Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/73e504-b7bb-4ff8-bad8-b79552e700c5/1/OAMrd0n53sc731BvrEnUqNIvl74.roa
File: OAMrd0n53sc731BvrEnUqNIvl74.roa (raw, json)
Hash identifier: dA0rgtRdONizEs5eNJEC5jmbvtfjchPrDh6txL9/Dnc=
Subject key identifier: 38:03:2B:77:49:F9:DE:C7:3B:DF:50:6F:AC:49:D4:A8:D2:2F:97:BE
Certificate issuer: /CN=67b3b58b452239001eac2e221ba56c3afed7a790
Certificate serial: 018B70FDFF529A55AF5AF4E5A9784081B41F
Authority key identifier: 67:B3:B5:8B:45:22:39:00:1E:AC:2E:22:1B:A5:6C:3A:FE:D7:A7:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7O1i0UiOQAerC4iG6VsOv7Xp5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/73e504-b7bb-4ff8-bad8-b79552e700c5/1/OAMrd0n53sc731BvrEnUqNIvl74.roa
Signing time: Fri 27 Oct 2023 11:56:16 +0000
ROA not before: Fri 27 Oct 2023 11:56:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50137
IP address blocks: 193.104.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:fd:ff:52:9a:55:af:5a:f4:e5:a9:78:40:81:b4:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b3b58b452239001eac2e221ba56c3afed7a790
Validity
Not Before: Oct 27 11:56:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38032b7749f9dec73bdf506fac49d4a8d22f97be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5f:0f:cb:31:cf:79:63:b5:5e:e1:a0:45:df:
f0:28:a4:f7:9d:98:c4:74:9a:67:3c:d7:9f:be:94:
a1:fb:60:9a:dd:f0:ec:b6:ef:fb:66:81:7b:ed:ca:
9d:b3:8d:b5:f9:a5:e4:3a:50:57:fd:a4:68:18:a8:
b5:d2:56:41:91:bd:6a:12:cf:4f:03:d5:d7:f8:a3:
b0:58:78:c9:0c:3d:38:f8:21:4d:2c:65:a0:94:cd:
39:14:a5:9e:ae:fd:ff:0c:2d:62:65:4c:d2:69:9a:
c5:84:ed:01:dc:0d:3c:25:8e:cd:59:03:31:e2:e5:
b8:08:60:1f:3c:ba:1f:82:ce:57:4c:53:cc:ed:91:
c7:78:1c:2e:fe:19:59:f4:9f:8f:0e:12:3c:42:c1:
8c:5b:45:83:73:ca:ea:ad:78:bd:f6:0b:08:fc:ac:
b8:5c:be:c6:85:1c:f0:1f:1a:be:5d:1c:53:15:bd:
0c:4d:46:1a:24:d0:e4:40:31:4b:7c:b6:cd:3a:49:
a3:de:7e:ad:ed:9f:33:c0:45:52:2a:b3:c0:4d:17:
b0:64:05:1a:67:f3:19:ff:84:07:b4:86:16:21:9d:
4c:0d:27:ce:20:9e:64:20:8e:28:a3:3a:d6:3a:c6:
74:c8:f9:2c:c5:a0:47:73:47:57:40:ba:d6:fc:46:
4e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:03:2B:77:49:F9:DE:C7:3B:DF:50:6F:AC:49:D4:A8:D2:2F:97:BE
X509v3 Authority Key Identifier:
keyid:67:B3:B5:8B:45:22:39:00:1E:AC:2E:22:1B:A5:6C:3A:FE:D7:A7:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7O1i0UiOQAerC4iG6VsOv7Xp5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/73e504-b7bb-4ff8-bad8-b79552e700c5/1/OAMrd0n53sc731BvrEnUqNIvl74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/73e504-b7bb-4ff8-bad8-b79552e700c5/1/Z7O1i0UiOQAerC4iG6VsOv7Xp5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.150.0/24
Signature Algorithm: sha256WithRSAEncryption
91:fb:39:29:14:b6:f0:84:14:f8:75:75:5a:1d:e6:54:cc:a5:
7e:7e:40:ac:90:45:9b:25:59:d1:dc:39:53:31:93:44:c9:f3:
f8:2f:3d:ad:e2:98:e1:43:73:17:a0:e0:0a:3e:76:94:a9:5f:
e0:38:5c:10:4e:bd:b5:30:d6:29:d4:b8:7f:58:aa:18:9e:74:
ef:07:d5:70:ba:2e:9d:61:ec:fc:67:80:8a:98:eb:f7:a3:9f:
21:26:d5:13:80:ad:ca:49:86:b8:e6:c8:ac:28:93:d2:de:74:
e2:70:a5:ba:4d:1c:97:2f:22:bf:79:fa:8d:42:2c:ba:c7:60:
d9:72:b6:86:9a:9b:fe:23:30:98:62:d9:d7:a7:90:3f:88:f1:
32:b0:f0:dd:b8:6f:ed:2f:d2:01:f3:23:24:5d:07:e9:ea:eb:
41:16:30:12:75:cc:d4:fb:8a:19:10:0f:f1:88:8d:fe:a8:78:
66:44:3a:59:d1:2b:4e:eb:9c:82:af:6a:4d:3f:f0:e5:e3:14:
fb:83:23:91:5f:c4:da:ae:67:d6:57:2d:77:04:d3:44:f9:65:
81:fd:b2:af:7f:fe:6c:50:42:36:91:52:0a:7f:44:fe:bd:45:
4d:99:51:d7:03:d9:aa:f9:6c:99:50:56:8f:e3:6c:de:63:75:
f1:82:e1:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:16 2024 by rpki-client on console-fra.rpki-client.org