Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/OTLL-KBDFuRVZbRKAnl5sqnpvPg.roa
File: OTLL-KBDFuRVZbRKAnl5sqnpvPg.roa (raw, json)
Hash identifier: CIYrSTWQ5aiTSQHS5zo+BbFpxoovlQAyVGrPB6GvXyI=
Subject key identifier: 39:32:CB:F8:A0:43:16:E4:55:65:B4:4A:02:79:79:B2:A9:E9:BC:F8
Certificate issuer: /CN=b85eadc2ec70b30fa4225ed7fcd5730f0c7bc616
Certificate serial: 018C2104BFBB450A50F5C3BF82559F363B24
Authority key identifier: B8:5E:AD:C2:EC:70:B3:0F:A4:22:5E:D7:FC:D5:73:0F:0C:7B:C6:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uF6twuxwsw-kIl7X_NVzDwx7xhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/OTLL-KBDFuRVZbRKAnl5sqnpvPg.roa
Signing time: Thu 30 Nov 2023 16:16:48 +0000
ROA not before: Thu 30 Nov 2023 16:16:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205318
IP address blocks: 31.42.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:21:04:bf:bb:45:0a:50:f5:c3:bf:82:55:9f:36:3b:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85eadc2ec70b30fa4225ed7fcd5730f0c7bc616
Validity
Not Before: Nov 30 16:16:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3932cbf8a04316e45565b44a027979b2a9e9bcf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:09:6f:6b:dc:1a:e3:3e:01:5c:fb:81:93:d3:
9e:7c:22:a4:24:6b:41:76:d3:d4:29:bc:e2:fa:81:
de:8f:ae:1b:29:b8:43:31:51:40:a4:44:a6:26:20:
08:fd:a6:10:56:b5:58:5d:4f:79:b4:5e:c8:8a:dc:
e1:03:6c:c4:d8:c6:e6:78:9d:1b:7e:02:fa:20:e0:
26:2a:02:be:ee:71:ab:7f:3a:30:28:7f:85:13:e0:
10:d1:0e:1f:79:10:87:0a:87:4e:f4:c1:26:bd:4b:
8c:d3:e1:d3:06:6b:b4:02:a7:a2:f3:89:0b:42:83:
fa:f1:1a:40:06:de:d2:ec:35:98:f8:41:01:74:23:
7e:25:1b:ae:2c:a6:e6:cf:14:4f:bd:6f:2c:57:9d:
e8:e8:f4:fe:cd:7e:ac:b8:ec:ec:1d:8b:ec:83:7c:
bf:7a:56:1e:5a:9b:30:4c:15:71:6c:d0:c2:b3:f3:
b5:87:f4:7e:1e:9a:88:4b:1e:2f:c7:9e:05:92:81:
67:6b:cc:08:77:c0:45:31:c1:79:2b:53:42:48:99:
5b:fe:5e:68:9c:ff:1e:2d:ed:9f:79:ff:1d:ca:53:
c1:2a:22:21:62:06:d0:03:94:d8:c6:db:d1:8c:db:
da:2f:cc:59:e2:17:fe:17:4b:fb:e3:67:fc:78:90:
58:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:32:CB:F8:A0:43:16:E4:55:65:B4:4A:02:79:79:B2:A9:E9:BC:F8
X509v3 Authority Key Identifier:
keyid:B8:5E:AD:C2:EC:70:B3:0F:A4:22:5E:D7:FC:D5:73:0F:0C:7B:C6:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uF6twuxwsw-kIl7X_NVzDwx7xhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/OTLL-KBDFuRVZbRKAnl5sqnpvPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/uF6twuxwsw-kIl7X_NVzDwx7xhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.57.0/24
Signature Algorithm: sha256WithRSAEncryption
37:6e:de:8f:c8:3e:77:45:69:c3:d2:86:50:b6:4b:7e:4d:32:
6e:84:00:ea:b1:9c:d9:80:5f:da:3e:68:fa:cf:46:67:6c:32:
9d:10:eb:2e:56:93:4e:ba:db:b2:e8:43:98:0f:67:e5:9b:9e:
c8:3d:d0:ec:85:b2:ae:69:b1:b0:bd:2b:5b:74:af:65:33:30:
1f:02:af:aa:d1:27:10:9c:ce:5e:61:8a:b1:d3:06:52:f5:1d:
fa:ba:24:b0:a7:0e:f6:1c:a5:bf:d6:75:7f:3b:0b:8b:66:83:
11:19:fc:f5:1a:8b:65:72:b4:6f:2c:81:80:b3:9d:6a:c7:8f:
23:96:3f:52:23:29:cd:51:c8:06:7f:7d:64:93:0b:e8:de:77:
36:e6:40:70:ac:73:af:1d:4f:6f:e2:1e:75:7a:e6:4c:fc:84:
43:15:de:42:52:db:cf:8b:91:ec:db:a0:e2:2b:2e:52:91:32:
e7:13:e5:c1:d0:e8:4f:30:3b:3c:4a:ea:39:12:61:a7:1c:a4:
7c:42:f6:49:17:39:b3:e6:cf:34:82:d2:9c:e7:5f:61:c8:9f:
58:df:32:a8:6b:26:99:3c:e8:72:23:b4:9c:3f:22:21:25:18:
2f:af:98:93:6c:a0:68:53:07:88:5f:46:fe:59:6a:f1:4c:15:
a5:84:96:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:32 2024 by rpki-client on console-fra.rpki-client.org