Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/o-vij_G1od56xRuIIy_gjsq2pyw.roa
File: o-vij_G1od56xRuIIy_gjsq2pyw.roa (raw, json)
Hash identifier: phnE51HaLqFtxvf6r0Qp5Igi0NWLX9utuU+CJF1BJ9Q=
Subject key identifier: A3:EB:E2:8F:F1:B5:A1:DE:7A:C5:1B:88:23:2F:E0:8E:CA:B6:A7:2C
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0186DEA31171B1560FCDFF4073AFC821C59A
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/o-vij_G1od56xRuIIy_gjsq2pyw.roa
Signing time: Tue 14 Mar 2023 05:41:14 +0000
ROA not before: Tue 14 Mar 2023 05:41:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51765
IP address blocks: 82.97.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 May 2023 10:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:de:a3:11:71:b1:56:0f:cd:ff:40:73:af:c8:21:c5:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 14 05:41:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3ebe28ff1b5a1de7ac51b88232fe08ecab6a72c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c4:6c:73:c7:a5:cc:2f:d7:49:be:41:ee:e1:
0d:9a:71:04:15:b5:27:32:25:03:53:1d:06:1c:86:
ef:1e:43:e6:4e:98:dc:f6:5b:68:8d:b6:63:46:b4:
b1:9c:58:ce:24:81:6f:80:b5:f4:44:ce:3d:c4:65:
60:73:69:5a:ff:5d:90:33:a9:39:24:45:dc:74:80:
65:e8:bf:3a:66:ea:62:76:29:f0:ff:16:cd:70:4a:
a9:5f:2b:98:53:53:fa:fa:8f:fb:c9:c3:9c:be:27:
7a:f2:82:cb:38:f0:6a:9c:af:70:00:fb:dd:35:40:
01:86:f3:a2:39:c3:1c:31:37:0a:d4:9d:23:49:85:
00:6c:b3:f0:a8:e8:ea:9f:4b:60:b1:05:79:94:0b:
f5:8c:79:cf:e9:81:c0:35:ee:9f:a9:3c:c4:1b:29:
2c:79:53:7d:bf:2e:2b:a8:21:91:64:46:79:16:9f:
1d:69:97:72:66:fc:6e:5b:a1:ea:1b:9e:e4:76:d3:
7c:68:c7:e0:2e:6c:50:f4:63:77:ee:2d:7d:c8:33:
d3:ce:ba:07:b0:51:a7:db:1b:e0:8c:a2:c3:1e:8a:
cd:70:aa:8b:38:69:67:c4:57:b6:1c:ce:d6:8f:5f:
9a:2d:50:08:32:7c:c6:61:0f:88:e0:01:35:ed:72:
6e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:EB:E2:8F:F1:B5:A1:DE:7A:C5:1B:88:23:2F:E0:8E:CA:B6:A7:2C
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/o-vij_G1od56xRuIIy_gjsq2pyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.97.240.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:d0:84:88:74:13:48:ea:79:52:e7:c7:00:f1:5a:09:48:54:
0f:05:0b:78:33:c0:6a:22:9c:d6:47:61:8f:2a:b8:16:4f:07:
f8:d2:0d:ed:bb:4c:ce:28:87:c4:ea:e5:ad:75:46:09:cd:4f:
52:a9:d2:19:26:8d:2a:08:cf:4f:59:7b:bc:a8:63:d3:48:3f:
b2:3e:4c:51:13:0b:21:e7:3a:37:96:3e:69:81:72:31:9b:31:
19:5d:b9:fd:56:a0:a2:c6:5d:c0:6f:01:c7:66:22:ff:63:de:
7b:79:9e:2e:dd:dd:91:62:f9:76:bf:d2:8b:9c:1a:b3:85:e6:
09:b4:2f:fc:c3:5d:8c:aa:f9:68:30:e3:b5:92:ac:46:5e:b1:
be:b2:69:a0:7c:48:46:00:11:b3:89:f4:8a:85:26:db:13:3f:
8a:e3:85:b5:03:76:04:05:d6:fa:16:4e:eb:82:55:9e:da:c4:
75:c7:f7:13:4e:43:0d:d7:2f:69:d3:4b:bf:9d:3a:ba:21:93:
31:b3:f8:21:ad:bf:39:54:3e:d8:83:5e:cb:b3:45:67:3f:dd:
a4:fd:4a:ae:6e:31:f8:8f:9c:6a:d1:7f:a1:03:42:65:7b:59:
69:bf:8a:25:63:88:4e:74:98:0a:59:08:cb:1e:83:76:93:9a:
26:7c:87:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:16 2024 by rpki-client on console-ams.rpki-client.org