Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/OYNP8mMk_6Iht68A8hOrKMj3xrg.roa
File: OYNP8mMk_6Iht68A8hOrKMj3xrg.roa (raw, json)
Hash identifier: rmC0oNZhytM4t4IqizU+TbdImx6MM4koFFCNFCrhrVI=
Subject key identifier: 39:83:4F:F2:63:24:FF:A2:21:B7:AF:00:F2:13:AB:28:C8:F7:C6:B8
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0187805AB7B1DEF4BA13D874647887A2A3AA
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/OYNP8mMk_6Iht68A8hOrKMj3xrg.roa
Signing time: Fri 14 Apr 2023 15:20:41 +0000
ROA not before: Fri 14 Apr 2023 15:20:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12480
IP address blocks: 194.120.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Apr 2023 14:51:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:80:5a:b7:b1:de:f4:ba:13:d8:74:64:78:87:a2:a3:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Apr 14 15:20:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39834ff26324ffa221b7af00f213ab28c8f7c6b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0f:65:ae:cb:72:b9:51:7e:e4:12:f5:bd:4a:
04:69:24:e1:17:3c:1f:33:f8:47:33:8c:1d:86:33:
62:40:02:e0:e8:2e:45:60:f2:17:8f:32:8b:b7:3f:
1c:8a:df:a9:30:c6:be:30:24:b4:2c:fd:a3:41:2f:
72:08:71:84:f8:c2:18:d7:52:2f:70:c3:b1:ab:b2:
40:e6:02:c7:6c:95:55:8e:32:5e:de:68:67:30:dd:
48:28:5a:72:8b:7f:49:0e:11:08:78:69:fd:08:8a:
b7:40:53:84:11:8c:7d:e1:9f:97:68:2b:05:87:e2:
79:15:2c:3d:da:2d:3f:1c:a5:bd:1c:d6:e6:93:06:
46:30:c1:c8:17:69:9f:6a:6a:b6:9e:1b:3b:f8:85:
db:9d:1e:38:69:99:e7:3e:1d:41:b5:4f:57:a2:32:
d4:0c:8d:13:89:ab:68:a3:0a:d0:00:b1:4a:c5:38:
4d:22:0c:65:33:f8:58:56:67:8c:8c:16:48:23:83:
57:1b:da:05:e2:c3:02:6e:34:fa:34:ba:3a:59:a1:
39:0c:d3:ba:ac:a6:a7:90:e8:e4:79:77:44:36:27:
6b:8f:2a:17:9f:6d:6f:88:32:ad:51:88:ce:a7:01:
e9:30:92:ec:7c:bb:26:86:66:05:12:2e:6d:78:8f:
38:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:83:4F:F2:63:24:FF:A2:21:B7:AF:00:F2:13:AB:28:C8:F7:C6:B8
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/OYNP8mMk_6Iht68A8hOrKMj3xrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.120.43.0/24
Signature Algorithm: sha256WithRSAEncryption
06:f7:c9:de:87:52:a2:ce:d2:1b:08:33:57:89:2c:c9:35:ba:
0f:5b:b7:0c:38:aa:86:a8:14:c1:4c:d1:5e:04:37:b8:0e:f0:
d1:2e:74:73:57:e5:81:06:5d:5b:67:d3:3c:8b:1a:37:75:74:
ad:8c:0e:06:85:5b:b9:ef:e5:95:ac:db:c6:6b:5e:36:e5:d2:
a0:4f:d0:ba:d6:42:05:40:3f:3c:f7:b4:5c:06:e0:95:9d:d5:
45:31:36:68:13:e0:61:cc:40:eb:c0:39:7c:c9:2e:81:bb:5b:
05:b7:11:53:5c:7c:88:78:b4:77:9d:9f:39:4a:eb:ac:b5:c1:
13:37:a8:d7:4e:4b:ce:ad:df:82:5e:47:f6:16:5a:a9:d7:cf:
cb:62:d1:cf:7d:74:08:85:66:a1:7f:e3:92:7e:53:03:23:f5:
d5:0a:35:b0:d6:4f:80:81:4f:60:c9:e2:5c:bb:7f:1b:32:fe:
f7:ba:d2:08:04:fe:66:ae:05:b4:91:a0:5d:1c:29:39:59:45:
1c:1b:89:ec:04:fe:b8:01:aa:d3:84:7f:ea:64:0f:76:5a:69:
3d:d4:84:22:89:11:1c:15:35:04:e8:cd:d5:62:eb:3c:b1:a2:
c2:a2:65:1d:bc:54:c8:36:06:a6:c3:82:f2:f6:02:02:94:fe:
22:e1:64:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:12 2024 by rpki-client on console-fra.rpki-client.org