Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/0rdCSrXgRzXGlh0sjJ0nr1KkHhY.roa
File: 0rdCSrXgRzXGlh0sjJ0nr1KkHhY.roa (raw, json)
Hash identifier: QRdTDq02KGmH49qHL+XiuZ7iA/gJGjkuN5QxfaK1C2k=
Subject key identifier: D2:B7:42:4A:B5:E0:47:35:C6:96:1D:2C:8C:9D:27:AF:52:A4:1E:16
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD53B69B68129C19E0ECE18A3F9984D
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/0rdCSrXgRzXGlh0sjJ0nr1KkHhY.roa
Signing time: Mon 02 Jan 2023 00:15:23 +0000
ROA not before: Mon 02 Jan 2023 00:15:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59910
IP address blocks: 86.107.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:3b:69:b6:81:29:c1:9e:0e:ce:18:a3:f9:98:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2b7424ab5e04735c6961d2c8c9d27af52a41e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6c:fe:6a:8e:19:46:a8:82:03:34:96:51:c7:
9c:db:c6:28:b7:78:d0:ce:fd:75:59:4d:82:e3:04:
a2:95:ce:01:ff:dd:21:fd:92:0d:14:de:02:8b:74:
9a:ac:b7:52:ad:98:87:95:7c:95:66:17:80:45:6b:
0d:32:e4:0f:c6:fe:74:de:95:03:45:f8:6d:7d:b8:
32:a6:95:63:db:a7:13:47:29:f6:55:ec:d2:45:c8:
04:21:3a:8b:ab:de:33:64:9f:38:dc:5a:a4:76:5c:
23:04:8f:86:ee:ee:1b:d0:f5:d4:af:d0:77:37:5e:
ff:bb:da:4e:9e:36:89:e3:4c:14:90:72:ba:6a:08:
f3:56:a0:36:18:bd:e3:ee:8b:47:1b:7b:34:94:09:
4e:8d:7d:03:65:9e:e0:26:f7:0f:15:57:c2:91:8b:
71:55:2c:a4:51:fd:26:4c:0a:44:40:ff:85:e1:0f:
3a:be:4a:49:a1:68:a0:70:96:b4:69:4e:27:4f:88:
41:d0:7a:5e:81:8b:d6:aa:a1:e7:89:5d:e9:39:16:
51:15:6d:ee:43:ab:d7:90:f8:18:79:67:5e:0b:76:
64:a1:3a:0c:15:77:28:31:b7:98:88:f4:d4:06:19:
da:80:0f:23:34:21:3d:75:c2:db:67:1c:ea:f1:19:
af:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B7:42:4A:B5:E0:47:35:C6:96:1D:2C:8C:9D:27:AF:52:A4:1E:16
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/0rdCSrXgRzXGlh0sjJ0nr1KkHhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.111.0/24
Signature Algorithm: sha256WithRSAEncryption
30:89:b3:fe:65:75:c7:e3:45:25:6a:d9:b6:1e:12:c7:d9:03:
0a:34:4d:84:f7:cc:e0:b0:cf:5a:d9:27:e6:e4:6e:8f:b6:b5:
3d:40:c5:0c:f8:35:3b:d8:09:07:70:bb:f3:65:cc:da:21:56:
ec:fa:8b:1d:f0:e1:fc:e3:24:9f:99:87:a5:bf:21:61:72:73:
2c:11:ff:15:42:50:ee:64:8f:cf:c3:1d:90:e0:0c:31:81:cb:
e8:e4:74:7d:57:43:08:75:cf:90:e0:d2:83:4b:ba:64:63:63:
0c:53:6e:b8:f1:b1:c4:9b:0d:71:54:ee:3d:08:41:95:3c:d9:
98:ed:85:82:bb:d6:df:3b:d1:b9:2c:3e:36:8d:27:00:0c:63:
59:f0:f0:58:77:3e:3f:51:8b:01:3d:c8:ed:9d:3c:86:06:1e:
4f:2c:4f:b5:25:1e:6f:2a:0b:03:65:21:05:6f:66:78:66:a3:
eb:e9:8d:d6:9c:4c:a9:21:14:cc:52:bb:52:be:98:76:59:4f:
2c:0c:ca:05:56:12:66:44:f0:9a:be:7e:d4:9b:cb:7e:55:c0:
aa:82:fd:48:2d:77:2f:7c:5c:c4:e1:00:75:6d:27:c6:7e:1d:
f5:da:c7:a0:94:14:d8:46:88:fe:a6:5d:fe:6d:cb:4d:53:29:
70:d0:08:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org