Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/OJOguIzeMCWRZ4k5axP3omrFz70.roa
File: OJOguIzeMCWRZ4k5axP3omrFz70.roa (raw, json)
Hash identifier: PUJMZIYJT2qF9rLueHNky/+Pb/B4JBesudguAmnqxeM=
Subject key identifier: 38:93:A0:B8:8C:DE:30:25:91:67:89:39:6B:13:F7:A2:6A:C5:CF:BD
Certificate issuer: /CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Certificate serial: 018CC94D955547C946AB197F6B60BA106DF4
Authority key identifier: B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/OJOguIzeMCWRZ4k5axP3omrFz70.roa
Signing time: Tue 02 Jan 2024 08:32:33 +0000
ROA not before: Tue 02 Jan 2024 08:32:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25222
IP address blocks: 2a03:1c80::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 10 Jan 2024 09:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:95:55:47:c9:46:ab:19:7f:6b:60:ba:10:6d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0
Validity
Not Before: Jan 2 08:32:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3893a0b88cde3025916789396b13f7a26ac5cfbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fb:91:35:e7:2d:bd:b4:3f:89:f2:42:0c:4e:
ed:d8:52:98:37:76:e4:f5:17:05:58:8e:67:eb:17:
b0:12:cd:79:28:5b:28:2b:75:26:a7:34:e4:f6:5a:
9f:d7:cd:b8:fc:d8:bf:f9:89:10:60:d6:2c:6c:69:
85:09:dd:87:3c:eb:c0:52:44:de:2b:8c:a5:e9:39:
94:ef:09:34:14:10:0a:24:c7:39:9b:fc:d2:8a:f6:
3b:dd:5c:6d:d6:c8:b4:e5:1c:2f:7f:2f:c1:e7:fb:
82:2a:fb:d1:59:cb:19:a5:73:59:5c:2b:d6:42:ca:
60:54:4d:4e:ce:36:09:f5:45:93:7a:bc:30:45:ac:
db:c6:9e:ce:3a:c3:3c:b2:33:47:55:30:43:c5:88:
c4:b0:bf:3c:83:9e:88:ce:2c:13:49:af:ed:eb:9f:
94:1f:2e:af:cd:14:46:db:17:4a:21:0f:78:b1:7c:
e4:70:9b:ad:1d:e4:1b:f0:77:3c:5e:65:ea:db:81:
15:72:a3:08:02:8c:2c:89:b4:36:39:a2:f7:fd:1c:
38:9c:b2:68:ae:fc:d4:75:26:c3:a1:18:e1:6e:35:
22:c9:89:ff:d7:22:98:a2:41:43:f6:01:ca:59:69:
c7:a2:26:71:d8:c6:ff:fd:4b:4e:e8:6b:92:f3:6d:
5f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:93:A0:B8:8C:DE:30:25:91:67:89:39:6B:13:F7:A2:6A:C5:CF:BD
X509v3 Authority Key Identifier:
keyid:B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/OJOguIzeMCWRZ4k5axP3omrFz70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:1c80::/32
Signature Algorithm: sha256WithRSAEncryption
86:b6:87:99:fb:2d:e4:17:e4:3d:bb:79:06:30:a3:55:17:3b:
49:c2:f5:47:23:4e:29:ff:d2:70:b7:aa:55:43:77:a7:0e:4b:
c4:9a:06:af:44:73:1e:f6:d9:9a:05:58:03:90:96:fe:92:e6:
7c:54:74:76:0d:74:e8:38:9f:48:90:b7:cc:7b:8c:fa:67:ed:
f2:5d:2e:b6:1c:fb:46:c4:89:00:45:96:c2:0b:35:49:7d:70:
ca:ef:1a:ad:5b:03:1c:fb:62:7a:c2:3e:e7:a7:6b:91:6b:48:
90:9c:e7:0f:ad:3c:2e:88:03:9b:b2:06:7c:e2:92:48:4b:06:
90:96:dd:17:65:06:a5:a8:52:c0:17:7c:54:7c:ef:95:74:75:
2e:fe:65:d7:3a:67:a9:77:5e:0a:cb:de:92:7b:be:5e:0c:46:
fc:49:6f:79:c0:66:00:4a:45:bf:50:21:dc:96:18:f3:b3:af:
58:e4:80:4b:c6:0e:30:4d:d9:e7:8b:e7:2b:8b:4f:68:05:c1:
8d:88:0c:44:94:8f:bd:a1:04:93:6e:55:3d:83:58:98:2a:1f:
18:a9:2c:1f:77:be:d3:c2:d7:37:2f:8c:20:07:77:d7:7e:23:
b9:22:bc:3b:48:72:32:f3:24:32:8b:35:7d:22:7f:62:8e:80:
80:9d:bf:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 13:27:09 2024 by rpki-client on console-fra.rpki-client.org