Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/OYUI-lrCGn38GWBTCGtDLqBbbyk.roa
File: OYUI-lrCGn38GWBTCGtDLqBbbyk.roa (raw, json)
Hash identifier: MrVkPX/G6zL2fvtYlhvNA/3fiLinJUz91mLeqbmd/aw=
Subject key identifier: 39:85:08:FA:5A:C2:1A:7D:FC:19:60:53:08:6B:43:2E:A0:5B:6F:29
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F150C75C8701E9217390FC9C3436C61
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/OYUI-lrCGn38GWBTCGtDLqBbbyk.roa
Signing time: Sun 01 Jan 2023 20:45:28 +0000
ROA not before: Sun 01 Jan 2023 20:45:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205095
IP address blocks: 85.120.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:0c:75:c8:70:1e:92:17:39:0f:c9:c3:43:6c:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=398508fa5ac21a7dfc196053086b432ea05b6f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dd:fd:5f:5c:13:ac:66:26:22:83:1e:05:66:
36:5f:63:84:1a:a3:b1:94:15:bf:8d:b0:81:c8:2a:
cf:da:48:03:10:95:87:a0:db:3f:a2:22:65:c4:44:
5a:b6:40:23:7c:17:cc:ba:bc:91:08:0e:d4:4b:98:
2d:6a:52:58:5d:f2:68:37:25:2b:14:1d:89:5e:24:
ef:d0:58:74:ab:45:b6:69:90:76:87:e7:21:fe:e6:
e3:72:b2:25:34:c1:da:86:0a:0e:bd:26:26:d5:da:
5f:2c:5b:64:ba:02:cd:75:6d:52:e3:65:cb:ba:0e:
55:b9:22:76:a3:5d:00:b0:ea:fc:08:9b:c4:c6:4b:
d8:cb:ca:5e:0d:2b:17:9c:7d:f5:53:f0:20:c0:55:
a9:13:bc:58:0a:f1:4f:d1:7a:af:62:3b:4e:2c:77:
c7:3e:89:a7:ca:1b:d2:fa:6b:6f:68:03:ea:3d:94:
a4:59:04:ba:df:e0:99:5b:a2:4b:4a:77:c0:83:70:
d2:9c:0f:aa:67:a1:68:65:20:e1:c5:03:a5:cb:13:
68:f2:cb:9c:61:a1:b4:af:3e:8e:9d:c8:5f:ab:00:
8e:55:c5:d1:41:01:17:60:1d:0a:a5:9c:8d:d3:bc:
0c:70:5d:a7:5b:20:42:e7:51:fb:c7:c1:d6:6b:0c:
22:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:85:08:FA:5A:C2:1A:7D:FC:19:60:53:08:6B:43:2E:A0:5B:6F:29
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/OYUI-lrCGn38GWBTCGtDLqBbbyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.57.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:e2:30:18:41:22:11:4b:4a:b9:12:c5:46:4b:ab:af:fe:c0:
b9:67:b8:78:c5:04:87:1a:f9:96:f5:1d:4d:84:fa:5b:1c:ed:
a2:a6:f0:1b:28:07:d2:d4:f9:b6:46:75:25:ec:8f:43:39:ce:
ca:9c:8a:1d:42:09:5d:39:9c:5c:07:64:a0:94:48:45:39:30:
9c:f1:83:b6:2f:82:05:db:14:cc:5a:03:a1:38:4c:77:ec:6f:
44:b8:82:e5:90:30:49:ec:50:ac:07:5f:25:30:bd:e0:65:14:
82:e7:9c:1d:04:0c:17:e4:82:49:3f:84:c1:df:69:94:01:7a:
0d:3d:31:a6:0d:10:11:fb:5d:3c:52:76:83:88:4d:84:5c:12:
5d:b7:61:3a:55:85:31:78:fe:f3:dd:51:e4:cf:7f:19:ce:f8:
d1:3a:28:6f:10:59:a2:fd:6f:a2:5e:ef:c2:5d:78:b6:6d:dd:
fd:9c:2a:56:10:02:9b:ea:3d:08:1c:7c:68:de:33:42:4a:15:
37:a8:27:d9:c4:7c:be:27:0c:99:ab:ad:3f:ec:ae:38:62:4c:
9a:91:93:87:ec:31:58:95:99:19:dc:b0:d9:b5:e7:6e:0b:f7:
2c:ee:f1:0f:c9:b4:dd:40:b0:d3:d9:9a:43:29:ba:99:d2:9b:
1d:2c:76:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org