8:43:
66:72:15:0b:c9:d2:0d:61:dd:fb:21:75:f6:7c:71:
bd:4a:c6:b6:18:7e:8f:6d:a8:a5:cc:6d:47:83:c0:
97:e7:07:8a:01:6b:0d:d3:c9:26:e7:a3:4b:22:e6:
1a:af:04:ec:34:49:8d:6d:7b:c1:cd:78:8c:94:42:
a6:de:03:26:31:15:5e:84:d3:4d:f7:b2:1e:af:b3:
c4:27:15:61:4e:3a:8a:ad:c5:62:51:01:ec:81:04:
b1:ce:f0:c7:6a:41:e1:43:e6:2b:fc:53:01:89:ad:
6e:fd:b7:3d:b5:41:5b:83:a8:a1:f4:cb:a8:02:eb:
e6:8f:49:2b:4c:89:ee:9d:d6:3c:a9:19:d6:9f:5e:
65:11:b3:47:5e:ec:df:f3:04:71:40:88:5d:1b:51:
9d:d1:07:4f:f8:cd:fb:1f:e9:a5:05:c7:c0:7c:4a:
64:80:b1:00:b6:1a:7b:ee:ad:98:2a:5b:55:6d:31:
5c:fb:58:ae:fb:21:55:5b:55:9e:a0:78:0d:36:52:
0f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:85:43:57:11:BA:78:42:06:F7:86:74:E3:6C:B1:A3:D0:6F:82:3C
X509v3 Authority Key Identifier:
keyid:DD:4D:CB:56:F7:9F:4A:1D:ED:8D:95:48:23:33:96:1D:02:64:FA:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3U3LVvefSh3tjZVIIzOWHQJk-qU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ab3e73-d13d-4ec2-bf3f-177b5ba32327/1/OoVDVxG6eEIG94Z042yxo9Bvgjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ab3e73-d13d-4ec2-bf3f-177b5ba32327/1/3U3LVvefSh3tjZVIIzOWHQJk-qU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.47.0/24
Signature Algorithm: sha256WithRSAEncryption
73:e9:3c:91:4f:4c:54:99:d0:7e:5f:d5:40:df:98:e9:eb:59:
31:33:3e:35:d4:1f:a9:1f:73:b2:c6:e9:2e:d0:0e:b2:c1:34:
f9:e6:a6:45:be:0d:86:e5:d2:a8:94:35:f2:21:c6:fd:de:7d:
39:d9:95:0c:5a:99:ff:3b:71:22:36:3b:e7:c2:04:fb:61:bd:
b1:47:21:3f:00:7c:4a:df:8d:93:fb:a6:dc:32:cb:f5:14:d0:
63:14:63:4c:5c:7a:48:3b:cc:5a:f8:8c:4a:0d:91:5f:45:b1:
9e:0c:08:24:22:79:02:65:5d:87:9d:17:87:b2:e9:74:4b:a1:
33:a3:3c:ab:37:89:85:b3:bd:e9:04:6f:ec:96:6a:98:98:2a:
25:10:d0:80:29:22:10:e4:62:7a:a7:1d:38:72:51:a8:77:8d:
6c:28:3b:b2:c2:9e:8f:b2:51:c6:9a:9f:77:e0:76:84:bd:86:
90:9c:5c:c3:4f:a6:69:eb:f3:f2:25:af:37:18:00:ed:99:17:
b5:69:fd:e7:60:54:5f:6d:c3:23:8f:36:70:5a:f4:d4:19:50:
a4:87:fb:7f:c6:12:f7:cd:d5:50:03:3d:8c:56:a9:c3:90:09:
7c:f2:e3:92:d9:7b:b7:04:11:ab:1c:53:14:0a:c0:69:87:fe:
f5:a4:07:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:55 2024 by rpki-client on console-fra.rpki-client.org