Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/OGPM2KAzvH6-ixtyKUPdaS454ec.roa
File: OGPM2KAzvH6-ixtyKUPdaS454ec.roa (raw, json)
Hash identifier: z2CdDIkP3tQQg0X/fvI3tTnud6NHXtee7G1/ApmCUmo=
Subject key identifier: 38:63:CC:D8:A0:33:BC:7E:BE:8B:1B:72:29:43:DD:69:2E:39:E1:E7
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018DC08C616DF4B75BFA9DA4AE33863EC40E
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/OGPM2KAzvH6-ixtyKUPdaS454ec.roa
Signing time: Mon 19 Feb 2024 08:47:21 +0000
ROA not before: Mon 19 Feb 2024 08:47:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.80.140.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 19:36:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c0:8c:61:6d:f4:b7:5b:fa:9d:a4:ae:33:86:3e:c4:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Feb 19 08:47:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3863ccd8a033bc7ebe8b1b722943dd692e39e1e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:65:ed:63:d7:e8:b1:a1:15:86:7b:b5:68:59:
dc:b2:31:45:1e:4c:a7:04:57:e8:ab:0d:ce:1d:53:
8d:57:dd:0a:a5:87:9d:b1:eb:fc:14:01:f0:3b:f9:
9b:cd:d3:17:d5:68:3d:c7:38:43:11:42:27:eb:94:
53:7f:45:5d:7a:36:d5:9e:f6:3e:b9:43:c8:5d:ac:
c7:6f:60:27:0e:8d:08:0d:d0:d7:cd:bb:cc:b3:01:
98:df:c3:be:c9:31:ea:93:a2:0a:67:10:e6:eb:33:
8d:9c:39:3a:00:20:48:8f:7d:39:c5:f6:d6:3f:ed:
e6:19:bf:ee:67:1c:36:9a:a8:fe:a0:29:a5:15:cd:
74:aa:5b:75:fc:de:86:5f:53:f8:98:fc:bc:53:3c:
d5:f8:21:b4:ef:83:4b:38:2b:a8:28:aa:d3:e7:01:
01:9f:be:c8:95:b0:de:ef:c4:26:4f:7f:58:d3:d9:
4f:ab:0d:96:33:75:82:88:14:9c:a7:95:e1:e8:37:
0c:7f:0c:de:69:5d:f6:20:82:a6:da:25:69:01:da:
69:da:fc:d7:c7:30:d6:da:25:ee:ac:f5:22:e6:2f:
b6:ef:9b:6d:2f:39:cb:98:4e:e1:9e:e1:e6:50:cb:
16:a6:a3:62:9c:15:5b:f9:5d:88:31:43:49:c9:63:
a6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:63:CC:D8:A0:33:BC:7E:BE:8B:1B:72:29:43:DD:69:2E:39:E1:E7
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/OGPM2KAzvH6-ixtyKUPdaS454ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.140.0/22
Signature Algorithm: sha256WithRSAEncryption
20:a5:c0:97:d9:94:f5:97:b4:d1:bc:c7:52:e9:fe:db:53:7e:
0c:e7:95:8f:f5:5f:77:8f:85:f9:8d:6c:9f:1f:cb:8f:e7:f2:
f9:ee:09:c4:24:50:28:1a:0a:5b:bf:73:eb:82:84:a6:a9:5a:
87:5d:f0:c2:2d:61:d7:1e:13:64:77:ae:a3:4c:ac:0f:79:cb:
5f:dc:04:ce:67:d9:d8:65:45:16:ce:00:14:8d:0b:89:e0:5f:
56:72:77:df:f3:4b:8b:b6:1c:82:34:22:44:fa:ed:6a:2c:db:
8d:68:a4:b4:5a:ab:a3:2c:9b:52:68:86:90:5d:9d:6a:e7:8f:
5e:de:fd:e0:a2:c5:79:4e:8e:64:c1:b9:17:f2:2a:ad:be:87:
d9:de:19:72:08:93:d9:ab:e2:4d:48:78:34:e6:50:79:3d:f3:
7a:d6:8e:02:11:c0:f0:70:43:13:8d:96:f0:4f:7d:83:60:19:
3e:fa:0b:ea:e3:04:fd:43:7f:bb:28:45:46:06:f8:3f:d4:8b:
8b:dc:31:8b:65:bc:3b:da:10:dc:cd:d8:fb:37:31:d0:18:bf:
0d:43:da:ed:e1:3f:e4:85:56:38:1d:7a:6d:12:98:66:f5:e8:
37:c1:76:1b:02:6b:c1:e4:44:1a:fa:b5:24:b4:be:c1:1d:f9:
cb:c4:47:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org