Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/OWLrgaBkAZt3x8nkEa5S4AjIx6M.roa
File: OWLrgaBkAZt3x8nkEa5S4AjIx6M.roa (raw, json)
Hash identifier: G9eIh6NpbJCJarU+MoNt7+tek5baY3f0NkZas7j+ci0=
Subject key identifier: 39:62:EB:81:A0:64:01:9B:77:C7:C9:E4:11:AE:52:E0:08:C8:C7:A3
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 018A466871B47DBCF0844E3E118FBE0DBCC9
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/OWLrgaBkAZt3x8nkEa5S4AjIx6M.roa
Signing time: Wed 30 Aug 2023 12:26:04 +0000
ROA not before: Wed 30 Aug 2023 12:26:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142019
IP address blocks: 81.19.134.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:68:71:b4:7d:bc:f0:84:4e:3e:11:8f:be:0d:bc:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Aug 30 12:26:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3962eb81a064019b77c7c9e411ae52e008c8c7a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:76:8b:c9:b4:b8:ca:75:d8:99:e4:15:5a:7e:
9b:97:47:52:dd:44:a7:ea:8a:8b:21:cb:5c:a2:3d:
f5:a8:c7:1f:e3:83:13:2a:d1:d2:5f:a0:ed:f2:bd:
fa:27:59:28:4e:bb:20:77:54:ea:1e:17:b2:b0:2f:
f6:12:c9:a0:ed:b5:45:27:dc:b0:f6:87:93:fb:e0:
35:00:5b:02:25:b9:07:2d:03:42:cd:77:fc:66:1e:
ff:8e:b3:63:cf:2a:7d:dd:bd:ef:2b:48:16:de:0f:
b6:31:66:51:99:b5:8b:ca:95:ee:04:0c:cd:23:e6:
71:ba:7a:29:7d:03:a9:58:a4:88:eb:bb:97:36:35:
12:ef:15:9d:82:a1:de:40:e4:a7:d3:ed:23:90:d5:
d1:76:1d:9f:e8:5b:7e:ac:01:a1:b5:c2:f6:33:a6:
8d:89:69:95:34:93:ca:c1:ef:5a:13:27:46:c5:b8:
d2:eb:63:49:4d:ae:c6:e8:2a:95:12:41:26:1d:10:
9d:7c:ef:e6:af:7d:53:75:0e:39:d5:76:0f:47:11:
06:a0:33:89:dd:80:27:06:78:38:f2:fd:fd:4f:e1:
eb:b3:14:3f:50:bb:cd:c3:1d:0f:00:5f:9f:bb:24:
96:10:c5:3c:c9:62:48:8d:ef:41:a6:db:db:a5:b9:
19:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:62:EB:81:A0:64:01:9B:77:C7:C9:E4:11:AE:52:E0:08:C8:C7:A3
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/OWLrgaBkAZt3x8nkEa5S4AjIx6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.134.0/24
Signature Algorithm: sha256WithRSAEncryption
63:57:f9:bf:61:a3:5e:fa:0d:64:3b:1f:8e:73:22:a1:11:ff:
92:b4:bd:a1:9b:d2:a2:25:6b:ff:0e:b7:9c:5d:16:e2:e1:e8:
ea:34:91:79:ac:cb:e1:5c:88:ab:24:1b:f5:d3:67:06:9e:c8:
7c:93:0f:d9:59:83:5d:e2:01:94:0a:da:ac:03:87:d1:95:99:
36:00:bf:7e:bb:c7:e8:a8:51:79:1f:fa:37:b7:8a:ef:0f:bd:
66:1a:cd:2e:92:8d:70:80:a3:02:e3:f5:18:21:14:f8:c3:fe:
bb:71:3b:f1:67:90:6f:4d:f1:33:8b:01:39:6f:f7:04:4e:01:
bf:92:b6:22:7e:82:12:cd:5b:96:4b:57:b1:a2:5c:4c:03:25:
d9:e1:45:fa:66:cc:db:dc:97:86:3d:1f:e9:9a:3e:e3:29:5b:
c4:7d:7c:97:89:a8:83:3e:5a:52:94:51:01:52:37:05:7c:e3:
0e:04:90:2d:a5:a9:4f:9a:e0:5e:36:b3:8b:8d:4a:70:e0:bc:
78:3a:2e:85:63:f6:e8:7a:4f:f2:7b:83:7c:68:7a:73:45:2c:
53:45:24:c7:a6:7a:a7:1f:0d:26:ee:e6:f3:a8:6a:ae:30:ee:
9c:da:29:b3:80:e9:3b:54:84:db:09:c1:26:f4:66:64:15:c2:
6a:fe:84:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:19 2024 by rpki-client on console-ams.rpki-client.org