Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74bd35-0aa8-4718-8900-ccbb6e90a19b/1/oBBlF_zOg8WsDnKsdZrodmJhYRc.roa
File: oBBlF_zOg8WsDnKsdZrodmJhYRc.roa (raw, json)
Hash identifier: 5G9EtT3C2RstSCoVynSgtMBjuUYT/mfJXgqizZvbyDY=
Subject key identifier: A0:10:65:17:FC:CE:83:C5:AC:0E:72:AC:75:9A:E8:76:62:61:61:17
Certificate issuer: /CN=9e475c9202606e6667e94a779e903db697a59025
Certificate serial: 018FA555EB289E59E8BA0F65091DC49864AD
Authority key identifier: 9E:47:5C:92:02:60:6E:66:67:E9:4A:77:9E:90:3D:B6:97:A5:90:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkdckgJgbmZn6Up3npA9tpelkCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74bd35-0aa8-4718-8900-ccbb6e90a19b/1/oBBlF_zOg8WsDnKsdZrodmJhYRc.roa
Signing time: Thu 23 May 2024 12:03:42 +0000
ROA not before: Thu 23 May 2024 12:03:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214837
IP address blocks: 193.53.82.0/24 maxlen: 24
2a14:57c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 22 Nov 2024 09:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a5:55:eb:28:9e:59:e8:ba:0f:65:09:1d:c4:98:64:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e475c9202606e6667e94a779e903db697a59025
Validity
Not Before: May 23 12:03:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0106517fcce83c5ac0e72ac759ae87662616117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:75:b7:c8:fe:1e:21:55:28:0a:e1:5e:6d:43:
11:fb:17:3e:b2:e4:14:50:58:b3:9c:d9:d4:4f:df:
c1:7e:e0:4c:75:73:fc:7d:70:23:c9:7d:49:93:b6:
35:73:02:b2:62:ac:8d:49:02:fc:e2:7a:c0:00:13:
b1:8c:6b:3a:10:ff:19:cc:ec:76:b7:e9:6f:87:dc:
ac:54:b3:88:b0:c5:46:3b:85:45:5f:57:cd:ff:d7:
78:f5:dd:7a:06:c3:a0:d5:99:5c:54:45:45:30:fb:
4e:84:41:46:63:ac:4d:97:96:c6:63:64:a1:51:b2:
aa:bc:19:8f:f5:4b:b5:32:e2:62:f2:59:ed:23:62:
12:8e:a7:9c:51:e0:81:89:6d:53:3b:9d:6c:e9:59:
cd:9d:8a:07:c5:92:cd:9e:a1:92:34:30:94:1d:fa:
fd:d7:6c:bb:58:7d:40:33:57:25:6f:74:17:62:ac:
91:2a:b7:c2:c9:8e:ec:69:95:6c:69:17:03:e3:c3:
7a:82:ed:f3:ea:e2:71:df:ee:d5:ed:50:67:30:f1:
eb:b4:85:bb:60:6b:76:de:19:22:a0:6b:73:a0:bd:
61:56:92:38:d0:69:1b:20:8a:23:4a:cb:45:a5:ab:
0b:0a:82:71:58:42:90:ec:11:0e:1e:a0:1b:5a:4a:
74:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:10:65:17:FC:CE:83:C5:AC:0E:72:AC:75:9A:E8:76:62:61:61:17
X509v3 Authority Key Identifier:
keyid:9E:47:5C:92:02:60:6E:66:67:E9:4A:77:9E:90:3D:B6:97:A5:90:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkdckgJgbmZn6Up3npA9tpelkCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74bd35-0aa8-4718-8900-ccbb6e90a19b/1/oBBlF_zOg8WsDnKsdZrodmJhYRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74bd35-0aa8-4718-8900-ccbb6e90a19b/1/nkdckgJgbmZn6Up3npA9tpelkCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.82.0/24
IPv6:
2a14:57c0::/29
Signature Algorithm: sha256WithRSAEncryption
01:93:29:35:d9:f1:84:78:af:67:ad:27:9a:32:0b:71:c4:e2:
35:19:c3:7e:32:5f:9d:aa:8b:54:b7:52:c9:59:c1:ef:96:72:
b9:99:b2:c3:e6:a1:f0:8d:71:ec:a3:d7:2f:52:95:5d:4e:f1:
0b:12:f2:24:59:f0:9e:9a:a6:1c:fa:be:65:1b:d5:90:65:4a:
6e:c8:97:bc:9d:aa:c3:f5:26:e6:ad:fc:2f:3c:a4:70:38:ef:
3f:81:00:c4:f7:2b:11:48:08:cb:9c:a5:bc:33:d1:81:ba:eb:
4a:3d:84:d2:e5:59:dd:22:9b:52:89:fb:f0:36:8e:ca:3c:a0:
6a:f0:dd:c8:50:de:a8:ce:8c:1a:b6:74:e7:af:a5:16:ea:75:
9f:7b:13:7c:09:5d:b0:f9:30:09:ba:a3:61:ed:c5:06:17:ab:
e1:f3:18:5c:a6:f9:a2:10:73:61:da:1a:93:83:ab:cd:eb:32:
89:da:46:4e:0e:b0:9a:f0:98:20:6a:b3:a7:ca:49:c1:c9:ba:
3a:bc:11:c5:73:9b:49:47:28:0c:ee:52:92:db:8d:65:28:52:
b3:de:b5:55:44:ed:d6:98:0d:9e:bb:02:f1:0e:da:66:ca:a8:
bf:d5:d3:59:41:20:41:07:58:22:11:d1:5b:0d:61:74:24:7c:
3f:93:00:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:52:49 2024 by rpki-client on console-ams.rpki-client.org