Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/OBA4coU2nbhMy1MwUeKPz-tp50g.roa
File: OBA4coU2nbhMy1MwUeKPz-tp50g.roa (raw, json)
Hash identifier: UCAVDhDVdjReR9/TmG+ESyeqR6oA/KXGK4zzWtLMUxk=
Subject key identifier: 38:10:38:72:85:36:9D:B8:4C:CB:53:30:51:E2:8F:CF:EB:69:E7:48
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CC493334FEA832B5C7D205575189C24F2
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/OBA4coU2nbhMy1MwUeKPz-tp50g.roa
Signing time: Mon 01 Jan 2024 10:30:30 +0000
ROA not before: Mon 01 Jan 2024 10:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 86.107.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jan 2024 13:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:33:4f:ea:83:2b:5c:7d:20:55:75:18:9c:24:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 10:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3810387285369db84ccb533051e28fcfeb69e748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7f:c4:0d:f0:03:61:55:57:ad:33:9a:f2:08:
f7:34:45:12:4b:ee:12:a9:3a:78:d2:5c:0e:ed:fb:
80:d6:4a:9a:68:30:60:68:06:48:6e:5f:48:94:ef:
fc:ae:4d:09:1e:8e:cf:7b:0a:0d:3c:39:61:0e:19:
32:8a:a5:f4:54:a0:eb:f3:20:ef:2e:a3:e2:f9:fc:
ab:bd:cc:b3:2a:d9:dd:35:fe:4a:9b:ee:4e:95:cd:
06:94:0e:01:34:50:a5:e3:35:82:d5:b1:1b:3a:ae:
64:35:48:ea:bb:d5:6d:c2:28:b2:5a:e9:c7:d4:57:
b8:58:e5:ce:29:73:b1:67:bd:6b:9b:23:0b:b2:0a:
db:80:bf:8d:f4:36:9b:d2:f3:58:d5:55:f8:a3:87:
c9:b4:08:45:8a:ab:f8:36:db:ed:28:eb:58:c7:67:
ed:79:45:56:8c:04:99:b8:7e:1f:67:3e:ce:ce:fe:
78:41:49:7d:03:5e:97:6e:86:a6:47:df:ca:13:e6:
e1:66:0f:18:e2:7d:80:b2:51:1a:9c:8b:33:59:2f:
75:47:a6:7c:d1:cc:8e:92:81:8c:f2:42:ee:3f:72:
e2:4c:5e:75:01:34:00:ef:0d:c8:6f:c0:3b:65:57:
6e:38:36:27:66:81:14:e5:83:d2:cb:a0:bd:7f:38:
38:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:10:38:72:85:36:9D:B8:4C:CB:53:30:51:E2:8F:CF:EB:69:E7:48
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/OBA4coU2nbhMy1MwUeKPz-tp50g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.51.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:50:3a:c7:ea:02:05:6c:ce:a1:8b:fa:a2:bd:87:31:55:6f:
05:06:78:92:c8:c6:d4:75:e9:b0:48:a3:be:01:4c:c4:a4:08:
82:7d:29:f9:4e:ef:45:0c:a8:ad:59:06:2b:b3:a2:60:bd:15:
4c:ad:ac:01:99:6f:9c:cc:9c:ce:bf:0c:78:d7:3c:dc:e0:ca:
11:14:eb:62:82:7f:3a:01:0a:f3:22:36:b2:67:c9:ae:9b:0e:
d4:dd:72:ac:54:df:7d:57:bb:b6:05:45:63:6b:2a:16:e3:26:
90:ac:6c:2d:41:53:16:aa:c2:a5:ad:f3:de:2c:de:01:8d:52:
56:fa:fe:fe:4b:55:53:6a:c8:cb:6c:4e:02:f2:cd:cc:70:b4:
5f:26:74:58:99:f0:f4:8b:a3:2e:9e:86:ca:7a:16:73:bd:c3:
2a:bb:e2:31:3d:75:e7:5f:32:60:1c:5a:b3:3c:cd:32:09:fc:
fc:a3:15:1c:0b:ae:fd:91:57:27:d0:10:3c:e5:83:e7:30:ab:
f7:df:04:7c:b6:ce:ff:30:66:e4:2e:12:5c:0a:e6:b4:fb:b8:
06:ca:6d:bf:6f:3f:ef:03:b4:79:a3:2a:cd:8e:f6:cd:43:b8:
e6:dc:09:03:4c:70:78:a2:ca:88:08:1c:9a:a3:10:17:ab:29:
70:c8:2e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org