Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/OkOASeUC3g7E8pDpLIfFVL2HYFU.roa
File: OkOASeUC3g7E8pDpLIfFVL2HYFU.roa (raw, json)
Hash identifier: 2tRDXpKmzLoSnl0JaU4Nwu8Wx67KTi0/TjTaQVoang0=
Subject key identifier: 3A:43:80:49:E5:02:DE:0E:C4:F2:90:E9:2C:87:C5:54:BD:87:60:55
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 018DE7C0CB83618E619A944179196DCA4C54
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/OkOASeUC3g7E8pDpLIfFVL2HYFU.roa
Signing time: Mon 26 Feb 2024 23:29:48 +0000
ROA not before: Mon 26 Feb 2024 23:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 87.251.0.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 07:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e7:c0:cb:83:61:8e:61:9a:94:41:79:19:6d:ca:4c:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Feb 26 23:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a438049e502de0ec4f290e92c87c554bd876055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f6:de:4e:16:c4:5f:93:57:d6:ee:f2:8c:15:
db:41:ff:36:78:5b:ff:65:a0:1b:5d:9b:50:47:3b:
d6:6c:ea:45:f0:41:fb:18:38:67:2e:7c:13:ea:5f:
1a:11:96:fb:e2:10:4b:4a:1d:59:03:3e:5f:b1:b7:
ff:8a:45:3b:02:c4:5d:ab:ff:2e:67:f2:42:0a:18:
7f:c3:88:2a:76:8b:1d:84:20:99:31:b9:30:42:7f:
72:d8:7a:56:65:bc:88:7d:52:41:6d:c2:58:26:29:
93:72:24:f1:60:36:7f:ba:92:d9:42:9e:8b:cf:94:
34:60:da:5b:56:26:87:e9:df:f8:f6:d5:96:42:43:
7f:b1:48:cf:64:42:a4:6e:d1:0e:5a:6a:73:21:c0:
e5:9f:d4:d7:ff:8d:a1:af:34:14:da:56:e8:b5:8a:
e2:09:04:03:08:e4:d5:81:dd:e5:53:fb:33:14:21:
27:64:8c:2a:97:f1:2b:5b:58:97:01:cc:1a:33:82:
cd:37:9e:2a:c2:14:58:84:94:5d:6f:2f:ef:67:6a:
c1:4f:e4:a1:4a:f8:ed:33:49:3d:1d:44:c1:69:43:
b8:bb:e1:26:78:c7:2c:7b:e2:85:98:9e:e8:84:bb:
a2:34:ee:f6:69:c4:ee:d3:24:66:09:38:0b:80:eb:
c5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:43:80:49:E5:02:DE:0E:C4:F2:90:E9:2C:87:C5:54:BD:87:60:55
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/OkOASeUC3g7E8pDpLIfFVL2HYFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.0.0/20
Signature Algorithm: sha256WithRSAEncryption
71:5d:1b:c0:94:bf:b9:cf:61:04:b3:5e:aa:6c:87:91:6b:6b:
37:1d:58:10:2a:0f:c6:e9:8e:1d:df:a2:93:d5:70:f3:79:8d:
74:cb:a1:4a:93:b5:61:55:62:fa:c5:3f:ae:cb:e1:1c:80:9d:
9b:56:59:0b:67:8d:ea:77:0c:df:cb:fe:ed:c5:25:fa:62:f4:
8d:8e:77:c1:d0:3c:e8:71:48:5c:d9:a4:d3:68:51:b8:49:73:
c8:be:7e:a6:4a:00:49:1a:8d:ef:10:d5:c0:e5:46:78:03:03:
e5:35:82:df:e9:bb:66:10:fd:cd:c1:b0:b4:4e:99:7c:89:bd:
d2:c2:bc:04:9e:cd:b4:98:20:17:34:0f:9c:4f:d0:45:97:6b:
75:60:8e:83:e9:0e:18:b3:62:37:0c:aa:cc:ab:21:a7:e4:e8:
13:e8:48:4a:6c:0f:e6:2e:7c:06:2a:72:10:2c:40:e2:f9:23:
d8:f6:0a:94:0a:16:96:92:24:4f:ef:ac:06:55:73:00:cd:11:
25:7d:5c:f4:52:a0:d5:2a:65:c8:19:ee:32:0b:5e:06:45:fa:
01:db:9a:49:e9:5f:37:55:ab:d9:05:c3:b1:49:88:95:71:be:
53:a4:6f:bf:77:d4:a2:42:6e:15:84:a8:68:ca:e6:18:52:a6:
93:4a:3e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 28 11:28:43 2024 by rpki-client on console-ams.rpki-client.org