Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/fOJxaxOLW3mVkuu_nU3qJvwPRa4.roa
File: fOJxaxOLW3mVkuu_nU3qJvwPRa4.roa (raw, json)
Hash identifier: Egf5FNloyaP9X3QJhhhoRZuM9hRkwcOzl5Qugdr31RY=
Subject key identifier: 7C:E2:71:6B:13:8B:5B:79:95:92:EB:BF:9D:4D:EA:26:FC:0F:45:AE
Certificate issuer: /CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Certificate serial: 0186310AE3B89CF41B95DC31656F4510A1EF
Authority key identifier: 3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/fOJxaxOLW3mVkuu_nU3qJvwPRa4.roa
Signing time: Wed 08 Feb 2023 12:40:42 +0000
ROA not before: Wed 08 Feb 2023 12:40:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48951
IP address blocks: 93.122.84.0/22 maxlen: 22
93.122.80.0/22 maxlen: 22
93.122.88.0/22 maxlen: 22
93.122.92.0/22 maxlen: 22
93.122.56.0/22 maxlen: 22
93.122.60.0/22 maxlen: 22
93.122.64.0/22 maxlen: 22
93.122.68.0/22 maxlen: 22
93.122.72.0/21 maxlen: 21
78.140.64.0/24 maxlen: 24
78.140.64.0/21 maxlen: 21
78.140.67.0/24 maxlen: 24
78.140.66.0/24 maxlen: 24
78.140.68.0/24 maxlen: 24
78.140.65.0/24 maxlen: 24
78.140.64.0/18 maxlen: 18
78.140.72.0/22 maxlen: 22
78.140.72.0/24 maxlen: 24
78.140.76.0/24 maxlen: 24
78.140.76.0/22 maxlen: 22
78.140.81.0/24 maxlen: 24
78.140.80.0/23 maxlen: 23
78.140.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Feb 2023 12:58:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:31:0a:e3:b8:9c:f4:1b:95:dc:31:65:6f:45:10:a1:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Validity
Not Before: Feb 8 12:40:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ce2716b138b5b799592ebbf9d4dea26fc0f45ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:67:1d:59:08:62:f0:a1:35:23:e2:dc:03:d6:
7c:f7:43:04:95:15:32:16:7e:69:22:33:5a:20:11:
37:56:72:16:37:83:18:08:bc:2e:6d:6b:f7:f9:ec:
92:22:af:88:99:4a:b2:e4:96:1e:fb:d7:06:7f:0d:
6a:af:85:ab:38:fa:63:47:0d:d8:ba:00:06:76:ae:
c9:d5:72:4e:e4:d0:3f:45:6e:70:b1:ae:fa:0f:14:
b4:9e:f8:7d:69:a6:8b:5d:ba:27:62:7e:4e:d0:c8:
25:f9:91:d0:38:2c:a7:02:87:3c:f6:8c:20:a6:9b:
18:c0:7e:94:c1:4e:77:a5:db:d8:d6:c4:29:9f:3b:
3d:44:2f:e4:74:ae:50:00:d8:f0:d5:de:12:3a:6b:
51:46:87:1d:b5:85:49:18:18:33:56:c9:20:b6:58:
f9:46:dd:e2:07:d7:d2:a5:3b:3c:b0:6e:d5:8c:99:
85:25:1b:d4:6f:f2:4b:3d:fc:da:3a:1b:b2:d6:cf:
05:a6:bd:7b:3f:12:78:2a:58:75:e3:d5:b6:e1:95:
d9:6b:4d:45:d1:1e:70:b5:c8:d3:9a:c7:7d:5a:bd:
61:0e:61:00:51:bb:5b:8f:26:43:76:ca:85:57:1f:
78:d5:f4:89:3a:05:cc:27:2c:31:e0:9a:b3:b6:67:
a1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E2:71:6B:13:8B:5B:79:95:92:EB:BF:9D:4D:EA:26:FC:0F:45:AE
X509v3 Authority Key Identifier:
keyid:3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/fOJxaxOLW3mVkuu_nU3qJvwPRa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/OyMEQv6un8Jri9iH-qDtAnWCelg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.140.64.0/18
93.122.56.0-93.122.95.255
Signature Algorithm: sha256WithRSAEncryption
5c:7e:69:4c:34:2b:37:3c:66:c3:ca:87:44:65:28:42:7b:06:
93:d5:9b:1e:e5:a3:94:75:80:a2:8a:77:87:7a:1b:34:84:c5:
d9:30:68:af:5b:c5:b4:25:5f:34:8c:62:d4:7a:9b:f3:c6:7a:
19:67:e7:11:3d:ab:a6:d1:ca:be:1d:d8:39:a5:24:ae:f5:0d:
06:7e:b8:88:e4:97:1b:b2:56:6e:b0:05:49:b9:d7:5f:f3:8e:
3d:9e:53:a1:c9:ff:61:17:13:91:84:32:d7:5b:ae:9f:7d:9b:
44:f2:04:c8:54:26:ee:e4:fd:d2:a4:8a:73:ad:69:53:88:48:
d4:48:c8:1d:1f:3e:8d:66:f6:01:db:5e:d0:ae:ca:8d:19:50:
15:08:df:73:3a:3b:61:cf:13:c8:37:19:4b:de:b2:55:19:95:
fc:b4:de:6e:29:36:97:04:c8:62:71:3d:d2:a1:56:e5:6a:36:
1d:4b:3e:98:d4:48:fd:5e:81:23:4c:f6:64:e8:8f:eb:3e:8b:
1e:74:fb:12:91:bc:f5:4a:9e:33:05:7c:6f:27:d7:67:0f:9c:
76:7d:bf:81:c6:c8:9e:6a:e5:2e:6f:7f:7f:f3:29:7b:ab:f9:
56:35:8c:83:57:69:d7:7d:3b:eb:73:9d:46:1a:52:42:7a:01:
d9:34:c3:76
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:00 2024 by rpki-client on console-fra.rpki-client.org