Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/oMUgEdE1J5Zqpg6u2HoyhXkqR5E.roa
File: oMUgEdE1J5Zqpg6u2HoyhXkqR5E.roa (raw, json)
Hash identifier: GcROeGZq0csH/99tOzZ+jLuEyznmjreqfQCdmkgnyrE=
Subject key identifier: A0:C5:20:11:D1:35:27:96:6A:A6:0E:AE:D8:7A:32:85:79:2A:47:91
Certificate issuer: /CN=5975d519de239cf164cb94a6660c2530ceaef254
Certificate serial: 018ADC00CBFBE635C898EAD982C69C26D3AE
Authority key identifier: 59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/oMUgEdE1J5Zqpg6u2HoyhXkqR5E.roa
Signing time: Thu 28 Sep 2023 13:35:54 +0000
ROA not before: Thu 28 Sep 2023 13:35:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 85.11.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Sep 2023 21:13:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:dc:00:cb:fb:e6:35:c8:98:ea:d9:82:c6:9c:26:d3:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5975d519de239cf164cb94a6660c2530ceaef254
Validity
Not Before: Sep 28 13:35:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0c52011d13527966aa60eaed87a3285792a4791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4b:aa:b6:56:e7:8c:83:35:8e:e5:de:76:71:
2b:ce:b7:2d:c6:3a:19:2d:a1:f6:6f:0d:74:1a:d9:
cb:91:da:7d:e9:c8:7d:62:9b:ee:f2:e4:e5:c7:3d:
b5:43:69:22:30:e8:8b:a1:dc:f0:fa:62:c1:64:4a:
43:e6:1e:d9:d2:2d:02:1d:59:ba:9b:5c:26:17:17:
68:f3:d7:32:9a:7d:c8:31:fb:3d:80:3b:56:b9:06:
51:48:f7:fb:5b:75:8d:f9:f0:66:6b:4c:61:95:46:
a9:48:9e:3b:08:23:97:be:de:52:6b:25:05:67:e6:
c8:48:5b:df:23:d4:c9:21:80:5f:45:05:a9:d9:7d:
8f:22:50:85:3c:6a:39:8d:9c:0b:a2:bf:4c:03:33:
c6:d2:d9:25:38:45:38:f5:dc:b8:d5:6c:2f:26:e6:
de:0e:e4:97:fa:9f:e1:2c:be:f6:82:74:ab:22:f4:
c8:0b:7f:e7:51:06:cd:7c:54:81:18:0f:ff:c3:9c:
8d:f8:2c:54:ec:b0:f0:f1:bf:ac:49:89:83:85:a3:
79:b8:4e:6b:77:c9:ac:36:4c:61:64:68:4c:1a:6a:
f1:a3:0a:71:36:12:3d:ba:0b:ff:5d:a9:30:a5:b3:
9d:6b:9d:e0:9f:c6:8f:bf:6b:10:1e:65:57:2e:d9:
ce:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C5:20:11:D1:35:27:96:6A:A6:0E:AE:D8:7A:32:85:79:2A:47:91
X509v3 Authority Key Identifier:
keyid:59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/oMUgEdE1J5Zqpg6u2HoyhXkqR5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.11.167.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:b5:84:8a:b1:7c:1f:ba:04:e9:da:38:2d:1b:57:8b:59:47:
bf:37:4e:fb:34:68:51:61:ad:ed:55:32:8f:e8:81:79:59:06:
74:f8:b6:85:21:27:4e:cb:ff:eb:79:28:4a:0b:37:86:d8:c0:
0b:c9:ab:e3:25:31:b2:7e:9b:5c:69:d3:ad:0c:04:1e:be:99:
05:93:73:4b:2c:97:59:07:01:04:d7:db:9d:2e:87:a7:44:b4:
3e:d6:7f:e1:71:6b:b6:aa:21:dd:1b:f9:8b:97:b2:12:a3:8e:
77:24:11:88:07:4f:b5:46:ea:36:c3:63:84:9c:ad:ef:3f:cd:
42:01:eb:68:73:90:e8:94:c5:00:73:b6:d1:0f:bd:39:b7:04:
1c:86:66:d3:73:5c:dc:c0:65:3a:3f:bf:f9:1e:01:65:92:7b:
43:a6:34:09:18:30:35:d8:3e:3f:0e:6f:21:0c:98:9c:42:22:
a3:0f:e4:a9:ca:1b:65:19:8a:fa:96:39:79:84:28:ec:74:6d:
02:9c:3c:4a:4a:49:47:19:4f:b1:60:de:9d:59:f6:5d:ee:df:
9d:b2:88:de:30:e5:57:cb:aa:24:0b:4b:da:8c:d6:2b:db:84:
c5:f5:cc:c0:bd:d3:bb:57:4d:00:10:3a:14:e8:d9:51:92:b5:
f6:d3:31:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:27 2024 by rpki-client on console-fra.rpki-client.org