Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/08385a-1e81-41f2-8b85-9c293f71a80a/1/OccUiCIVyFr9tSk4R3BxN_3Qh1I.roa
File: OccUiCIVyFr9tSk4R3BxN_3Qh1I.roa (raw, json)
Hash identifier: mb48JGUQIDKcLLKRhxBo49LfYVepYHwbacajJIJ1B04=
Subject key identifier: 39:C7:14:88:22:15:C8:5A:FD:B5:29:38:47:70:71:37:FD:D0:87:52
Certificate issuer: /CN=76335eb633f76942bbe99f129a1eb88a4d73fc7c
Certificate serial: 018572D5C58B2C07185705FF239D971292AE
Authority key identifier: 76:33:5E:B6:33:F7:69:42:BB:E9:9F:12:9A:1E:B8:8A:4D:73:FC:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/djNetjP3aUK76Z8Smh64ik1z_Hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/08385a-1e81-41f2-8b85-9c293f71a80a/1/OccUiCIVyFr9tSk4R3BxN_3Qh1I.roa
Signing time: Mon 02 Jan 2023 14:14:50 +0000
ROA not before: Mon 02 Jan 2023 14:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207540
IP address blocks: 2001:678:bf0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:c5:8b:2c:07:18:57:05:ff:23:9d:97:12:92:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76335eb633f76942bbe99f129a1eb88a4d73fc7c
Validity
Not Before: Jan 2 14:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39c714882215c85afdb5293847707137fdd08752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:72:d6:bf:0f:83:2b:f6:b8:de:16:3a:3a:4c:
b9:a3:e9:d8:17:b7:e1:96:05:ac:3e:8d:f4:d8:1b:
a3:00:30:c4:54:16:10:0f:40:27:49:f1:c0:a1:a8:
e9:04:db:be:81:ad:df:0f:33:10:3f:6a:65:59:4b:
a6:aa:ae:01:61:e1:4a:e7:5e:8f:b1:2d:2a:41:4d:
fb:4b:af:f4:d5:9b:79:ca:fb:45:08:f1:37:d8:74:
65:c5:0e:b1:28:69:39:b2:23:6b:e8:3e:a7:8e:3b:
0a:4e:56:71:64:c8:a8:a8:70:5e:97:37:1f:24:ac:
8e:ca:b2:c9:30:b1:36:f7:cf:f9:d2:08:88:90:f6:
eb:12:f0:2b:3a:4a:f1:de:d6:5d:ad:2a:92:99:55:
ac:56:9c:44:9c:6a:9b:7b:e6:68:cb:6c:88:45:6f:
4b:5c:b5:f7:a3:a6:68:60:4d:b9:34:b3:f4:5d:31:
f7:6e:e6:52:63:1a:77:c8:f0:da:85:26:d2:73:20:
58:6b:a4:97:1e:9d:3d:01:94:a4:40:01:4a:9a:09:
cb:38:cf:8c:d8:2b:76:eb:a0:1c:db:13:34:ae:cc:
fd:a1:9b:74:05:69:5f:a7:a0:09:9c:c9:f8:8d:0b:
21:7e:e5:4d:3c:61:e9:e0:66:29:df:cd:62:36:24:
5c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C7:14:88:22:15:C8:5A:FD:B5:29:38:47:70:71:37:FD:D0:87:52
X509v3 Authority Key Identifier:
keyid:76:33:5E:B6:33:F7:69:42:BB:E9:9F:12:9A:1E:B8:8A:4D:73:FC:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/djNetjP3aUK76Z8Smh64ik1z_Hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/08385a-1e81-41f2-8b85-9c293f71a80a/1/OccUiCIVyFr9tSk4R3BxN_3Qh1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/08385a-1e81-41f2-8b85-9c293f71a80a/1/djNetjP3aUK76Z8Smh64ik1z_Hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:bf0::/48
Signature Algorithm: sha256WithRSAEncryption
77:a3:b0:7c:db:25:2a:92:90:72:99:05:03:dc:93:c3:fc:35:
50:3d:2e:26:e3:85:cf:80:7b:89:60:1f:b3:47:3d:13:9e:68:
e9:0c:1f:87:1d:32:a2:62:0a:e5:d0:26:d9:d0:96:b2:fa:77:
78:f9:b0:55:91:8f:d0:3f:f4:a9:b6:e8:2a:d6:a5:73:77:6a:
c8:ab:43:04:93:4d:62:0f:88:fc:ed:64:cb:d2:f6:3b:38:9b:
3f:6a:df:13:d8:8e:6d:0f:f9:79:17:a6:89:28:c0:0f:a4:9c:
69:cb:52:db:c3:ee:f0:6f:5b:2b:9c:f8:ff:a0:8b:b5:03:48:
eb:c2:27:4c:55:87:46:69:01:01:2a:f0:be:72:4e:45:df:ee:
a5:74:d2:75:b0:6e:6a:dd:17:ae:88:89:be:20:b3:79:a7:77:
c4:09:57:aa:e8:8b:99:ce:ce:4e:66:3f:99:ef:0a:ed:7b:39:
0d:08:d2:16:c9:00:cb:4f:76:cd:26:12:39:14:ea:19:97:ed:
00:57:86:37:f2:27:9d:1b:96:04:05:fb:51:29:96:a5:a6:dc:
23:66:df:97:74:ef:5f:7e:ca:8b:e1:34:5f:ae:cb:a7:49:d2:
98:7d:e1:eb:77:db:24:86:ca:23:e7:6a:8f:45:77:69:d1:fe:
85:11:e5:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:12 2024 by rpki-client on console-fra.rpki-client.org