Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/OFGAdYMJTIU-P-EoUWpURcjQXSk.roa
File: OFGAdYMJTIU-P-EoUWpURcjQXSk.roa (raw, json)
Hash identifier: pEGXhgtXjA/7jO9nOYKg/l+yAXJnK5khdQOlnOuGvM8=
Subject key identifier: 38:51:80:75:83:09:4C:85:3E:3F:E1:28:51:6A:54:45:C8:D0:5D:29
Certificate issuer: /CN=bda96d02a822f46253c2aee680441d5ac27c3df5
Certificate serial: 018F4117E7D3CC9C1897DEF2D86C99C800C8
Authority key identifier: BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/OFGAdYMJTIU-P-EoUWpURcjQXSk.roa
Signing time: Sat 04 May 2024 00:53:56 +0000
ROA not before: Sat 04 May 2024 00:53:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59676
IP address blocks: 31.13.6.0/24 maxlen: 24
193.105.150.0/24 maxlen: 24
2a00:10e8:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:41:17:e7:d3:cc:9c:18:97:de:f2:d8:6c:99:c8:00:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda96d02a822f46253c2aee680441d5ac27c3df5
Validity
Not Before: May 4 00:53:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3851807583094c853e3fe128516a5445c8d05d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:09:b4:80:ad:d3:1e:4c:2c:9e:13:ad:ac:51:
02:30:d3:8a:bd:ad:8b:d5:9b:e6:8b:5b:ba:99:73:
48:7b:20:0c:1e:95:6b:5c:80:ed:42:7b:b6:2f:95:
58:ba:15:5c:94:ff:e9:e3:1a:d8:76:8a:e2:75:92:
6f:fb:ab:90:bb:7f:38:2d:d6:f8:f5:c7:46:be:c0:
77:4d:77:a7:2e:3b:29:90:8f:d7:12:7c:93:19:7c:
e3:1c:f3:52:a0:e0:50:fb:d0:7d:ed:a8:92:8d:25:
00:b6:ab:d9:e6:48:66:bb:99:ee:96:93:c6:bc:95:
e6:be:5a:16:88:3d:7a:69:14:76:c1:fa:88:1f:14:
71:4c:40:ea:bc:b6:81:6f:48:cb:9e:6f:63:5a:31:
c6:46:01:a1:19:e8:38:42:6e:fd:cb:30:ce:c7:6b:
fb:e1:7a:4f:f3:92:37:94:05:49:b7:cf:92:1a:75:
b3:d5:1c:d9:86:9a:8e:6e:a2:08:c9:d3:92:b0:41:
70:08:68:33:58:ad:f7:ef:a3:bb:9b:8e:04:71:ea:
ae:6a:9f:19:49:c2:de:28:0f:68:34:c0:1c:d9:34:
1a:f7:f7:b8:bf:9c:d7:84:09:c2:11:3b:d8:0a:04:
28:fc:d8:e8:45:a4:51:f9:9c:75:18:62:15:22:fc:
5a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:51:80:75:83:09:4C:85:3E:3F:E1:28:51:6A:54:45:C8:D0:5D:29
X509v3 Authority Key Identifier:
keyid:BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/OFGAdYMJTIU-P-EoUWpURcjQXSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.6.0/24
193.105.150.0/24
IPv6:
2a00:10e8:2::/48
Signature Algorithm: sha256WithRSAEncryption
01:ea:a7:88:b2:7c:91:6d:81:b9:0a:27:e6:79:9b:14:68:0f:
1c:b7:e9:20:cd:3c:9b:a0:20:bf:26:ab:68:17:92:14:76:7e:
2a:3f:ac:c1:c9:e8:58:d7:a1:3e:ed:af:87:4b:f3:a1:1a:3d:
3a:f4:fa:57:af:5c:9e:15:93:d9:f3:bc:dd:c1:80:55:97:f6:
0f:6d:51:b8:56:74:72:7e:5a:d0:e0:9f:03:50:c0:d5:c1:a5:
de:fb:06:32:ae:dc:c2:ab:c0:11:52:f8:3a:e3:a3:d5:a5:96:
77:ef:96:d0:ab:57:9f:bf:9e:59:fc:5a:55:26:85:c1:b2:f5:
49:89:02:c4:a0:c1:c7:2e:0e:c3:7e:38:91:43:45:c0:53:8b:
04:15:b2:d9:74:5c:bb:4e:dc:0b:27:3f:12:be:e2:d0:a4:fb:
d5:b7:87:cd:90:b2:0c:6f:fb:82:6d:7a:2c:b0:84:d9:c7:e6:
cf:16:26:1a:f3:f6:1f:60:40:8e:26:bd:ad:7f:30:f4:1c:bf:
2a:55:36:cc:cf:d9:9f:2a:21:5d:42:af:da:93:8c:81:40:18:
37:88:51:3e:11:04:76:46:e9:b2:dc:9a:6b:ff:e5:10:b9:e9:
23:db:45:c9:c9:c1:35:16:cc:90:46:ea:b5:ec:20:ef:c0:96:
b2:16:0e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:43:03 2025 by rpki-client