Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/bb3c6b-cd92-422f-9518-01652576f5a2/1/ozlMpY7pgQAf2zTePMk0G0g3hiI.roa
File: ozlMpY7pgQAf2zTePMk0G0g3hiI.roa (raw, json)
Hash identifier: EksRyQh3S5Cmn8hWtxy2t/PV+nrWx8JxPJ4elOrkLQ8=
Subject key identifier: A3:39:4C:A5:8E:E9:81:00:1F:DB:34:DE:3C:C9:34:1B:48:37:86:22
Certificate issuer: /CN=7a3bcb40a1c8c8f9f758dcde1c2907938d86852f
Certificate serial: 0188D3FF9F3CB7EEC4F6D6C5801714FB78F1
Authority key identifier: 7A:3B:CB:40:A1:C8:C8:F9:F7:58:DC:DE:1C:29:07:93:8D:86:85:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejvLQKHIyPn3WNzeHCkHk42GhS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/bb3c6b-cd92-422f-9518-01652576f5a2/1/ozlMpY7pgQAf2zTePMk0G0g3hiI.roa
Signing time: Mon 19 Jun 2023 14:12:05 +0000
ROA not before: Mon 19 Jun 2023 14:12:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31467
IP address blocks: 83.137.104.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d3:ff:9f:3c:b7:ee:c4:f6:d6:c5:80:17:14:fb:78:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a3bcb40a1c8c8f9f758dcde1c2907938d86852f
Validity
Not Before: Jun 19 14:12:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3394ca58ee981001fdb34de3cc9341b48378622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:45:4d:be:04:b0:21:e5:31:27:90:19:0b:e7:
a0:a5:fa:08:c6:4f:a6:39:03:27:c5:96:85:d0:7b:
7a:00:2f:ec:0b:f5:e7:a1:00:69:b8:9f:13:2c:be:
ee:59:3a:66:35:24:46:29:f9:02:b3:c0:90:06:ce:
8b:31:45:06:1b:9a:27:1f:bd:92:c4:71:cc:a2:74:
42:69:f4:42:fb:62:87:62:40:2d:db:08:a5:c7:35:
0b:1f:85:01:29:a5:18:33:5a:7d:41:42:70:32:95:
0c:aa:0f:f7:37:44:a2:05:df:7b:ca:96:25:72:d5:
6d:83:92:68:13:64:03:4b:61:54:f2:a7:24:c0:22:
49:3f:18:49:14:e6:cd:99:d2:45:3a:96:a2:4a:84:
b7:4b:0a:eb:ea:2e:9a:18:4a:13:29:27:b4:8e:cf:
eb:b7:2f:b0:69:c0:3b:b1:e5:a0:8e:34:00:a0:b7:
5e:73:a5:50:d7:0a:e0:af:85:90:a1:16:e1:3d:b2:
9e:f6:c2:1d:49:95:23:82:43:be:5f:31:e5:a9:6d:
b1:8f:d8:64:df:2a:e2:40:d0:e5:fc:df:92:88:c4:
70:89:b5:94:ca:74:c0:56:ca:f4:b5:0a:1c:86:02:
d5:a8:76:70:6b:9f:5a:de:98:d5:06:dd:70:08:24:
fc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:39:4C:A5:8E:E9:81:00:1F:DB:34:DE:3C:C9:34:1B:48:37:86:22
X509v3 Authority Key Identifier:
keyid:7A:3B:CB:40:A1:C8:C8:F9:F7:58:DC:DE:1C:29:07:93:8D:86:85:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejvLQKHIyPn3WNzeHCkHk42GhS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bb3c6b-cd92-422f-9518-01652576f5a2/1/ozlMpY7pgQAf2zTePMk0G0g3hiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bb3c6b-cd92-422f-9518-01652576f5a2/1/ejvLQKHIyPn3WNzeHCkHk42GhS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.104.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:8d:2d:bc:22:e2:a5:04:90:25:51:fe:cf:66:2b:81:09:98:
8d:25:7c:f5:b7:b0:d2:6b:0b:0f:06:b1:5c:8a:27:83:ec:96:
b6:f4:18:bb:d0:1b:3f:4a:20:2f:f5:ba:a0:a4:8d:f2:3c:8f:
f0:49:b8:35:18:bb:9d:73:62:33:17:8a:a6:b4:d1:c5:68:d8:
05:53:78:68:fd:ed:c2:d8:3c:2c:02:25:a8:0f:64:1b:dd:62:
77:cb:73:56:2a:d9:0a:4b:9a:8a:08:4e:58:9d:9d:08:4b:eb:
cf:23:d0:3b:6c:a6:d0:5e:9c:47:0a:36:1a:32:96:64:10:2f:
c1:fe:1f:85:79:18:53:06:fc:f6:41:df:6a:3a:3e:64:b9:e8:
8f:d9:f6:f8:dd:31:00:c2:84:31:f8:f8:75:00:d5:2a:84:e1:
5f:52:6e:bb:cd:ef:e9:c5:aa:27:b1:13:51:23:1b:41:d5:23:
80:8e:59:9a:fd:b7:33:61:7d:77:b9:d8:44:f7:b7:e5:e2:6e:
68:d6:16:2f:b0:3d:59:37:2d:8e:10:c1:98:f9:45:c9:d5:9d:
b0:76:e6:01:80:38:27:b0:2e:0b:c9:a6:4e:8c:18:50:da:cd:
78:e6:6c:1c:72:a1:ac:15:db:ba:a5:f0:74:11:83:80:75:5f:
91:f8:a5:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:22 2024 by rpki-client on console-fra.rpki-client.org