Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/oFUduiyp8csnBY0iHmeoiyUuOMs.roa
File: oFUduiyp8csnBY0iHmeoiyUuOMs.roa (raw, json)
Hash identifier: auVm+SBW5rHID3lpGiZ/duzX6dRC4LedmrL4lEF7IBs=
Subject key identifier: A0:55:1D:BA:2C:A9:F1:CB:27:05:8D:22:1E:67:A8:8B:25:2E:38:CB
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 01856D664AEE62740993F24001652B660329
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/oFUduiyp8csnBY0iHmeoiyUuOMs.roa
Signing time: Sun 01 Jan 2023 12:54:58 +0000
ROA not before: Sun 01 Jan 2023 12:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200946
IP address blocks: 84.207.232.0/24 maxlen: 24
84.207.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:4a:ee:62:74:09:93:f2:40:01:65:2b:66:03:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 12:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0551dba2ca9f1cb27058d221e67a88b252e38cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:14:e8:9f:f2:b9:54:a5:e6:91:6d:ca:26:78:
0c:6b:1e:77:18:cf:a7:f5:37:f2:00:28:00:e9:92:
5a:42:10:eb:16:0a:21:64:ac:04:3b:a8:9d:09:19:
64:2e:c2:04:ec:9d:60:59:7c:40:82:f5:bc:19:96:
73:72:55:66:59:3f:43:aa:be:a2:4a:f0:19:91:08:
b3:e9:4f:6a:68:c8:f3:cd:79:28:8e:a8:96:ae:00:
cc:f4:bb:7b:9d:2d:c5:6b:75:49:0e:c4:67:c7:b1:
d9:95:10:6b:2d:e9:b7:bf:a9:9a:c1:6a:6b:d7:4e:
d9:db:d0:d8:b1:bc:76:6c:1c:03:69:d7:86:1f:e9:
b2:b5:23:12:c9:d4:2b:95:c2:4f:ec:0d:86:1a:b9:
db:2d:9d:d0:5c:90:5f:dc:80:bc:29:d2:c0:d8:9d:
92:88:28:61:75:7c:dd:70:57:6e:31:95:d3:22:50:
27:72:6f:3d:2f:66:1e:55:e8:41:9e:f3:22:a1:46:
d4:71:9a:65:7b:a9:f6:66:91:e8:bf:1c:8f:88:f8:
63:2f:3a:71:95:f3:d7:9d:48:3a:8f:1a:19:fb:88:
bd:68:96:81:f2:3f:74:5b:bc:0f:ab:14:76:af:2a:
40:5e:68:d1:b0:05:23:f3:64:e3:90:f4:12:d6:34:
f4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:55:1D:BA:2C:A9:F1:CB:27:05:8D:22:1E:67:A8:8B:25:2E:38:CB
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/oFUduiyp8csnBY0iHmeoiyUuOMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.207.232.0/24
84.207.246.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:6d:5b:d2:4a:aa:5c:88:da:15:d7:22:c3:cf:4b:ad:e9:5d:
c4:47:fe:4e:72:f9:51:31:74:d6:46:7e:bc:84:22:1c:7c:a9:
f7:8f:83:40:d9:f3:6a:57:76:ef:05:ba:05:dd:ae:9f:02:f0:
ad:ac:c8:7d:38:a4:f6:94:de:5d:6d:63:95:1c:86:56:4e:75:
41:24:7f:43:6c:dd:93:16:bc:0e:d6:ce:0f:05:40:9b:73:1a:
6b:3e:bc:b3:a7:ae:aa:21:7f:79:a6:3c:ce:74:46:13:16:a3:
52:52:ad:1f:10:48:76:2e:e9:be:c8:be:fd:10:bc:4b:3e:a4:
e6:02:90:6e:d6:98:42:16:65:b4:55:67:cf:a6:18:51:2a:9b:
cf:28:e5:fc:be:aa:d8:59:d1:22:2e:49:34:fe:e0:09:52:6d:
89:8c:82:ef:52:d3:55:3c:ff:37:9b:ac:bd:cb:e1:cc:0a:8e:
20:05:45:c8:92:4c:1a:c0:d9:66:67:5e:83:1e:94:db:23:63:
b1:89:7a:0a:b9:03:e1:a9:df:7e:7e:69:97:a1:9e:9b:f4:dc:
78:fd:9b:23:b3:df:0b:b5:3c:ed:bb:29:5b:c2:67:e5:d4:79:
53:40:e3:10:c7:35:9d:f9:2b:a5:bc:dd:4d:a7:3d:ed:28:e0:
c1:7f:70:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:06 2024 by rpki-client on console-fra.rpki-client.org