Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b96259-33b8-454a-8c5f-a862b88593a0/1/OUZNcLtKeOi7RAmd2QrWCF8p5zA.roa
File: OUZNcLtKeOi7RAmd2QrWCF8p5zA.roa (raw, json)
Hash identifier: doDgh9Zu3wXT2lJaEGFLd829zGZoUha8N9FAt3VqvCw=
Subject key identifier: 39:46:4D:70:BB:4A:78:E8:BB:44:09:9D:D9:0A:D6:08:5F:29:E7:30
Certificate issuer: /CN=14bf39139b710c4f7237edfd88518655af39c323
Certificate serial: 01856F1DC10049A00B475AAC90EA9B6ABE13
Authority key identifier: 14:BF:39:13:9B:71:0C:4F:72:37:ED:FD:88:51:86:55:AF:39:C3:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL85E5txDE9yN-39iFGGVa85wyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b96259-33b8-454a-8c5f-a862b88593a0/1/OUZNcLtKeOi7RAmd2QrWCF8p5zA.roa
Signing time: Sun 01 Jan 2023 20:54:59 +0000
ROA not before: Sun 01 Jan 2023 20:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16262
IP address blocks: 192.162.240.0/21 maxlen: 21
195.211.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 18 Aug 2023 11:36:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:c1:00:49:a0:0b:47:5a:ac:90:ea:9b:6a:be:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14bf39139b710c4f7237edfd88518655af39c323
Validity
Not Before: Jan 1 20:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39464d70bb4a78e8bb44099dd90ad6085f29e730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e9:58:23:9b:d4:c6:5b:6c:d4:d1:28:84:20:
e9:b7:09:45:b9:64:c3:65:81:0b:34:0b:76:25:33:
a3:c2:88:8d:80:a8:2b:90:dc:5a:5b:0f:f4:a3:ea:
f6:0c:e9:72:f7:9a:ac:73:6b:4e:93:21:e4:8d:9f:
78:1b:7d:3b:6d:6b:00:7a:bf:3c:84:f1:52:04:31:
de:92:76:c7:44:1a:54:6b:01:cc:18:90:3d:53:67:
66:4b:6e:0d:0b:da:99:6d:e9:e1:5a:28:7b:b4:31:
66:83:0e:fe:cd:05:83:a3:30:c3:b2:37:97:77:73:
fc:08:cb:4f:ed:a3:d7:c2:ef:d6:a6:44:81:32:53:
33:e5:c0:52:87:8a:4b:b0:80:3d:14:16:0d:eb:27:
44:df:34:2f:d9:5f:0e:c7:4c:7b:77:9b:fb:43:e3:
37:0a:67:ad:cb:7b:2c:98:2e:b9:e1:de:bf:54:97:
d7:a9:3c:02:7a:74:c6:84:38:f8:ba:e2:2c:39:9d:
9c:e9:73:c9:80:94:83:95:e0:a3:98:a1:c1:a8:a9:
6d:5a:39:2f:cb:6d:07:60:99:a0:a3:b9:2c:9b:d1:
1c:16:8e:96:b4:a4:92:a4:3a:b0:12:7f:2c:a6:1d:
11:68:8d:d9:93:39:70:c8:e2:d3:9c:fd:29:81:1a:
a3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:46:4D:70:BB:4A:78:E8:BB:44:09:9D:D9:0A:D6:08:5F:29:E7:30
X509v3 Authority Key Identifier:
keyid:14:BF:39:13:9B:71:0C:4F:72:37:ED:FD:88:51:86:55:AF:39:C3:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL85E5txDE9yN-39iFGGVa85wyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b96259-33b8-454a-8c5f-a862b88593a0/1/OUZNcLtKeOi7RAmd2QrWCF8p5zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b96259-33b8-454a-8c5f-a862b88593a0/1/FL85E5txDE9yN-39iFGGVa85wyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.240.0/21
195.211.100.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:6f:e8:07:6c:7d:da:a3:44:6a:6e:43:e1:3c:b8:03:60:5a:
b2:d3:0c:73:4f:56:1a:14:2f:4f:47:b0:b4:f7:0e:d7:c5:1e:
8a:a6:10:ef:3a:e9:6b:d2:0e:9d:4b:82:1b:a8:75:9f:24:0a:
ef:56:84:2d:6c:c6:52:15:f4:95:60:40:cc:28:0e:e8:a5:80:
08:af:70:82:f4:92:e5:3b:db:7d:e6:3e:c0:3a:46:0d:07:4b:
7c:d9:c3:0f:b3:9c:12:46:1f:fa:dc:b3:3b:2f:c5:fa:66:ae:
b8:c1:0d:76:88:70:b8:da:1b:dd:2f:75:37:f0:01:4c:4d:7c:
53:05:0f:7c:e0:e6:26:78:e7:9a:3e:84:a7:3d:71:b9:4e:39:
b2:e0:7a:6b:1f:5d:f2:8b:a3:8f:22:f2:ac:8a:80:41:b6:71:
06:b2:c7:51:9e:a5:81:38:bf:be:f6:77:be:e0:97:f1:8d:e3:
21:b9:3c:68:72:d8:45:7a:67:1b:71:f1:8a:bb:a6:6f:bc:1a:
f2:7b:dd:b4:e3:1d:6b:c6:92:96:a8:b2:68:3f:f2:c0:33:fb:
18:08:a6:1a:6f:89:4b:0f:b4:19:54:28:b2:63:bd:d1:8d:99:
fb:f5:57:2f:df:fe:74:67:c3:63:62:f4:fd:61:44:f1:dd:aa:
ae:d7:38:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:21 2024 by rpki-client on console-ams.rpki-client.org