Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/OonT92cS1f7LZCmHntCLQFnAxb8.roa
File: OonT92cS1f7LZCmHntCLQFnAxb8.roa (raw, json)
Hash identifier: Dk3HIXqM1Lfg16iMg6GqYdZVyFuAyYLlbAYX2cAcH+Q=
Subject key identifier: 3A:89:D3:F7:67:12:D5:FE:CB:64:29:87:9E:D0:8B:40:59:C0:C5:BF
Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Certificate serial: 01856F94B5A581E0FD99B32653A095C863F0
Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/OonT92cS1f7LZCmHntCLQFnAxb8.roa
Signing time: Sun 01 Jan 2023 23:04:54 +0000
ROA not before: Sun 01 Jan 2023 23:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 145.226.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:b5:a5:81:e0:fd:99:b3:26:53:a0:95:c8:63:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253
Validity
Not Before: Jan 1 23:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a89d3f76712d5fecb6429879ed08b4059c0c5bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:eb:ce:f1:09:db:d9:a4:95:65:d0:e2:3a:e0:
b1:f1:7d:f4:b0:c4:9d:64:e0:99:db:18:ea:7c:cf:
aa:00:c7:2f:7f:21:aa:6c:16:5f:2f:ef:d8:4e:e2:
86:77:11:2f:aa:62:ef:c6:28:a2:77:5b:5e:0d:8f:
ee:3c:c5:90:f7:11:1e:8b:b8:17:38:30:d7:1e:10:
a6:7c:e4:de:0b:13:6a:cd:b2:4f:3d:75:0a:cb:3d:
47:01:02:7a:17:73:74:12:36:c2:47:87:4d:c0:3f:
a7:28:6f:47:44:19:96:f4:08:f5:a4:9a:76:92:10:
a1:ee:ee:d6:db:47:e2:59:53:16:c5:0f:80:af:8c:
ba:63:3b:26:5b:81:44:93:7d:d7:5d:36:98:81:92:
b0:a2:d6:7f:27:3f:e3:c2:e9:d8:41:8e:6b:6b:f9:
c8:b6:3c:be:7a:3a:6d:f8:07:42:6f:6d:ac:2a:f7:
e0:ee:38:75:63:b8:97:76:09:72:d9:78:28:8f:f9:
c7:26:44:39:b0:6c:b5:62:a9:db:1b:fd:60:34:6e:
42:5a:3b:81:1f:a2:0c:a4:41:0b:60:46:b1:d2:ce:
07:a6:29:c9:98:a5:86:f0:5b:9d:4f:6a:15:56:95:
85:5b:ba:b5:28:2e:06:d4:39:cc:b5:2c:27:80:84:
c9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:89:D3:F7:67:12:D5:FE:CB:64:29:87:9E:D0:8B:40:59:C0:C5:BF
X509v3 Authority Key Identifier:
keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/OonT92cS1f7LZCmHntCLQFnAxb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.226.0.0/16
Signature Algorithm: sha256WithRSAEncryption
40:9b:ba:62:43:2e:56:2d:b1:5d:33:d8:33:77:a0:5e:ca:71:
f6:cc:d6:0a:76:a8:53:78:c0:0c:53:20:73:6c:06:52:eb:0c:
ab:c7:7f:82:31:4d:89:de:76:e4:66:00:38:7f:64:0b:92:e7:
68:72:c6:24:8e:00:97:8f:e5:0d:76:07:4c:ab:e8:ad:47:db:
f7:99:c2:ca:c0:e7:c5:fb:b9:46:72:cc:66:02:47:db:11:68:
91:83:79:73:2a:52:54:ed:f5:35:27:03:e8:33:42:d1:4b:53:
ff:7c:77:28:a5:b9:a0:4e:67:cb:a6:87:47:12:45:fd:c5:f7:
db:88:65:ef:47:27:de:05:35:66:23:b5:11:9a:77:36:20:4b:
c2:23:74:1f:dc:77:03:94:ef:ad:28:a5:76:f6:ae:15:51:e6:
75:03:e4:97:ce:c2:10:e1:c6:64:95:72:33:f4:41:06:80:02:
06:91:7b:e0:94:53:1f:5e:c3:fd:ea:32:61:72:6f:90:f9:7c:
91:74:e6:4f:18:d7:42:1f:51:ed:42:bf:db:ba:ed:ca:2e:6c:
a8:7e:b5:c7:a2:ac:0a:9c:68:94:66:1f:53:b9:4c:e9:d0:f5:
27:43:44:56:9c:fd:ec:fb:93:a8:9b:d1:1f:ff:5e:67:7d:1d:
1d:ce:22:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:06 2024 by rpki-client on console-fra.rpki-client.org