Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/ONgkKMHwLgiv8dqaoJMmkJjd640.roa
File: ONgkKMHwLgiv8dqaoJMmkJjd640.roa (raw, json)
Hash identifier: rbo6Ki9Xh9YKVxV1MPg7I3hGfAZz2yCbNlJD0Sz7Ydk=
Subject key identifier: 38:D8:24:28:C1:F0:2E:08:AF:F1:DA:9A:A0:93:26:90:98:DD:EB:8D
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 018DEC1BE7EFDA2FF7A04D4CB76C94411E2A
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/ONgkKMHwLgiv8dqaoJMmkJjd640.roa
Signing time: Tue 27 Feb 2024 19:47:48 +0000
ROA not before: Tue 27 Feb 2024 19:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 327909
IP address blocks: 213.198.6.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 16:26:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ec:1b:e7:ef:da:2f:f7:a0:4d:4c:b7:6c:94:41:1e:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Feb 27 19:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38d82428c1f02e08aff1da9aa093269098ddeb8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3b:bc:8c:3e:aa:d8:e3:6d:41:a2:57:67:d7:
33:f1:c1:96:b6:73:82:32:8c:04:4f:7c:a2:f7:e3:
4f:a8:4a:4a:d1:db:be:2e:73:dc:3f:f6:f9:38:a8:
b7:c8:39:14:c3:5e:c8:bc:08:2a:c7:5f:3f:41:c7:
0e:d6:38:45:fd:b9:11:ed:50:0d:d7:71:01:fe:1e:
84:f9:57:18:c0:bc:e2:6c:0b:09:97:d0:33:be:b8:
be:c0:5f:36:85:f2:08:74:4b:35:bb:0b:5a:5a:4c:
0b:88:a3:65:16:89:8e:c1:e8:3f:03:d6:43:9b:d5:
c8:91:d5:6c:74:29:1b:e6:40:e3:92:fc:e0:70:e8:
5e:eb:8f:16:32:0f:4e:b0:f1:0b:0c:70:73:4a:d7:
b5:e3:9b:7d:ee:78:6d:8e:4e:6e:d8:16:8c:3c:e0:
f8:0d:ae:f4:a3:ed:d9:12:6c:28:af:f6:5c:ee:00:
6c:9d:e7:ff:00:00:22:06:d5:e0:cd:9c:77:aa:36:
f1:ce:d4:ad:54:95:f0:7d:81:93:c2:1c:9b:c5:1d:
7b:4d:81:a4:c8:c3:a5:57:06:e6:58:5d:82:5e:16:
6e:ee:ec:37:72:cc:c2:9c:7c:2b:70:a4:f4:56:ac:
5c:55:6b:84:9d:02:8d:ff:69:ad:f4:2a:7a:47:77:
6f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:D8:24:28:C1:F0:2E:08:AF:F1:DA:9A:A0:93:26:90:98:DD:EB:8D
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/ONgkKMHwLgiv8dqaoJMmkJjd640.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.198.6.0/23
Signature Algorithm: sha256WithRSAEncryption
78:73:63:38:a6:42:05:9c:ad:2c:29:d6:0e:59:0f:b4:3b:f6:
8d:c2:a5:74:23:64:bd:5a:24:35:8c:00:c2:15:3d:96:de:c8:
84:6b:bd:50:d6:b1:1e:4d:07:1b:ff:b7:17:b9:53:5f:28:f3:
e1:66:be:d3:c2:b4:b5:e6:8e:c3:8a:73:8c:ea:a5:8a:9b:b4:
95:f9:94:c7:e3:58:9e:0b:c8:a9:f2:c2:6f:26:f5:47:e5:b7:
a3:79:46:e6:e9:32:24:10:7c:92:b7:5f:ca:b9:8d:2e:35:15:
dc:8d:aa:87:49:da:ba:1d:e2:ae:a3:ef:94:cf:d9:dd:2c:52:
1d:e2:4f:40:8c:bb:ef:03:a0:00:13:06:dd:32:4f:11:b5:f4:
6b:bd:c9:09:2b:45:b5:6b:d3:f6:0e:82:d4:0e:a2:a6:f3:f3:
4e:fc:01:59:bd:3c:35:94:e0:7b:b6:0c:85:00:8c:df:46:bb:
13:33:e6:bc:f7:72:88:3c:bd:a0:a2:de:84:1f:97:84:f9:b6:
cc:19:16:a6:a5:23:b2:ad:fb:dc:0a:60:9c:e4:79:d6:85:c9:
f2:75:d6:50:2b:a5:74:48:d5:b6:76:ef:42:de:9a:41:cf:8c:
b8:18:eb:4a:26:fe:d9:5a:78:44:9e:75:06:f4:42:5d:db:b6:
c4:02:7c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:03 2024 by rpki-client on console-ams.rpki-client.org