Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/OwZi6QhxKoBjaVvfq2hH489R7t8.roa
File: OwZi6QhxKoBjaVvfq2hH489R7t8.roa (raw, json)
Hash identifier: 9msMHXIh8dLKT90VNO1qTFTVfVUeEo/9Me3zCrUSig4=
Subject key identifier: 3B:06:62:E9:08:71:2A:80:63:69:5B:DF:AB:68:47:E3:CF:51:EE:DF
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 01889DBC6E90D9C7A29659971A10A68E7CDE
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/OwZi6QhxKoBjaVvfq2hH489R7t8.roa
Signing time: Fri 09 Jun 2023 01:19:11 +0000
ROA not before: Fri 09 Jun 2023 01:19:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3280
IP address blocks: 2.56.166.0/24 maxlen: 24
78.108.217.0/24 maxlen: 24
2a0b:b86:4::/48 maxlen: 48
2a0b:b86:f::/48 maxlen: 48
2a0b:b86:e::/48 maxlen: 48
2a0b:b86:9::/48 maxlen: 48
2a0b:b86::/48 maxlen: 48
2a0b:b86:b::/48 maxlen: 48
2a0b:b86:a::/48 maxlen: 48
2a0b:b86:5::/48 maxlen: 48
2a0b:b86:c::/48 maxlen: 48
2a0b:b86:6::/48 maxlen: 48
2a0b:b86:1::/48 maxlen: 48
2a0b:b86:f8::/48 maxlen: 48
2a0b:b86:8::/48 maxlen: 48
2a0b:b86:3::/48 maxlen: 48
2a0b:b86:2::/48 maxlen: 48
2a0b:b86:d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 21 Jun 2023 17:07:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9d:bc:6e:90:d9:c7:a2:96:59:97:1a:10:a6:8e:7c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jun 9 01:19:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b0662e908712a8063695bdfab6847e3cf51eedf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ba:43:07:ff:c6:b3:68:f5:5c:36:d6:7a:37:
cd:84:76:5f:e0:22:52:0e:34:fc:36:b2:5c:be:33:
fd:3b:3c:4a:84:a5:55:3a:fd:56:c6:9a:0b:dc:75:
a8:b8:06:1e:6d:d4:80:07:1b:c2:ea:51:e5:51:26:
c0:f6:7e:7e:59:d5:38:04:6d:c6:02:6f:24:08:f5:
31:a5:1a:40:d7:c3:f5:d1:21:e4:43:65:11:3d:05:
d3:4a:e5:29:13:e7:6a:fb:33:fe:e6:97:a9:b1:a5:
1c:e1:d4:2e:f1:1a:bb:d6:19:aa:cd:5e:a8:ec:1d:
f5:19:98:32:42:85:f0:36:bc:67:a0:4d:28:de:d0:
38:19:da:89:2c:5e:d9:b1:da:e0:79:92:1a:65:f6:
5f:42:7c:0f:fb:b1:1b:04:4a:3c:d0:83:f1:ef:d0:
ef:d1:e1:fa:f1:25:fc:a5:32:39:85:08:5a:6a:67:
b0:2a:f8:f4:b7:0b:75:8b:60:6d:48:43:c0:78:35:
89:bc:1a:5c:a9:3f:a5:bd:7d:7d:8d:0e:fa:31:58:
10:2c:b5:2e:e8:cc:9e:95:e1:1e:23:01:5a:0c:e2:
28:e3:84:03:49:2c:f0:fb:d4:35:eb:ce:03:b1:29:
37:e8:e5:87:07:23:7b:00:7b:56:3d:e0:08:95:3c:
ec:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:06:62:E9:08:71:2A:80:63:69:5B:DF:AB:68:47:E3:CF:51:EE:DF
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/OwZi6QhxKoBjaVvfq2hH489R7t8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.166.0/24
78.108.217.0/24
IPv6:
2a0b:b86::-2a0b:b86:6:ffff:ffff:ffff:ffff:ffff
2a0b:b86:8::/45
2a0b:b86:f8::/48
Signature Algorithm: sha256WithRSAEncryption
30:2c:6f:91:59:26:8a:b1:36:d6:0a:71:6f:42:4c:4c:b1:00:
3c:5b:64:a7:e9:65:35:06:69:14:b0:98:15:cf:06:90:95:9f:
fe:e5:04:8f:fd:31:f1:44:4b:7f:ff:d4:d3:d4:6e:aa:ea:09:
3e:c2:32:58:0c:e8:67:58:99:cc:e1:53:0d:98:60:0b:f8:03:
d2:b8:e7:9c:6c:70:38:b8:09:de:88:44:cf:99:02:f5:0b:4d:
a0:cd:13:e9:f9:45:3f:07:dc:12:58:54:7c:90:95:e3:f6:95:
d5:b4:ea:83:dd:2b:61:02:38:d8:e0:56:ef:ed:f6:96:b0:27:
3b:54:b4:de:a7:42:e5:59:b7:09:16:4b:91:99:3b:b8:4c:08:
d8:d9:b6:f4:5f:20:b9:f7:b0:90:6c:6d:0f:0f:ce:70:e0:73:
a3:63:e3:bd:b1:7a:fc:05:3e:4d:99:96:b7:7a:0f:3a:70:71:
0b:80:28:05:fd:6d:5e:c9:b7:5d:b0:b4:61:44:e2:d7:8d:6b:
cc:ff:72:6a:5d:db:c9:3d:79:27:fb:20:5f:52:55:40:25:4d:
14:dd:4b:4e:0b:3b:2d:0c:2b:82:27:2b:5d:49:8a:71:14:9d:
83:c7:cc:e2:6f:fd:52:e8:57:3e:17:4d:8c:c5:b3:f4:52:a9:
03:d7:19:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org