Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/oifvqIau5Kd6DBL81EJ3KeSpQ1I.roa
File: oifvqIau5Kd6DBL81EJ3KeSpQ1I.roa (raw, json)
Hash identifier: lZ3lvR2LwKljZEp74lRwgPiGPygrKPJagCP+5BNs2gM=
Subject key identifier: A2:27:EF:A8:86:AE:E4:A7:7A:0C:12:FC:D4:42:77:29:E4:A9:43:52
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB840ABDFB3DCA3424ABFB6F3BBBF49
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/oifvqIau5Kd6DBL81EJ3KeSpQ1I.roa
Signing time: Sun 01 Jan 2023 09:44:52 +0000
ROA not before: Sun 01 Jan 2023 09:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16071
IP address blocks: 212.234.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:40:ab:df:b3:dc:a3:42:4a:bf:b6:f3:bb:bf:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a227efa886aee4a77a0c12fcd4427729e4a94352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:21:d1:13:b8:76:65:7c:ec:6c:28:34:15:5e:
f8:22:74:34:59:93:63:74:53:31:4a:d8:aa:5b:75:
48:b0:da:8f:fc:55:6f:fa:54:71:27:09:93:e9:f2:
7b:75:87:90:31:49:f7:7b:a2:76:c4:c4:18:54:04:
35:00:ad:bc:06:9e:41:99:40:1b:b6:4c:99:f2:95:
23:de:92:e4:e0:fa:00:03:cd:a6:00:9c:92:9b:28:
14:ac:e3:4a:ba:97:29:9a:89:29:fb:1a:ea:2d:d4:
f9:cd:ba:86:d3:30:b7:bf:1e:11:81:7e:81:8a:43:
63:ae:ea:43:c4:18:a0:ed:f0:81:85:6d:ed:8f:10:
32:0e:74:e8:8f:75:50:0b:56:ee:05:fc:1d:86:05:
9e:7d:7e:da:01:cd:8c:79:b9:07:cf:4f:9a:3b:24:
2b:72:ab:43:7e:05:52:38:ea:14:ec:38:41:1e:2e:
24:cc:62:dd:7c:4a:cd:7c:74:55:85:db:30:4b:f5:
0a:2e:3d:79:c8:79:04:42:b6:5f:4e:1a:c8:93:17:
b1:01:ab:f3:14:38:b4:d3:0d:82:34:be:a9:c4:49:
6b:4a:05:c0:65:0e:e7:55:e3:d8:91:43:6e:9d:87:
f7:27:10:60:c8:64:a5:4b:ea:6b:b1:5d:d4:0d:de:
69:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:27:EF:A8:86:AE:E4:A7:7A:0C:12:FC:D4:42:77:29:E4:A9:43:52
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/oifvqIau5Kd6DBL81EJ3KeSpQ1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.234.194.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:63:87:0b:be:54:2d:2d:c2:8b:79:d5:62:a3:ef:e7:ca:58:
68:f3:ab:23:3d:f4:6d:20:42:33:8b:5a:f7:5c:f6:6b:55:ba:
43:49:da:84:cd:7f:ae:cc:36:13:41:79:9e:66:53:34:38:43:
ce:00:94:1c:39:29:60:df:da:8b:bc:b2:5a:a1:bd:82:1c:44:
2c:8e:37:02:5e:5c:3d:16:51:48:e6:bc:97:2d:53:5c:3a:64:
75:92:ce:cc:3e:1c:8c:98:96:9a:bd:11:07:6d:24:56:db:45:
92:dc:f8:b4:d6:fa:00:59:5f:c6:b5:71:41:d2:e8:88:93:45:
b2:82:ee:2f:4e:65:49:d6:20:13:5e:4e:e9:ef:3f:cd:39:69:
75:ac:62:25:6b:3c:13:08:89:8e:f5:87:2d:72:34:c4:47:81:
e2:e8:b8:0a:b1:82:a4:89:43:c9:78:fe:ce:d3:50:c2:e6:a6:
b3:51:b0:00:30:3d:90:89:96:c4:d5:e3:ac:8e:1b:b9:39:84:
84:ad:ea:43:e1:b6:04:5e:56:54:dd:54:1f:5d:0b:01:ea:be:
87:1a:35:c7:6e:3c:af:8a:ca:7c:ba:d4:14:92:7e:3e:ea:65:
eb:a5:3e:41:e8:c8:f2:c4:ec:e6:6e:16:2f:d8:3a:c9:ae:c1:
9a:62:ed:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:52 2024 by rpki-client on console-fra.rpki-client.org