Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/OQuWYfBJO6AzuYeJe-83S61IK3Y.roa
File: OQuWYfBJO6AzuYeJe-83S61IK3Y.roa (raw, json)
Hash identifier: UvByxSZg5pW7oohD2XT9NpQtPXorTugQlH+U/ilSTos=
Subject key identifier: 39:0B:96:61:F0:49:3B:A0:33:B9:87:89:7B:EF:37:4B:AD:48:2B:76
Certificate issuer: /CN=5fe58e732a0f71f4f01302d62167173bd9b17cc1
Certificate serial: 01856E0B115968D88C00142D79D620F142D4
Authority key identifier: 5F:E5:8E:73:2A:0F:71:F4:F0:13:02:D6:21:67:17:3B:D9:B1:7C:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X-WOcyoPcfTwEwLWIWcXO9mxfME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/OQuWYfBJO6AzuYeJe-83S61IK3Y.roa
Signing time: Sun 01 Jan 2023 15:54:57 +0000
ROA not before: Sun 01 Jan 2023 15:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6085
IP address blocks: 57.55.0.0/16 maxlen: 16
57.50.0.0/16 maxlen: 16
57.226.0.0/16 maxlen: 16
57.18.0.0/16 maxlen: 16
57.2.0.0/16 maxlen: 16
57.13.0.0/16 maxlen: 16
57.61.0.0/16 maxlen: 16
57.192.0.0/16 maxlen: 16
57.0.0.0/16 maxlen: 16
57.16.0.0/16 maxlen: 16
57.27.0.0/16 maxlen: 16
57.54.0.0/16 maxlen: 16
57.33.0.0/16 maxlen: 16
57.49.0.0/16 maxlen: 16
57.17.0.0/16 maxlen: 16
57.52.0.0/16 maxlen: 16
57.63.0.0/16 maxlen: 16
57.19.0.0/16 maxlen: 16
57.3.0.0/16 maxlen: 16
57.62.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:11:59:68:d8:8c:00:14:2d:79:d6:20:f1:42:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fe58e732a0f71f4f01302d62167173bd9b17cc1
Validity
Not Before: Jan 1 15:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=390b9661f0493ba033b987897bef374bad482b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:32:28:4c:51:35:6c:36:a2:da:38:49:12:24:
50:31:dd:5d:df:ba:dc:93:af:ca:08:16:5b:03:3e:
11:f1:4f:67:8d:e3:94:13:00:5b:ed:b7:50:d0:1b:
22:4e:84:44:56:7f:39:6a:12:97:d5:6b:13:38:d6:
b0:3f:0f:ae:36:1f:53:7f:72:03:a2:f8:91:ca:14:
13:b9:c3:1f:9d:29:63:bc:a6:57:4e:32:08:88:8e:
fa:49:af:3b:fa:f4:7d:bb:11:64:6f:b0:2e:f1:8c:
bc:f4:f5:bd:65:33:be:e8:56:e6:4a:98:dd:6d:0d:
0e:31:90:4f:b0:f8:79:6f:89:b6:37:70:a9:b9:fe:
e4:93:b8:fd:cb:5d:99:6e:e9:0b:de:eb:69:d4:9c:
86:d3:83:89:d9:71:78:94:56:dd:c2:26:bf:e9:ad:
96:27:bc:51:44:8d:2f:a5:28:d9:76:3d:8b:15:38:
08:4c:fe:28:12:f9:80:62:fb:30:1f:84:01:b4:a3:
51:dc:cf:62:1c:7c:a4:a3:25:c6:ed:5b:58:18:62:
72:39:ff:6f:d2:fa:d6:b4:3c:c0:73:2c:87:b7:82:
9e:ec:6f:5e:49:3f:96:e8:90:00:3f:2a:0f:05:dd:
d3:50:15:af:1f:65:d2:3e:aa:25:5c:8e:97:3f:7a:
58:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:0B:96:61:F0:49:3B:A0:33:B9:87:89:7B:EF:37:4B:AD:48:2B:76
X509v3 Authority Key Identifier:
keyid:5F:E5:8E:73:2A:0F:71:F4:F0:13:02:D6:21:67:17:3B:D9:B1:7C:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X-WOcyoPcfTwEwLWIWcXO9mxfME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/OQuWYfBJO6AzuYeJe-83S61IK3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/X-WOcyoPcfTwEwLWIWcXO9mxfME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.0.0.0/16
57.2.0.0/15
57.13.0.0/16
57.16.0.0/14
57.27.0.0/16
57.33.0.0/16
57.49.0.0-57.50.255.255
57.52.0.0/16
57.54.0.0/15
57.61.0.0-57.63.255.255
57.192.0.0/16
57.226.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a8:92:7c:72:0f:9f:e0:3d:12:7a:6a:b6:40:d3:79:4e:d6:61:
2b:c0:84:04:62:18:b9:96:7b:37:7d:12:c6:46:86:9e:c3:96:
e5:9b:a7:15:0e:69:7a:35:50:1a:f5:6f:ed:73:93:d2:47:6b:
d7:43:97:7d:e7:ee:cf:22:8c:31:7d:78:35:13:c1:b2:15:7f:
9d:6d:21:17:a8:7d:90:a9:f4:e4:b5:8b:65:dd:6a:44:a0:51:
cb:a8:da:28:54:22:58:b9:44:8f:9a:a0:a6:4e:4f:f9:9a:a4:
d5:e3:30:57:0c:4c:4b:96:50:46:86:5f:ea:8e:95:32:2e:a6:
38:d7:8e:8c:ff:57:4e:15:68:dc:bd:08:16:9a:4d:bd:18:b8:
7a:6c:5d:3a:ee:ee:15:dc:10:40:93:1a:b3:6d:28:5a:9f:f2:
88:55:98:10:e8:ad:7a:17:05:0b:56:c3:1b:ab:42:81:4d:58:
69:9f:5f:d8:a3:af:81:d3:d7:1b:e6:c8:29:ad:23:05:21:06:
ab:c1:c9:0f:36:4e:b1:6c:0e:49:dc:3e:ca:44:f3:0f:f6:94:
58:b1:9c:16:64:b2:dd:d0:4d:e0:98:7b:f2:6a:1d:99:fa:fb:
d2:9c:6e:03:1a:50:79:9e:de:f0:51:87:32:0e:d3:c0:d3:87:
e8:57:ba:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:44 2024 by rpki-client on console-fra.rpki-client.org