Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/OvbEGHHxNnxP0SVi-T-9FKeesWw.roa
File: OvbEGHHxNnxP0SVi-T-9FKeesWw.roa (raw, json)
Hash identifier: DObr9JtoJJOZ2gqjVjSrBTIpYFnXh+IDU0sC11Vjjgo=
Subject key identifier: 3A:F6:C4:18:71:F1:36:7C:4F:D1:25:62:F9:3F:BD:14:A7:9E:B1:6C
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9F230CBAE4D25107A04E5BF603FF7
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/OvbEGHHxNnxP0SVi-T-9FKeesWw.roa
Signing time: Mon 02 Jan 2023 09:04:49 +0000
ROA not before: Mon 02 Jan 2023 09:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50810
IP address blocks: 2.183.202.0/23 maxlen: 23
2.182.160.0/20 maxlen: 20
2.183.128.0/20 maxlen: 20
2.188.32.0/21 maxlen: 21
2.183.136.0/23 maxlen: 23
2.183.184.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f2:30:cb:ae:4d:25:10:7a:04:e5:bf:60:3f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3af6c41871f1367c4fd12562f93fbd14a79eb16c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e7:4f:61:2c:df:21:e9:96:a0:02:11:54:0e:
aa:5e:56:a5:84:e3:10:bb:0f:d2:40:34:da:5a:4f:
84:e6:98:69:f3:a0:f2:c2:97:34:64:27:fb:b0:b8:
8b:e3:79:78:84:4d:6e:43:49:51:bf:b4:01:1c:a7:
3d:14:99:77:06:38:20:3b:9c:86:ef:1a:02:43:98:
e1:b0:14:96:a2:bf:d5:a7:92:44:d5:b7:4a:83:1d:
38:97:ca:4a:e8:5c:c5:28:69:1f:0e:b7:34:7e:da:
f8:37:99:89:8c:4d:ce:53:1e:94:c4:50:88:e5:19:
ca:7f:e9:ec:9d:d8:02:34:2e:77:33:71:6f:0d:9e:
6b:5b:0e:10:e0:88:82:45:c4:96:eb:07:c6:13:c5:
36:ba:d1:cb:cb:6d:49:bd:5f:97:c3:cb:50:8f:1a:
fd:1e:5b:63:d2:23:e7:23:0f:73:09:bb:e8:1c:7c:
d5:27:9f:95:35:7f:68:e2:a4:1d:af:fc:f0:ce:19:
7a:71:82:1e:4d:b1:af:35:ec:0f:53:c6:75:e0:1d:
44:39:c5:0a:03:82:d3:a3:82:4b:e2:27:cb:d1:d9:
38:93:6a:59:81:2c:48:3a:2f:42:c1:cc:30:5d:ac:
d7:92:d9:a2:f1:d8:a0:19:8d:f5:66:c2:55:5e:70:
0e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F6:C4:18:71:F1:36:7C:4F:D1:25:62:F9:3F:BD:14:A7:9E:B1:6C
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/OvbEGHHxNnxP0SVi-T-9FKeesWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.182.160.0/20
2.183.128.0/20
2.183.184.0/21
2.183.202.0/23
2.188.32.0/21
Signature Algorithm: sha256WithRSAEncryption
99:8a:fe:e4:2c:dd:e1:23:33:a3:8b:31:65:9c:43:b0:7f:5b:
ed:3c:09:d5:b5:e2:f6:45:1a:3c:a8:26:f1:a9:6c:39:b4:8d:
ef:8a:f5:07:ef:32:03:0d:81:fe:81:86:4d:d7:7d:73:50:28:
43:bc:41:9f:80:4a:14:f3:79:76:e5:7f:eb:03:1e:fc:de:67:
25:cf:63:a4:61:dc:13:09:a5:9c:60:ed:17:3d:d4:9c:34:46:
90:fc:71:17:b2:a0:3b:32:a6:11:18:f6:22:9d:2a:60:23:c5:
e1:cc:23:d5:6b:78:b8:80:67:ed:37:92:74:90:92:27:b6:e5:
a4:f3:44:ee:77:6a:b4:ff:22:a3:cb:58:36:a6:50:96:63:9e:
66:f4:2e:a1:40:75:cd:fa:a2:12:6b:4b:8c:73:cb:f4:a3:28:
95:e0:46:36:9f:88:2d:eb:2c:d4:3b:09:03:fb:d0:95:e4:d9:
9e:2c:ac:ea:26:88:23:eb:1c:9b:c1:6b:7f:17:c2:18:2b:93:
d8:7e:34:44:24:b6:42:7d:6b:60:90:90:d9:2e:9d:f6:d6:d3:
39:bd:5a:32:97:29:1b:83:d5:fc:95:6f:bf:da:4b:67:ea:71:
fb:ec:9d:7f:7e:5d:95:a4:66:4b:f1:bf:05:df:48:90:0b:cb:
9f:04:d2:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org