Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ea9c59-9e14-4f25-86bd-7eedf4dd6c13/1/oEMJUsqqJ-zK_5met6-xAg5c8YE.roa
File: oEMJUsqqJ-zK_5met6-xAg5c8YE.roa (raw, json)
Hash identifier: 9BHYT6ig094yfXA0VCSI3g1QguLckaKWhqR3eZYDgZ0=
Subject key identifier: A0:43:09:52:CA:AA:27:EC:CA:FF:99:9E:B7:AF:B1:02:0E:5C:F1:81
Certificate issuer: /CN=9df24afbfecdf6a99c282bf53b304f3c1e8f470f
Certificate serial: 0187C7CE093EF344D131642ED99113FC0CF2
Authority key identifier: 9D:F2:4A:FB:FE:CD:F6:A9:9C:28:2B:F5:3B:30:4F:3C:1E:8F:47:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfJK-_7N9qmcKCv1OzBPPB6PRw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ea9c59-9e14-4f25-86bd-7eedf4dd6c13/1/oEMJUsqqJ-zK_5met6-xAg5c8YE.roa
Signing time: Fri 28 Apr 2023 12:19:41 +0000
ROA not before: Fri 28 Apr 2023 12:19:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30736
IP address blocks: 82.103.128.0/18 maxlen: 18
2a00:9080::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:ce:09:3e:f3:44:d1:31:64:2e:d9:91:13:fc:0c:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9df24afbfecdf6a99c282bf53b304f3c1e8f470f
Validity
Not Before: Apr 28 12:19:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0430952caaa27eccaff999eb7afb1020e5cf181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:87:7e:53:da:17:a0:d4:66:4f:22:f4:c5:ea:
1b:51:ad:3a:56:8e:54:f0:68:f5:7f:7e:0a:a3:8a:
68:39:10:ee:9a:b2:e4:82:d2:ce:c5:62:ab:a3:c0:
ac:91:db:f3:d6:e9:00:30:88:3b:56:f6:3d:5a:f8:
d3:06:c1:b1:44:dd:28:55:6d:bd:82:68:a7:94:6a:
a6:bc:c4:76:21:15:32:76:60:4a:ac:0b:41:40:c1:
66:17:a5:ce:bd:7d:18:26:a8:9a:7f:f6:53:84:b6:
de:3e:20:78:7b:58:e8:02:f2:d7:48:ec:9e:10:93:
58:6e:3c:92:06:60:95:12:3d:a9:df:63:0d:d9:10:
22:06:5e:89:8c:0b:59:74:4b:7f:89:4d:10:87:a2:
c2:a2:71:d4:af:2f:7c:bf:99:eb:de:cc:62:a3:6f:
76:a3:a3:cb:16:67:54:a0:c2:5a:fc:06:01:53:cc:
75:29:a5:dd:15:61:11:e7:9c:ae:73:d9:f5:a4:f6:
07:f2:c0:9c:ef:ee:1f:7c:ef:df:12:3e:e9:41:39:
53:23:e6:0b:cf:69:32:38:1e:bf:b4:84:20:ab:0c:
32:ac:89:16:7d:2c:0c:af:43:7e:3b:e4:c2:bc:6a:
3e:ce:6b:39:84:68:8b:e7:e8:71:50:0c:b0:e8:d1:
90:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:43:09:52:CA:AA:27:EC:CA:FF:99:9E:B7:AF:B1:02:0E:5C:F1:81
X509v3 Authority Key Identifier:
keyid:9D:F2:4A:FB:FE:CD:F6:A9:9C:28:2B:F5:3B:30:4F:3C:1E:8F:47:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfJK-_7N9qmcKCv1OzBPPB6PRw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ea9c59-9e14-4f25-86bd-7eedf4dd6c13/1/oEMJUsqqJ-zK_5met6-xAg5c8YE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ea9c59-9e14-4f25-86bd-7eedf4dd6c13/1/nfJK-_7N9qmcKCv1OzBPPB6PRw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.103.128.0/18
IPv6:
2a00:9080::/32
Signature Algorithm: sha256WithRSAEncryption
81:a5:43:a2:b6:46:42:bc:86:f7:4b:47:5e:39:f4:28:cc:76:
e6:f3:76:64:4f:d5:cf:0a:03:e5:14:ce:5b:4b:66:9e:aa:4b:
a5:dc:55:69:93:74:a9:1d:6a:08:4e:b7:4d:d5:30:84:bb:0b:
b2:a1:7b:ba:55:57:86:d1:a9:77:85:be:a7:c2:c1:b8:ad:7d:
46:42:98:ac:81:46:c6:b1:e2:4e:7a:aa:a5:aa:49:60:25:e1:
cd:1d:2d:e5:56:ac:65:01:b8:21:b0:c0:36:6e:a0:36:9b:a5:
7e:7e:93:d7:4d:ca:98:6a:97:c3:90:ea:cc:9f:1b:10:7b:a5:
93:4d:7f:5c:d3:bb:f2:21:a0:e6:32:43:d3:f9:84:96:53:cf:
e4:a1:2b:23:b3:5b:7d:3b:64:78:46:10:9f:83:c2:37:56:bc:
2d:91:ca:39:17:99:e4:49:03:9b:23:9c:38:f6:ba:23:e9:7d:
52:53:9e:83:80:2d:3c:de:32:e9:79:4f:6c:38:73:15:99:e7:
71:46:87:42:ed:ed:1a:7b:ac:c6:5c:d3:02:9c:a0:e4:be:b4:
ac:4e:c8:bc:9c:4a:8e:a6:aa:f0:61:6e:0e:aa:8c:8b:67:2d:
6f:32:89:db:63:e4:e9:a8:a7:f8:3b:3c:ee:bd:b2:87:d3:cd:
25:e8:62:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:38 2024 by rpki-client on console-fra.rpki-client.org