Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/58b8e2-1215-4bb0-96df-2f08380ae6c7/1/oUGPF74-QR1P7SfutNpv82hgL7U.roa
File: oUGPF74-QR1P7SfutNpv82hgL7U.roa (raw, json)
Hash identifier: nlFDLaQGsWgdCNy97u8huVQIbJfElzLdXtjI/4NHuIU=
Subject key identifier: A1:41:8F:17:BE:3E:41:1D:4F:ED:27:EE:B4:DA:6F:F3:68:60:2F:B5
Certificate issuer: /CN=f0a32d2129a386c9a0afdbb915e0dbf130ba70d5
Certificate serial: 0189971167F1D2B6A38004AD26F158B69E60
Authority key identifier: F0:A3:2D:21:29:A3:86:C9:A0:AF:DB:B9:15:E0:DB:F1:30:BA:70:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KMtISmjhsmgr9u5FeDb8TC6cNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/58b8e2-1215-4bb0-96df-2f08380ae6c7/1/oUGPF74-QR1P7SfutNpv82hgL7U.roa
Signing time: Thu 27 Jul 2023 11:17:27 +0000
ROA not before: Thu 27 Jul 2023 11:17:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42707
IP address blocks: 91.198.170.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 27 Jul 2023 12:41:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:11:67:f1:d2:b6:a3:80:04:ad:26:f1:58:b6:9e:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a32d2129a386c9a0afdbb915e0dbf130ba70d5
Validity
Not Before: Jul 27 11:17:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1418f17be3e411d4fed27eeb4da6ff368602fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b4:25:2b:7b:01:8f:d0:eb:6a:2f:0b:0e:87:
aa:8b:dd:5a:72:94:8a:f6:ea:21:d3:35:d0:dc:2c:
ed:c1:81:01:c1:f3:7a:32:b0:56:30:0a:21:71:10:
c5:e2:95:66:3c:0c:b7:99:88:5f:c9:57:b9:1e:cb:
8b:02:18:ca:28:f0:3d:7c:4e:4d:da:3d:aa:26:c4:
d1:a1:54:28:80:08:0d:a9:1e:8c:04:9c:fd:ad:b5:
b9:a5:38:54:1e:1c:a5:59:20:6d:19:96:73:38:58:
7b:31:6b:3f:e0:50:ba:75:7b:7d:d3:56:a6:ab:04:
36:f5:74:b0:e6:83:36:ff:62:9e:df:e3:6c:22:52:
18:5e:e4:e1:00:87:b9:c2:ee:ee:25:e7:fa:21:1e:
9e:20:9c:35:67:0e:89:1e:7e:59:8d:e5:8e:b4:cd:
a0:cf:7a:0f:92:78:dc:b6:70:a7:35:a8:ce:db:91:
01:5a:d5:d2:b0:59:fb:35:e0:25:34:d1:a8:75:18:
25:58:92:1d:06:bf:13:31:c2:46:0a:26:59:f8:3b:
e5:f4:d8:13:f6:ee:e4:95:32:85:3a:b9:3a:b8:12:
df:f2:7f:38:e7:3b:3e:4e:01:39:2a:08:98:2f:e6:
1b:00:36:98:61:72:20:92:dc:a8:ef:fa:c6:ba:30:
d7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:41:8F:17:BE:3E:41:1D:4F:ED:27:EE:B4:DA:6F:F3:68:60:2F:B5
X509v3 Authority Key Identifier:
keyid:F0:A3:2D:21:29:A3:86:C9:A0:AF:DB:B9:15:E0:DB:F1:30:BA:70:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KMtISmjhsmgr9u5FeDb8TC6cNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/58b8e2-1215-4bb0-96df-2f08380ae6c7/1/oUGPF74-QR1P7SfutNpv82hgL7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/58b8e2-1215-4bb0-96df-2f08380ae6c7/1/8KMtISmjhsmgr9u5FeDb8TC6cNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.170.0/23
Signature Algorithm: sha256WithRSAEncryption
82:e9:bd:d5:44:e9:e0:c2:67:2c:8e:dc:cf:f0:8d:b4:8e:5e:
58:99:fa:a3:98:cb:27:3b:f0:84:8b:cc:a2:17:30:30:48:25:
1e:c2:ef:d6:86:b0:98:af:e0:ee:e6:f1:6e:87:e3:8b:21:0b:
54:49:c3:c9:a1:b1:5d:85:44:3c:89:77:e3:46:51:90:01:da:
68:b7:d3:ac:e6:8f:a8:e7:c3:33:2a:75:e3:0a:0d:1f:12:bf:
db:d0:60:4b:da:fb:33:93:49:81:b4:a9:b7:e1:f7:38:fa:2a:
a5:bb:9c:8f:a3:7c:78:5a:bb:86:6c:8f:77:e5:84:83:a4:65:
93:6e:69:54:d9:63:7a:6c:eb:63:7c:53:bc:0f:93:09:78:3f:
fe:50:07:18:40:04:8e:05:df:5d:10:a2:3e:59:e8:8d:95:1e:
37:74:5b:9b:3d:dc:f1:1f:d2:f8:b0:76:96:5a:d5:5f:e1:f4:
7a:68:7a:f7:59:8c:1c:be:81:38:f6:72:60:96:70:2d:5e:da:
f1:2e:ab:50:b6:06:78:c9:94:82:99:8c:41:6e:18:fa:c4:84:
71:9e:00:14:26:91:f3:c5:d1:99:cd:f6:20:f8:38:55:1a:56:
33:16:7e:6e:28:b7:5c:df:96:b1:bc:d1:fd:c4:41:2d:36:41:
05:82:7e:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:49 2024 by rpki-client on console-fra.rpki-client.org