Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/OICCSg0PFbglRtC4vJbtcCt_2Nw.roa
File: OICCSg0PFbglRtC4vJbtcCt_2Nw.roa (raw, json)
Hash identifier: jZv0riZ51KSgN0lu5whbK75FmehdYh/LAPrz8lQprSY=
Subject key identifier: 38:80:82:4A:0D:0F:15:B8:25:46:D0:B8:BC:96:ED:70:2B:7F:D8:DC
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD523E9EDCF5A915D38FD7A78476277
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/OICCSg0PFbglRtC4vJbtcCt_2Nw.roa
Signing time: Mon 02 Jan 2023 00:15:17 +0000
ROA not before: Mon 02 Jan 2023 00:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48161
IP address blocks: 89.39.120.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:23:e9:ed:cf:5a:91:5d:38:fd:7a:78:47:62:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3880824a0d0f15b82546d0b8bc96ed702b7fd8dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:00:f3:e4:6a:9f:78:de:14:af:0d:e9:68:b9:
72:19:d8:55:17:75:93:48:f1:18:40:bd:10:3e:ca:
2a:08:7b:e4:03:5e:6b:41:f8:cb:e5:0a:e5:f0:eb:
06:b2:cb:e9:23:c2:ee:5c:c1:d8:06:3e:e7:7e:28:
1d:99:aa:69:e9:58:a9:ad:e6:f4:50:43:87:b2:6d:
e7:37:3a:3f:0b:6e:4c:75:d8:98:b8:42:6c:ce:fb:
c3:e2:79:8d:41:24:aa:ec:7f:e9:c1:f0:74:19:33:
74:21:47:ae:eb:dc:e6:7a:7e:54:27:d1:18:db:33:
80:c9:86:a9:13:b4:e0:96:ec:48:5e:e4:eb:8e:4b:
ae:83:a5:a2:61:ab:ac:82:a3:0e:cc:65:d1:0b:06:
5f:47:11:0e:5e:fe:df:d6:84:31:05:55:3a:19:42:
eb:a0:cb:0e:77:85:79:66:ba:6d:90:cc:db:88:54:
a3:0c:91:48:06:a6:ad:dc:81:79:5b:f2:fb:30:98:
de:cf:34:62:af:49:23:33:9e:27:d9:81:bb:8a:c1:
7a:2d:87:19:5c:d1:bb:fc:94:09:9e:79:62:3f:86:
21:61:50:36:cc:1e:94:37:fe:d7:65:fb:b4:03:1f:
51:66:95:62:61:3e:cb:4c:b2:0d:43:e7:0e:f6:a5:
e1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:80:82:4A:0D:0F:15:B8:25:46:D0:B8:BC:96:ED:70:2B:7F:D8:DC
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/OICCSg0PFbglRtC4vJbtcCt_2Nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.120.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:8a:0d:6b:d3:01:e5:97:89:26:8a:38:de:31:9b:23:13:d8:
7c:c9:f4:5f:d8:4b:5e:81:c8:eb:d8:6d:6e:dd:29:b2:27:a5:
16:a5:b5:56:8a:cc:38:6e:48:da:43:4e:ee:c7:f1:b1:7e:b8:
21:e0:62:d0:44:e6:8a:c4:91:d5:f5:59:a8:d5:d3:9e:56:a8:
25:a8:b5:14:d5:23:38:81:bb:d6:4e:e6:23:4a:01:4b:8f:1e:
5a:ad:70:fd:ff:37:8e:a3:b7:a5:ba:f3:5c:4c:89:e7:55:86:
30:1c:2a:43:41:30:a4:6d:61:6b:b3:53:94:7e:4b:a5:3a:39:
9c:dd:bc:37:f6:2e:6f:a6:dd:24:5c:90:b0:9b:bd:35:73:f0:
01:ee:6f:30:9b:ae:d1:c3:0c:de:83:bb:cc:17:d4:6a:6c:41:
26:4a:91:41:5b:b8:7c:60:f2:21:de:18:9a:81:f4:df:0e:02:
c3:01:4d:3b:bf:80:c2:46:ee:2e:5d:3e:99:dc:e9:d2:75:e8:
0d:2c:48:ef:b1:48:26:44:dd:ca:c9:91:e4:62:b2:26:f6:9e:
14:df:b7:f4:eb:fe:c8:3f:59:16:1a:b9:8d:f9:7e:87:ca:2f:
7b:71:ed:7d:d8:f0:63:14:ed:ad:ed:93:60:14:45:a3:70:93:
32:6b:5b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org