Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/oVYAulEKmbYgrOv0DzKfpeDfPdY.roa
File: oVYAulEKmbYgrOv0DzKfpeDfPdY.roa (raw, json)
Hash identifier: zbimqzGqAJ9IfVyTQpzPHIj5RzX0m3JhBnmlqnM77FU=
Subject key identifier: A1:56:00:BA:51:0A:99:B6:20:AC:EB:F4:0F:32:9F:A5:E0:DF:3D:D6
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018627711DD3CC19721218FD2B4D89D33375
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/oVYAulEKmbYgrOv0DzKfpeDfPdY.roa
Signing time: Mon 06 Feb 2023 15:56:10 +0000
ROA not before: Mon 06 Feb 2023 15:56:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200223
IP address blocks: 45.131.60.0/24 maxlen: 24
2a07:e345:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:27:71:1d:d3:cc:19:72:12:18:fd:2b:4d:89:d3:33:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Feb 6 15:56:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a15600ba510a99b620acebf40f329fa5e0df3dd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d6:e2:3a:36:ab:2d:fb:7c:94:2d:73:71:bf:
8d:83:37:f3:e3:72:72:62:f0:b9:17:0f:e6:58:23:
6c:85:c0:9c:50:7e:ad:1a:3f:8b:eb:87:3d:ee:2b:
af:5f:f8:6f:20:57:82:5d:fb:7d:38:b3:ad:2b:f7:
da:f8:86:0f:dc:b9:e9:aa:44:73:c2:17:ea:16:9c:
a7:a5:b4:61:16:c3:77:bc:0e:c2:cd:4e:ac:5c:6d:
c1:7a:b7:36:3b:8f:b1:7e:98:5c:56:9e:9f:c3:99:
82:28:c7:c1:62:36:6d:b6:81:80:e5:22:cb:4a:fc:
26:37:e2:da:1b:01:47:18:15:10:20:06:61:b2:e8:
87:67:60:a4:7c:9a:b7:d1:5b:39:cb:c4:ca:ef:25:
3f:05:00:3e:f5:bd:9f:0d:8f:b9:87:48:da:62:2b:
ce:8b:89:92:ea:6e:71:57:d8:9d:d1:20:b1:1b:27:
bd:32:7b:e4:3b:92:b5:8e:12:73:ff:f7:6a:11:4a:
78:ec:c2:6c:43:ec:77:df:2a:31:1f:e9:2a:52:f4:
41:08:ec:27:47:eb:af:49:d5:bb:67:59:8e:84:30:
b7:e0:48:58:d5:9e:ba:66:8d:a7:5b:1f:ee:22:30:
ce:c2:15:4f:a5:19:0c:cc:a3:09:86:9c:05:cf:92:
29:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:56:00:BA:51:0A:99:B6:20:AC:EB:F4:0F:32:9F:A5:E0:DF:3D:D6
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/oVYAulEKmbYgrOv0DzKfpeDfPdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.60.0/24
IPv6:
2a07:e345:2::/48
Signature Algorithm: sha256WithRSAEncryption
84:9d:5c:5a:fc:4b:f1:75:fc:78:1d:76:ce:59:9a:89:da:70:
ca:2c:6e:5f:a9:14:87:74:f6:e4:19:9f:09:52:62:f4:a6:a7:
c5:c2:ed:ae:ae:fd:2c:3a:ca:f2:97:2a:88:71:7f:8c:d0:4a:
db:47:62:1b:5c:6b:c2:0e:ca:62:70:08:cb:fd:3e:ac:c3:f0:
9c:1d:16:c9:34:36:5e:28:91:fb:52:25:be:85:3b:11:e7:f9:
6e:f0:f8:46:82:95:a1:28:93:c5:83:12:4a:17:79:9f:1f:ad:
fd:bd:77:f5:22:13:e4:66:b7:cd:d0:82:e7:58:40:dc:f8:e9:
e8:17:e0:aa:4b:9a:8a:5d:c3:63:1f:ff:d1:89:3b:4a:0e:22:
36:bb:23:f0:fc:8f:4b:35:42:3e:9c:cb:69:17:a8:49:37:3c:
46:e2:bf:01:2b:ba:a2:d8:ab:71:dc:a1:36:4d:d8:c6:f9:4c:
e3:a9:0c:f3:ee:f9:ca:50:23:4a:52:54:1c:b9:ca:ef:9b:81:
4b:d6:33:c0:42:2d:e0:69:0b:6d:c9:fe:a2:89:d7:60:c6:cd:
82:36:06:0a:a8:ff:48:fb:48:f2:8f:e9:1b:2f:16:7f:1f:56:
ca:9b:3c:b5:7c:cd:26:32:c1:4d:f6:4a:d0:9a:48:f1:a3:c7:
1f:83:31:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org