Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/OzCCVp2In3cshdXHN4nUDm56N5M.roa
File: OzCCVp2In3cshdXHN4nUDm56N5M.roa (raw, json)
Hash identifier: la+86zoltKCSCjxy+b6hrPAm44YDwDZWVKCdm9Xlmn4=
Subject key identifier: 3B:30:82:56:9D:88:9F:77:2C:85:D5:C7:37:89:D4:0E:6E:7A:37:93
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189FD0E6CA407E9CE5A380ECA8F343A370F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/OzCCVp2In3cshdXHN4nUDm56N5M.roa
Signing time: Wed 16 Aug 2023 06:35:28 +0000
ROA not before: Wed 16 Aug 2023 06:35:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 45.88.13.0/24 maxlen: 24
45.88.14.0/23 maxlen: 23
188.214.107.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Aug 2023 06:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fd:0e:6c:a4:07:e9:ce:5a:38:0e:ca:8f:34:3a:37:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 16 06:35:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b3082569d889f772c85d5c73789d40e6e7a3793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:54:92:25:02:10:d0:26:d0:52:d2:46:b1:99:
18:4b:e2:e9:8e:00:f5:7b:21:c1:a9:7c:e6:2e:d7:
46:f0:fa:75:47:05:53:0f:22:fb:79:ef:9a:df:34:
1c:a5:ba:89:0a:c7:10:9c:20:3a:20:cd:ef:d1:fa:
6f:2a:49:64:ea:85:d1:a6:c4:e9:98:6d:72:3b:3b:
7b:60:8d:cc:86:0a:72:b7:46:13:2a:5b:1b:35:b8:
fd:e6:81:2e:53:34:06:98:93:97:47:78:15:dc:42:
e7:31:cc:f2:5e:b5:27:13:c4:ba:3d:b8:a3:e8:9d:
da:12:69:53:9c:41:2a:6d:ea:10:bd:a9:7e:2b:6e:
4b:8d:1a:fb:20:2b:f3:cc:65:39:49:5c:6a:40:cc:
de:17:6d:f4:30:d7:d0:08:c4:09:80:0d:45:19:89:
86:16:b1:04:01:f9:d5:5c:df:f9:3f:04:3d:51:f7:
84:fc:2b:e9:23:9f:78:a6:2d:8e:fd:74:fc:f2:f3:
cf:39:ff:31:fc:e0:70:c8:a0:f0:c7:b0:1b:7c:49:
07:91:79:b9:d7:c6:13:a3:8d:d0:35:83:12:b6:18:
25:1a:40:ec:6f:35:74:94:b8:61:d6:ca:f1:83:5d:
b4:a8:72:39:5e:5e:fb:a7:c2:f1:a1:71:19:95:5b:
98:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:30:82:56:9D:88:9F:77:2C:85:D5:C7:37:89:D4:0E:6E:7A:37:93
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/OzCCVp2In3cshdXHN4nUDm56N5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.13.0-45.88.15.255
89.35.130.0/23
188.214.107.0/24
Signature Algorithm: sha256WithRSAEncryption
01:0f:d9:5e:67:de:bc:f1:1a:1a:36:bc:ac:8c:c0:8b:7c:43:
4b:23:71:26:9a:d9:1c:93:fd:12:db:08:66:13:46:f5:af:d8:
c5:ac:e2:fa:de:11:39:6b:d9:da:96:4e:ee:7d:1e:35:b8:ed:
b0:fc:84:7f:dc:1a:13:2b:e0:20:54:42:18:33:18:ab:f8:66:
c8:74:02:f6:b2:43:2a:d6:ac:14:08:33:fc:ec:68:8f:1c:13:
fb:8d:de:58:57:f4:7f:8f:3c:17:6e:5c:0d:d2:da:40:2c:ff:
bc:af:68:c1:6d:ae:f0:3a:8f:71:5c:4d:34:95:8e:4e:97:58:
f2:04:76:8d:be:bf:dc:5f:cc:cd:c3:33:df:13:0e:da:1d:09:
1b:ba:ae:37:68:8e:53:db:bf:f8:f3:9d:79:d4:23:09:81:e4:
ac:f5:15:92:2f:68:92:7e:24:42:cd:2c:2b:1a:e7:49:9e:c3:
fc:61:29:27:51:6e:f9:b3:37:28:47:d2:90:7b:9a:eb:82:55:
8c:9e:70:e8:57:f1:09:db:96:43:9c:43:04:3a:5a:90:25:ce:
83:e4:a6:52:22:7d:1a:57:83:2d:51:c7:12:a2:61:47:6e:05:
bf:0f:20:8f:6b:43:bc:73:e4:0a:67:d9:be:21:f1:11:1c:66:
9f:1f:ac:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org