Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/oGWnVpa20nFOqqwPBThmejXoQxw.roa
File: oGWnVpa20nFOqqwPBThmejXoQxw.roa (raw, json)
Hash identifier: ZMoKZL4bckztWy/49FSy4R48p/Ptmqr8nSg3CCZkius=
Subject key identifier: A0:65:A7:56:96:B6:D2:71:4E:AA:AC:0F:05:38:66:7A:35:E8:43:1C
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0186AB67EE8627DD23BC7BEA1ABC6764CB3D
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/oGWnVpa20nFOqqwPBThmejXoQxw.roa
Signing time: Sat 04 Mar 2023 06:56:00 +0000
ROA not before: Sat 04 Mar 2023 06:56:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147001
IP address blocks: 82.115.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Jun 2023 10:47:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ab:67:ee:86:27:dd:23:bc:7b:ea:1a:bc:67:64:cb:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 4 06:56:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a065a75696b6d2714eaaac0f0538667a35e8431c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:29:8c:d6:b9:67:03:5d:af:08:ee:6f:03:d3:
49:a3:b2:05:e4:b9:77:ba:80:11:5c:1e:26:ee:3a:
e1:a3:43:e7:b7:6d:60:2f:81:a9:a1:fa:a6:12:16:
14:a3:c5:d1:f8:c0:35:43:0b:49:c5:0a:2f:c0:8c:
ae:7f:39:13:ee:9f:1a:cc:c5:1a:ed:ac:9d:d0:e1:
96:48:64:e6:d7:16:f1:24:4b:2f:3a:4b:d5:ee:19:
b7:18:fc:e1:09:01:d5:ac:3c:6c:d7:50:08:ab:d0:
12:ac:10:40:d0:3f:37:76:28:e1:e9:24:80:23:7a:
61:d5:af:e7:3b:3f:8a:3a:8c:5e:a3:f2:a7:51:76:
fb:dc:6b:f8:78:0f:bb:7d:cd:36:19:63:06:88:57:
3d:c2:a0:bd:35:93:82:fe:cd:01:49:be:7a:b0:d6:
e8:04:1f:78:39:10:c5:82:39:af:c6:c0:3d:2f:67:
9e:52:4b:48:a5:d0:38:64:71:b4:dc:32:35:5d:32:
b4:34:2a:3b:d3:33:2b:20:1a:1d:3a:3c:ae:eb:83:
b7:d7:a9:77:04:f0:6e:77:0f:a4:d5:d8:72:07:f2:
51:d7:36:d6:a0:5d:b6:02:5e:da:6c:0e:50:7f:b8:
23:06:e6:51:cd:f5:4d:7d:bd:1c:52:6b:f3:04:5f:
96:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:65:A7:56:96:B6:D2:71:4E:AA:AC:0F:05:38:66:7A:35:E8:43:1C
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/oGWnVpa20nFOqqwPBThmejXoQxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.13.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:20:7a:12:41:74:bd:40:ce:68:d3:b3:2c:cd:64:4a:33:4f:
95:2d:35:4f:05:b2:0d:d0:1d:cd:ef:4a:3d:53:54:38:25:e8:
eb:e2:55:5f:76:d9:2b:71:18:75:d9:50:b5:9f:cd:78:9a:a7:
ea:6a:f0:c9:35:46:37:d4:8e:77:46:aa:dc:21:8a:6e:23:00:
78:07:c1:47:76:76:7b:00:f3:b3:dd:a6:24:97:a4:36:28:22:
c3:71:9b:d9:79:8e:ff:f9:b5:6f:74:20:87:bf:59:31:ba:ab:
c4:de:cc:d8:21:29:72:da:d3:d8:cb:1b:46:75:01:a8:76:2b:
39:07:89:1d:80:2d:4e:0d:df:51:76:d4:5a:e6:16:27:93:9b:
3d:56:dd:f7:a2:b6:4a:d5:a3:ef:7d:d4:2b:29:b6:b9:cf:4a:
32:a4:94:2e:36:a3:55:3f:18:e6:9b:b7:9c:c7:3d:ba:ff:a0:
bb:79:4c:64:4d:16:6a:80:88:b6:2c:80:d0:4e:5d:91:ca:b9:
f1:b8:ed:4a:78:4d:5b:05:b1:6c:d0:2c:85:f4:9c:91:45:61:
e7:88:f5:ea:96:89:ee:23:b4:6d:6e:e9:58:81:6b:95:a6:e6:
28:e7:8b:f2:60:ea:03:d1:c8:01:8c:16:43:1e:c3:bc:4c:74:
ec:91:cd:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org