Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ofTvTb11aVWiaV_eXz1XvyaMQDo.roa
File: ofTvTb11aVWiaV_eXz1XvyaMQDo.roa (raw, json)
Hash identifier: fNlwqeU0GUUW9HW+yhocKQyUXLLhfhfASVNEBGs2i74=
Subject key identifier: A1:F4:EF:4D:BD:75:69:55:A2:69:5F:DE:5F:3D:57:BF:26:8C:40:3A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0189AC06666469E7EA3FCBF2118870BFF701
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ofTvTb11aVWiaV_eXz1XvyaMQDo.roa
Signing time: Mon 31 Jul 2023 12:57:27 +0000
ROA not before: Mon 31 Jul 2023 12:57:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 195.178.121.0/24 maxlen: 24
87.120.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Aug 2023 08:05:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ac:06:66:64:69:e7:ea:3f:cb:f2:11:88:70:bf:f7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 31 12:57:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1f4ef4dbd756955a2695fde5f3d57bf268c403a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3f:33:dd:3b:81:38:7c:cf:f4:e9:0e:c6:6d:
b3:81:7c:00:17:3a:7b:bb:25:33:f7:63:02:cf:43:
ea:a7:77:1d:78:f3:5e:b7:e1:79:6d:e6:33:f7:e4:
53:e9:36:37:49:40:23:f0:d7:45:9a:eb:1f:05:ef:
6e:aa:13:97:a5:6f:24:53:1a:0d:b5:22:09:60:4f:
08:16:05:ad:68:14:54:7b:e2:9e:b8:ae:dd:59:66:
cc:80:7f:49:84:9c:1a:8e:82:ac:c4:0a:0d:39:e4:
5d:71:ac:c4:b3:c7:a4:5a:44:ee:87:77:ba:68:70:
f8:a5:69:bf:02:c9:e6:80:d9:62:20:b1:dc:92:84:
7b:81:69:a5:60:c6:5f:f0:26:9a:41:2d:ab:66:07:
64:ca:47:45:31:96:58:e5:19:6b:d7:42:08:ac:70:
de:35:63:3d:d7:47:0e:a3:69:99:15:72:f0:31:d1:
30:7c:f0:90:88:25:f6:fb:8e:0e:cc:dc:0d:9d:59:
a4:66:f3:95:e2:fa:92:63:9d:16:d3:1a:b5:0e:a2:
4f:be:f4:53:8c:5e:61:59:b0:2c:1b:3c:43:1e:3a:
21:b4:6c:ed:44:13:bd:a9:d4:4a:9e:9b:6d:d6:f4:
8e:59:15:6a:2a:bc:17:d3:aa:b4:16:b5:3c:d3:9a:
ae:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F4:EF:4D:BD:75:69:55:A2:69:5F:DE:5F:3D:57:BF:26:8C:40:3A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ofTvTb11aVWiaV_eXz1XvyaMQDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.5.0/24
195.178.121.0/24
Signature Algorithm: sha256WithRSAEncryption
14:36:02:ba:72:3b:a3:76:11:10:c8:91:f2:12:28:3e:62:d3:
99:7c:ff:40:80:ca:20:33:09:cc:2d:21:ea:45:a8:07:6e:7f:
a7:30:17:e4:61:2f:ac:c0:9d:73:94:0b:d3:d2:ec:af:b2:8d:
74:ea:8d:43:2e:a5:fb:fe:5e:fb:08:f4:ad:51:f5:b1:d2:7c:
9e:4a:4e:91:a7:92:35:ec:24:96:23:ab:7b:9d:0a:39:22:3b:
48:89:76:2a:bf:04:cc:d3:f0:18:0d:bb:dc:a2:22:c6:44:85:
6f:96:0e:55:d1:c3:38:98:17:fd:b7:85:3c:10:80:8d:c6:95:
15:21:b0:78:5e:a0:b6:a2:92:6d:c7:1a:79:37:83:62:b9:d6:
8a:bd:6b:eb:41:a6:39:d0:62:9d:8e:28:99:48:8a:98:fe:f4:
04:5f:d7:8a:7c:86:f4:fb:d6:3c:71:37:bf:26:24:a3:f2:2a:
8e:90:a5:74:7d:46:f4:fc:c7:7e:bc:2a:d3:d0:7c:93:23:5a:
97:b8:4f:5f:47:43:75:61:38:19:77:ca:9d:69:f1:40:5b:40:
13:aa:d4:67:f3:bf:c5:3f:34:fd:ee:5a:f2:39:e5:ab:72:c2:
63:f4:d1:6f:5c:38:87:35:d8:ab:ab:85:b1:99:2f:50:8a:ae:
30:09:8d:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:43 2024 by rpki-client on console-ams.rpki-client.org