Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/ocwRRiC5pteMhAGThNFonLzSDLY.roa
File: ocwRRiC5pteMhAGThNFonLzSDLY.roa (raw, json)
Hash identifier: kh05uUdVIJp6+Z7e7o8kBtbdooT6FOsVLUBJCKr60Qg=
Subject key identifier: A1:CC:11:46:20:B9:A6:D7:8C:84:01:93:84:D1:68:9C:BC:D2:0C:B6
Certificate issuer: /CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Certificate serial: 018C3A072129970900CB4E7DFE61E839BEAC
Authority key identifier: 15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/ocwRRiC5pteMhAGThNFonLzSDLY.roa
Signing time: Tue 05 Dec 2023 12:49:54 +0000
ROA not before: Tue 05 Dec 2023 12:49:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206281
IP address blocks: 159.253.0.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3a:07:21:29:97:09:00:cb:4e:7d:fe:61:e8:39:be:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Validity
Not Before: Dec 5 12:49:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1cc114620b9a6d78c84019384d1689cbcd20cb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dd:71:f2:07:10:80:e5:22:15:c2:53:55:bf:
8a:f1:88:24:3b:95:83:b2:3d:46:9a:d1:ac:55:74:
82:14:60:5c:5f:b0:fb:7b:f7:fa:18:6b:85:dd:a5:
89:a7:69:fe:4c:55:35:36:c6:1a:b0:56:91:57:93:
e4:33:71:34:6f:55:dd:b0:80:7a:48:24:ce:6e:56:
8d:92:54:64:55:ed:c1:43:d3:51:e2:1e:55:9e:c9:
58:c1:e8:94:4e:37:33:70:16:fe:de:25:94:be:1b:
68:c4:45:6c:4c:fa:6a:b5:a8:c8:86:9b:4d:6a:ca:
f1:39:45:5e:30:70:d4:4b:eb:6e:20:10:10:c0:b4:
59:36:65:04:c7:fb:9c:35:f8:3b:b7:64:b2:a9:f3:
d9:ba:e3:84:ec:e5:95:d1:86:0e:c5:39:69:02:62:
68:89:28:98:d3:21:a4:86:cb:06:68:e3:09:67:cd:
15:78:78:32:c8:71:43:bb:e9:25:68:67:48:51:6b:
c9:55:53:f4:22:e4:69:85:53:b4:5c:46:5f:19:ff:
61:9c:2e:6f:92:f8:ae:63:28:98:5a:d9:11:14:2b:
12:41:ea:29:2e:ce:f4:8f:d0:a2:93:67:03:7e:ab:
8f:c4:8b:31:7a:dc:82:5a:c4:50:c0:96:93:6b:d7:
08:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:CC:11:46:20:B9:A6:D7:8C:84:01:93:84:D1:68:9C:BC:D2:0C:B6
X509v3 Authority Key Identifier:
keyid:15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/ocwRRiC5pteMhAGThNFonLzSDLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.253.0.0/24
Signature Algorithm: sha256WithRSAEncryption
15:8c:f2:c2:cf:15:c7:b9:a3:79:99:29:0c:54:4b:4e:06:fa:
61:9b:6c:6a:b7:e9:99:04:80:3e:08:16:e8:12:df:a4:5a:e4:
34:46:9d:64:fe:ad:af:11:49:17:3e:48:9d:69:a5:c6:b4:4b:
e2:e9:2e:8f:f5:16:68:ee:eb:ae:a9:87:78:ab:3b:7b:ca:3c:
71:a7:74:2e:a1:22:d7:85:f7:4f:ad:1f:01:3e:16:53:e0:36:
a8:10:8f:74:7a:ee:11:fd:bf:f2:6c:c6:23:75:89:3d:96:6f:
56:53:a5:f7:dd:aa:a6:8e:22:f0:88:88:b9:fa:33:0c:bc:7e:
8a:16:11:18:44:5b:a1:12:5c:db:5c:e1:5f:e4:9d:fa:8d:65:
5e:96:51:bb:a3:e0:d9:74:65:90:bf:92:54:d7:6e:48:93:13:
2b:41:3c:89:cb:e9:af:db:74:aa:1c:82:ad:7d:20:87:52:f1:
aa:14:29:14:bd:84:ea:a2:f5:82:30:3f:d9:72:94:57:9a:05:
a7:14:c0:d6:fe:0b:15:29:cb:f0:81:e8:2b:0e:65:af:50:44:
64:77:94:df:dd:ca:c8:6e:d8:fd:27:8d:7c:0b:01:4c:2c:59:
8d:c8:a9:85:3a:f9:d1:66:53:37:8d:0e:ea:84:bc:11:88:6e:
b3:86:33:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:44 2024 by rpki-client on console-ams.rpki-client.org