Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/oSdr_6c1zHItRqc21iG56jw4vW0.roa
File: oSdr_6c1zHItRqc21iG56jw4vW0.roa (raw, json)
Hash identifier: FFJohPq/IRV7BexwBFog7OYkS6b0SqTm5kLfMJwyAAc=
Subject key identifier: A1:27:6B:FF:A7:35:CC:72:2D:46:A7:36:D6:21:B9:EA:3C:38:BD:6D
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0185A5D344B9DDA6DDCF64C9B304F99DF836
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/oSdr_6c1zHItRqc21iG56jw4vW0.roa
Signing time: Thu 12 Jan 2023 11:52:44 +0000
ROA not before: Thu 12 Jan 2023 11:52:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199994
IP address blocks: 144.208.214.160/27 maxlen: 27
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a5:d3:44:b9:dd:a6:dd:cf:64:c9:b3:04:f9:9d:f8:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 12 11:52:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1276bffa735cc722d46a736d621b9ea3c38bd6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0d:07:b0:94:19:65:fc:2a:95:b5:14:4c:36:
72:86:d0:d7:f7:4f:f8:b0:47:3a:8e:85:5e:e9:94:
7d:42:2c:e2:0b:73:f8:8e:45:6a:8d:13:ba:12:4f:
03:fb:95:3a:b5:3b:b9:14:7d:8b:c6:db:0f:21:06:
f3:22:3e:29:2e:66:fc:66:b4:66:44:81:01:55:4a:
c4:58:ff:dc:8d:31:30:57:77:4f:c5:42:e2:b3:dd:
fc:81:dc:b0:98:d6:b7:38:b7:28:80:09:fe:94:9e:
c0:bb:1e:e3:ee:82:b1:c8:cf:b0:bd:ed:d1:24:19:
43:f5:ee:83:5d:18:59:30:65:64:dd:67:37:00:49:
39:cb:a7:a3:5e:bc:2e:a1:5f:d5:12:1b:b8:2e:8d:
9e:50:02:30:e6:a8:ec:5b:c0:98:a7:81:88:69:17:
f5:1d:6e:39:39:22:fd:f6:0d:65:0c:23:85:24:ed:
fe:12:0f:35:64:f3:98:54:e0:27:7a:ff:db:a1:b4:
29:ef:0b:71:1a:7c:5f:79:d2:9c:4a:99:73:92:32:
2e:8c:0a:c9:e4:20:5b:2c:ca:33:b7:cc:b3:62:2f:
f1:12:7b:fa:29:91:1f:fb:28:94:29:d3:7b:e5:f1:
dd:3b:67:04:9a:d8:24:5d:ec:c3:07:d2:98:53:5b:
f5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:27:6B:FF:A7:35:CC:72:2D:46:A7:36:D6:21:B9:EA:3C:38:BD:6D
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/oSdr_6c1zHItRqc21iG56jw4vW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.214.160/27
Signature Algorithm: sha256WithRSAEncryption
a6:b4:80:49:80:db:3c:56:aa:b9:0c:d8:ea:c4:48:76:55:8b:
b3:3d:4b:53:4f:25:6b:d0:69:60:9f:b7:81:4c:de:e8:4f:6b:
63:56:76:c9:40:a0:df:96:66:83:a5:db:4e:7a:bd:27:dd:2c:
f9:e4:7a:59:7f:7a:71:6e:fc:e8:81:09:d8:a2:bc:de:3b:52:
c0:ca:45:44:41:4c:e2:ab:22:7a:a7:49:35:68:c0:16:89:ea:
76:60:81:9c:80:61:9a:87:cc:1e:e7:7c:29:8c:70:70:fe:76:
4e:5a:b6:c8:e4:5d:da:05:4e:78:f4:e0:77:e8:d7:59:ed:ba:
36:89:f2:b2:71:06:55:35:d5:2d:f1:4f:3b:a8:f6:a0:f6:3f:
c5:82:fa:5b:9e:58:a9:1e:f9:dd:4c:28:75:76:a9:88:21:b4:
89:e0:60:36:4a:5a:4b:92:72:82:80:f5:e0:49:0c:44:06:ca:
1c:e7:1e:f5:1b:19:b2:00:ce:a2:2d:17:66:ec:a5:16:c4:d2:
51:35:db:67:20:e3:53:fd:92:df:69:bc:5e:51:ee:15:3c:83:
f0:92:90:27:47:7a:d9:73:b7:99:0d:1e:ea:72:fe:5a:57:9e:
ed:1d:af:2d:9e:13:d3:69:31:1f:45:f8:ff:02:7c:40:85:64:
59:46:7b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org