Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/OpWKYEKY1wGo8KrXEUdwdoMTwIo.roa
File: OpWKYEKY1wGo8KrXEUdwdoMTwIo.roa (raw, json)
Hash identifier: CIJof2GC7X9qhSiOUc3i5UxdD0egsTjgWMdh7IFBTkc=
Subject key identifier: 3A:95:8A:60:42:98:D7:01:A8:F0:AA:D7:11:47:70:76:83:13:C0:8A
Certificate issuer: /CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Certificate serial: 0185E8D72A3F5A6C609911188CEF93C7D009
Authority key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/OpWKYEKY1wGo8KrXEUdwdoMTwIo.roa
Signing time: Wed 25 Jan 2023 12:11:33 +0000
ROA not before: Wed 25 Jan 2023 12:11:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25400
IP address blocks: 80.239.0.0/17 maxlen: 17
2a02:228::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 15 Jun 2023 00:18:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:d7:2a:3f:5a:6c:60:99:11:18:8c:ef:93:c7:d0:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Validity
Not Before: Jan 25 12:11:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a958a604298d701a8f0aad7114770768313c08a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8e:6b:31:93:ac:f6:99:6b:6a:6f:a8:61:c8:
8b:71:94:80:7f:2f:80:6f:56:7a:94:6b:6a:a6:e8:
17:ec:08:df:7f:69:df:63:f3:82:b9:49:ab:4e:a1:
03:63:82:bc:fb:b8:40:8d:2e:36:6e:b2:6e:fe:e9:
28:7e:d2:b0:90:21:ae:b5:d1:1d:5c:2c:48:e2:b8:
87:fc:3e:98:f2:67:b9:4d:f3:88:e6:be:44:a0:52:
23:ba:85:f3:c7:03:b1:61:a2:2a:ea:2f:a0:e1:05:
e4:ca:e9:ed:6c:4d:ad:6f:4a:10:da:60:6b:b0:74:
4e:53:dd:47:67:17:6c:0d:45:02:2a:ee:6f:01:92:
40:89:77:81:b3:6e:07:0d:4d:41:ba:d5:30:40:49:
3b:9d:a0:0d:5c:26:8f:27:d7:a6:69:66:2c:70:c5:
3d:33:5f:b4:ec:04:42:82:ba:c3:b3:6b:cd:48:48:
8c:f1:a8:5b:50:e4:5f:92:29:e4:41:10:90:e1:db:
7e:21:d7:5b:37:8e:2b:76:be:ec:a8:c7:c3:3d:f6:
5f:66:c2:a8:b4:ba:36:9c:7e:1a:0f:cb:48:ac:92:
13:a9:fa:a2:ff:2d:7f:4c:e4:05:b1:8f:b6:bf:df:
69:60:15:cf:20:8f:fb:e0:f5:d0:91:44:53:0d:5e:
4b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:95:8A:60:42:98:D7:01:A8:F0:AA:D7:11:47:70:76:83:13:C0:8A
X509v3 Authority Key Identifier:
keyid:AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/OpWKYEKY1wGo8KrXEUdwdoMTwIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.239.0.0/17
IPv6:
2a02:228::/29
Signature Algorithm: sha256WithRSAEncryption
35:78:84:37:d1:f9:ae:14:a6:71:48:39:df:d4:46:4c:0c:a8:
28:68:ce:7e:1f:43:d9:15:5c:6d:a9:c9:fe:41:db:ad:86:e7:
3a:c0:c5:03:c3:ee:ca:86:54:84:12:7a:be:8e:40:ab:9a:5c:
ad:6b:50:d5:c6:90:17:e1:ab:a1:55:2b:b0:ab:2d:69:6a:24:
23:aa:f9:03:5c:92:db:13:0f:bb:fc:86:b0:96:6f:03:d8:c0:
c7:43:91:ce:0a:f2:3f:de:51:92:19:8f:08:77:73:7a:a6:a1:
ed:bc:5d:76:07:6e:80:1e:86:de:00:ca:77:e1:95:5c:32:a8:
d8:a3:08:97:d1:6c:b3:32:b2:c9:9e:3f:c4:93:41:0b:5f:2c:
ee:36:8c:c0:d0:10:fc:db:37:97:de:c3:39:3b:3c:f9:da:92:
b1:a5:fb:c6:1f:2e:8d:63:b9:df:1c:52:b9:d4:91:ce:8f:f0:
6b:f5:2f:e3:f7:06:41:31:9a:32:ca:ca:78:07:58:30:2f:ae:
48:8c:a5:0b:be:34:8c:5c:7c:8b:b6:c1:8c:39:d3:01:97:41:
9c:ce:ca:17:e7:9c:40:e0:e0:9d:77:b0:82:78:db:44:30:9b:
6f:0e:8b:81:03:d4:e5:2c:2d:78:13:5e:54:2f:d0:1a:10:c9:
c1:4e:59:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:43 2024 by rpki-client on console-fra.rpki-client.org