Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/OLf_2oG29Ru2ia6E7D72lr_vYjM.roa
File: OLf_2oG29Ru2ia6E7D72lr_vYjM.roa (raw, json)
Hash identifier: 3EGXfBvHfXyy+GMXKCAX1Vuw3zPVeWo6ZIFAnVdZR3s=
Subject key identifier: 38:B7:FF:DA:81:B6:F5:1B:B6:89:AE:84:EC:3E:F6:96:BF:EF:62:33
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0187D1F2BEEDF5627B3F6EE64B033AC8349F
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/OLf_2oG29Ru2ia6E7D72lr_vYjM.roa
Signing time: Sun 30 Apr 2023 11:35:59 +0000
ROA not before: Sun 30 Apr 2023 11:35:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.122.43.0/24 maxlen: 24
91.226.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 May 2023 19:42:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d1:f2:be:ed:f5:62:7b:3f:6e:e6:4b:03:3a:c8:34:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Apr 30 11:35:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38b7ffda81b6f51bb689ae84ec3ef696bfef6233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ce:93:46:a8:6f:4e:58:b7:72:42:a1:2c:fc:
2f:cd:7b:44:d0:73:0f:a1:20:e1:fd:31:d1:61:37:
0e:52:df:e7:b4:ba:b5:13:53:ae:85:f7:08:1e:1d:
d4:d2:4b:20:71:63:c3:ca:ba:3d:93:9c:21:51:ae:
32:fc:3a:b9:12:8a:27:02:c4:de:01:df:0d:ba:29:
fc:15:d6:98:2c:f3:66:7e:f1:d5:ed:6f:97:d1:d8:
db:7c:7c:7d:d2:3c:28:68:73:c7:50:32:f7:5d:0d:
ab:b7:55:6b:39:d3:72:fd:82:f5:50:53:14:e0:38:
77:43:8d:3c:c9:68:53:ad:c5:f9:c3:0b:62:9f:77:
74:f9:9b:ee:0f:3d:a4:f6:e6:69:e6:d1:e5:ff:a1:
ff:96:66:ff:92:e0:32:85:a4:4d:8f:d9:22:e3:61:
10:a3:f1:7b:fb:76:89:70:92:02:38:5d:66:4d:ad:
ec:ea:54:f7:9d:ee:f5:17:96:f8:74:45:c3:a0:77:
d8:a3:93:46:b8:17:8d:39:88:16:dc:ef:83:74:29:
fe:f1:ca:6f:70:dd:57:c0:a3:0d:b3:cb:3f:57:96:
f3:8b:42:d1:41:a9:fa:e9:4f:73:76:6b:c8:c3:a5:
ac:71:f9:a2:13:07:74:b0:bf:be:4a:f9:0e:ca:e4:
25:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B7:FF:DA:81:B6:F5:1B:B6:89:AE:84:EC:3E:F6:96:BF:EF:62:33
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/OLf_2oG29Ru2ia6E7D72lr_vYjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.59.0/24
109.122.43.0/24
Signature Algorithm: sha256WithRSAEncryption
44:b9:bb:c4:99:e3:e6:ef:8a:50:46:b7:d5:ba:9c:1a:57:eb:
39:3c:87:b1:63:d9:e7:90:45:44:26:e3:d1:4e:7f:95:13:e9:
c9:86:ad:d2:f0:68:a6:96:bf:69:3c:04:b0:3c:f4:91:76:a7:
cc:42:02:d2:61:31:6a:7c:e1:95:a6:bb:47:1b:be:8c:5f:f1:
2c:25:8d:92:78:3f:69:51:26:5c:9a:08:7d:db:fa:a4:5e:ea:
40:74:6f:4e:be:d4:2e:23:a9:b3:4e:e8:ac:95:f6:30:b5:00:
ae:c2:b1:74:d8:3c:bc:b8:a5:a6:ad:c1:b9:ef:c1:1b:e3:6b:
34:1c:5a:2f:d7:fb:3f:18:ae:cc:01:b6:a1:d8:e1:bb:7b:c5:
6b:26:92:31:73:78:81:c1:c3:92:0d:39:44:ac:49:6a:63:9d:
a9:a5:3d:4f:0d:d4:21:27:c0:37:49:91:fc:1a:3d:c4:8a:99:
0c:87:b7:9d:5b:66:89:24:84:f1:bf:10:2a:56:10:0b:af:61:
9d:5c:c3:f4:b7:24:7d:8e:c1:b1:13:ba:39:67:3a:a4:20:a8:
5f:1c:78:c0:e3:a2:74:3d:26:05:43:d0:74:0d:c8:b5:7a:83:
85:b3:ca:05:21:e1:a1:47:ff:77:f1:48:8d:54:88:0d:eb:c9:
9f:4f:ed:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org