Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/Ofry-746TMOMNwc3ty3zKpZKPgk.roa
File: Ofry-746TMOMNwc3ty3zKpZKPgk.roa (raw, json)
Hash identifier: jKiDNB31rVSh/Ej0NfOUsTdPvcz1D+1YBGMShwClBr0=
Subject key identifier: 39:FA:F2:FB:BE:3A:4C:C3:8C:37:07:37:B7:2D:F3:2A:96:4A:3E:09
Certificate issuer: /CN=d45bab208653d4261ebf202f6036334119846055
Certificate serial: 01857094EEB9711EC6965CC772BFFC6FED02
Authority key identifier: D4:5B:AB:20:86:53:D4:26:1E:BF:20:2F:60:36:33:41:19:84:60:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FurIIZT1CYevyAvYDYzQRmEYFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/Ofry-746TMOMNwc3ty3zKpZKPgk.roa
Signing time: Mon 02 Jan 2023 03:44:46 +0000
ROA not before: Mon 02 Jan 2023 03:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41735
IP address blocks: 193.37.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 12:03:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:94:ee:b9:71:1e:c6:96:5c:c7:72:bf:fc:6f:ed:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bab208653d4261ebf202f6036334119846055
Validity
Not Before: Jan 2 03:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39faf2fbbe3a4cc38c370737b72df32a964a3e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6d:db:c7:f0:d3:31:37:cb:63:3b:35:4e:de:
9b:be:51:3b:57:cc:cb:d0:be:9c:41:1d:f1:d7:80:
51:e8:76:60:74:b2:c1:7f:75:36:53:c3:1b:d0:9d:
05:bd:37:3d:8a:31:58:ea:fc:74:65:a7:46:f8:fa:
80:ac:5a:bf:5a:4f:bb:6b:3f:ad:a2:2f:0a:9c:60:
77:5a:13:5d:43:f3:9b:8e:33:3f:a6:3b:d6:d1:59:
0a:0a:c5:7d:39:98:b8:bf:80:ff:ae:5e:0c:1d:89:
0b:15:e9:2a:af:d7:05:8c:98:3b:12:06:8b:32:89:
0f:57:09:f7:0d:d1:2f:e9:9e:39:b5:ca:2c:24:0d:
3e:d5:89:ec:91:9c:b4:04:2b:71:7a:ae:d9:a4:73:
6f:bb:16:27:52:b3:4e:df:70:84:d7:39:32:cd:70:
74:17:3b:41:04:f1:6c:47:f3:5c:a4:a7:7f:c5:ff:
60:05:85:5c:18:16:af:d3:93:41:bf:52:4e:6f:80:
41:7d:94:fe:3e:e4:1e:b0:40:c0:a6:7e:e9:c2:72:
8c:46:73:51:cc:16:59:b6:2b:ff:fb:28:04:27:48:
1a:46:90:dd:99:d8:76:26:9b:80:45:75:ff:99:fe:
67:6f:04:f0:20:4b:f5:ce:98:4f:ab:51:87:73:e3:
2e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FA:F2:FB:BE:3A:4C:C3:8C:37:07:37:B7:2D:F3:2A:96:4A:3E:09
X509v3 Authority Key Identifier:
keyid:D4:5B:AB:20:86:53:D4:26:1E:BF:20:2F:60:36:33:41:19:84:60:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FurIIZT1CYevyAvYDYzQRmEYFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/Ofry-746TMOMNwc3ty3zKpZKPgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/0aec1f-6065-4d88-8454-124d3fb3906a/1/1FurIIZT1CYevyAvYDYzQRmEYFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.135.0/24
Signature Algorithm: sha256WithRSAEncryption
53:0d:f6:ad:45:60:3b:06:a7:cb:39:af:13:44:bd:2a:0b:cf:
95:7f:3a:09:24:a1:cc:c3:6c:b8:31:78:8d:9e:c7:41:7e:d5:
ea:89:3b:ce:d0:9d:ea:17:08:58:9c:f5:46:9c:7d:41:58:a9:
c7:e1:db:9b:3e:d8:cc:31:00:7b:8e:6c:df:c0:ed:3d:76:ed:
ce:aa:dd:8b:61:9a:8d:8e:fd:28:5d:51:08:74:57:3d:9b:37:
f8:5e:25:29:cb:37:76:81:a0:a4:34:e7:ec:a1:0f:05:7c:f2:
a8:54:19:21:ca:c5:e2:40:30:59:8c:f8:4c:2a:cc:aa:3e:64:
b8:7e:21:ff:13:f1:21:1c:50:91:15:22:fb:4d:8a:f1:44:54:
f4:ed:06:b8:62:dd:3d:3d:39:c6:33:ef:dd:50:2f:38:ae:96:
6b:a9:3e:76:dc:c0:31:9f:d6:50:56:07:0a:b3:9c:c1:62:48:
77:75:cc:1e:64:91:44:ad:0b:e1:80:3f:a3:e7:cc:d9:af:99:
67:5b:26:46:ae:8c:e1:c6:c4:ae:58:54:26:3c:e9:04:56:fc:
05:da:42:79:89:93:ba:06:40:8d:d1:fc:6d:ed:38:f1:ae:91:
c6:25:fc:48:0c:c2:9e:b9:f1:a3:e4:38:5e:54:2f:f3:d3:4c:
21:24:48:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:03 2024 by rpki-client on console-ams.rpki-client.org