Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5c2584-5be6-4e58-b4f1-29e449318c56/1/oHgTIaqqpHRx-sD2_Xhb4QxoHas.roa
File: oHgTIaqqpHRx-sD2_Xhb4QxoHas.roa (raw, json)
Hash identifier: NWTggSDz0FSWP/N7L46b9dO7ck17Qqc3PSnChGHHAEU=
Subject key identifier: A0:78:13:21:AA:AA:A4:74:71:FA:C0:F6:FD:78:5B:E1:0C:68:1D:AB
Certificate issuer: /CN=8f9ecd7d4ed59f4ce6e344618caedb27d2a358da
Certificate serial: 0185708CA6C59DE7F2E7E6BB7F9CF0CD751E
Authority key identifier: 8F:9E:CD:7D:4E:D5:9F:4C:E6:E3:44:61:8C:AE:DB:27:D2:A3:58:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j57NfU7Vn0zm40RhjK7bJ9KjWNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5c2584-5be6-4e58-b4f1-29e449318c56/1/oHgTIaqqpHRx-sD2_Xhb4QxoHas.roa
Signing time: Mon 02 Jan 2023 03:35:43 +0000
ROA not before: Mon 02 Jan 2023 03:35:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43074
IP address blocks: 2a02:6580::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Sep 2023 10:31:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:a6:c5:9d:e7:f2:e7:e6:bb:7f:9c:f0:cd:75:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f9ecd7d4ed59f4ce6e344618caedb27d2a358da
Validity
Not Before: Jan 2 03:35:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0781321aaaaa47471fac0f6fd785be10c681dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:66:99:a1:4a:33:c2:fc:1c:51:56:d8:08:40:
b7:c5:0f:e5:6d:65:28:8f:a1:db:f2:62:00:f2:42:
24:72:f1:a6:a1:a9:b4:ee:a8:22:62:89:09:9a:c0:
f1:42:90:0f:40:60:26:46:6c:43:ef:90:4d:f7:29:
45:b2:93:46:2e:73:d8:77:26:d6:02:2b:80:12:26:
da:14:2f:51:bc:2e:c3:67:a8:d6:7e:7e:96:8e:c3:
f6:3a:22:b5:07:42:00:7c:3f:73:4a:6a:37:cf:74:
68:76:4b:1d:d3:b3:f6:3e:81:a2:cf:e3:1a:70:15:
d2:17:23:fe:19:19:29:69:de:31:55:f8:91:95:3b:
56:8d:c4:72:c7:f2:96:d8:ed:96:2c:40:fa:00:73:
8e:e1:8b:b2:5d:bc:69:32:4d:76:46:68:44:ff:d6:
ec:01:7f:c1:24:92:6f:17:f3:03:8a:55:bc:9d:6f:
83:b6:a1:dd:89:74:58:9c:11:7f:97:a0:67:fd:37:
fd:aa:33:a1:37:12:cd:fb:a4:bd:fe:35:93:69:00:
c9:25:50:63:2f:f4:ee:18:6b:fc:3f:0a:83:73:5a:
1b:1e:ae:f1:f7:63:f6:08:da:b0:93:55:2d:6b:c0:
b9:86:18:ff:19:b2:b9:97:54:8a:1a:21:ee:bb:bd:
2a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:78:13:21:AA:AA:A4:74:71:FA:C0:F6:FD:78:5B:E1:0C:68:1D:AB
X509v3 Authority Key Identifier:
keyid:8F:9E:CD:7D:4E:D5:9F:4C:E6:E3:44:61:8C:AE:DB:27:D2:A3:58:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j57NfU7Vn0zm40RhjK7bJ9KjWNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5c2584-5be6-4e58-b4f1-29e449318c56/1/oHgTIaqqpHRx-sD2_Xhb4QxoHas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5c2584-5be6-4e58-b4f1-29e449318c56/1/j57NfU7Vn0zm40RhjK7bJ9KjWNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:6580::/32
Signature Algorithm: sha256WithRSAEncryption
11:55:f3:09:2d:ee:8c:d4:6d:85:a9:85:38:fa:ea:ea:18:95:
24:47:0c:f4:00:f4:0f:30:3c:f2:70:39:84:83:33:4e:38:64:
ab:4c:3a:c5:d6:9d:c0:c6:66:63:78:19:60:bb:84:6d:e1:88:
a0:c1:1d:b8:8d:1f:11:53:9b:8f:b2:f9:c0:3b:e8:49:1a:82:
35:cb:91:bf:56:19:8c:57:d2:a9:a0:3d:81:39:0c:23:67:bb:
cf:cd:c5:19:b6:91:77:43:f4:33:03:a8:c1:64:4c:c4:10:a3:
68:df:cb:10:09:c2:c0:2d:bc:bc:7a:83:89:01:d3:a5:f9:d3:
34:e9:a8:37:85:30:19:f9:31:73:1d:ef:69:39:72:da:4b:38:
fa:f2:44:6d:03:87:16:e9:12:51:11:bd:88:4b:60:d1:51:83:
22:c6:a8:54:36:2a:1a:e1:d7:67:ae:4b:6f:f0:fd:49:a2:87:
0e:3a:eb:7d:28:b5:57:08:af:99:bc:ea:70:a2:22:e3:3b:76:
1e:60:8f:a7:9f:82:1f:9a:80:c6:be:55:59:79:8a:02:ca:f9:
18:f6:05:41:fe:6c:8f:60:5d:54:18:34:66:2e:22:44:8f:02:
8a:59:2f:d2:d5:43:a1:bb:86:b9:dd:3a:9e:96:c1:2a:33:85:
62:8b:e8:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:21 2024 by rpki-client on console-fra.rpki-client.org