Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/uOGA2UBpAHU0x9rqu8BR-prH3dM.roa
File: uOGA2UBpAHU0x9rqu8BR-prH3dM.roa (raw, json)
Hash identifier: qmHCHwmG1TcWoO/Tz7DUPz3HQ6GGtNmg2Az/tmoE58g=
Subject key identifier: B8:E1:80:D9:40:69:00:75:34:C7:DA:EA:BB:C0:51:FA:9A:C7:DD:D3
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018C682E562DA0746CDD3C4D690C767AB35C
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/uOGA2UBpAHU0x9rqu8BR-prH3dM.roa
Signing time: Thu 14 Dec 2023 11:55:16 +0000
ROA not before: Thu 14 Dec 2023 11:55:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 92.246.134.0/23 maxlen: 32
94.141.100.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:2e:56:2d:a0:74:6c:dd:3c:4d:69:0c:76:7a:b3:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Dec 14 11:55:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8e180d94069007534c7daeabbc051fa9ac7ddd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:33:61:3d:40:88:9c:71:2d:11:ea:e8:e3:c4:
54:3d:d1:b4:0c:38:1b:2c:f9:93:0c:60:68:81:b8:
db:87:b4:65:75:e5:df:be:2a:73:ea:35:bc:52:df:
f7:5f:0e:b5:43:15:7c:88:df:58:c0:27:e9:cb:68:
2b:2a:4b:4f:41:63:f9:0c:6d:61:94:2c:1c:93:12:
db:ab:d0:71:f9:13:a3:ad:41:61:f1:96:b9:a7:b4:
29:b3:0a:6f:6c:2b:7d:62:52:33:f9:cb:84:32:37:
76:ce:23:4b:b6:aa:09:9d:4f:93:23:3a:de:48:8d:
67:c4:07:31:dd:75:43:36:f5:cc:bb:3e:14:94:d9:
bf:5c:9a:c5:34:b2:f9:4d:fd:33:f9:ca:01:cf:51:
c9:95:66:ae:fc:e7:c0:6f:16:ea:c2:0f:ed:32:4b:
fe:ca:5c:49:e6:ef:02:15:d0:e4:a9:5c:dc:00:20:
df:92:a9:9f:6d:3e:83:70:89:3f:32:de:6d:e7:1e:
cd:ba:62:b1:9a:01:b0:a9:78:c1:cc:88:9d:60:67:
ba:ff:6b:63:6e:5a:93:1c:fc:21:e9:9e:a4:69:da:
09:19:f1:91:d6:13:ef:fd:8c:70:d7:27:39:0a:7b:
c8:c8:3d:9b:d8:0c:1f:c4:a6:a2:a7:5b:f5:f3:6b:
65:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E1:80:D9:40:69:00:75:34:C7:DA:EA:BB:C0:51:FA:9A:C7:DD:D3
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/uOGA2UBpAHU0x9rqu8BR-prH3dM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.246.134.0/23
94.141.100.0/22
Signature Algorithm: sha256WithRSAEncryption
15:b8:f0:f4:17:df:32:67:60:1e:c2:e8:70:0d:64:ac:7e:ad:
08:b5:31:7e:71:60:8e:f4:d1:e0:88:48:09:db:1a:82:fa:6c:
83:20:27:a5:30:f1:d6:86:52:e8:6f:3e:49:42:7a:d8:fb:4e:
a4:87:60:c2:9b:2e:ec:44:5b:3c:55:8d:bd:83:1f:80:27:49:
86:02:a4:b2:b8:cc:64:7e:c4:b2:98:28:43:57:06:80:8e:9d:
1e:ea:99:37:af:3d:cf:bd:de:31:88:d2:63:9a:52:38:b0:88:
7d:58:10:fc:2d:c4:7c:b7:04:20:e4:92:dc:b5:4f:4a:4d:46:
0d:8b:eb:f3:8b:a7:85:2f:a3:db:42:87:38:78:44:2d:b4:fc:
55:0a:fd:56:bb:c8:41:8c:29:6f:b0:08:14:f4:77:f7:55:55:
42:bf:68:d8:35:24:64:d8:e0:45:bc:b0:a0:41:06:0c:b7:52:
7a:11:29:32:2d:5d:59:22:1c:f1:19:ed:56:b9:f0:d7:2d:3c:
ae:f8:4f:8a:9b:71:51:e4:75:d2:c3:e4:70:1b:fb:7e:e8:cd:
2a:62:17:7d:47:b2:ec:3b:63:10:c2:43:0a:58:90:15:c4:cd:
5c:a8:8e:7c:ee:08:13:86:de:8a:1a:d3:c3:d2:a8:68:d3:5c:
e7:79:a7:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org