Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OCmus1zNK6wCiZrWnn0gOXacLas.roa
File: OCmus1zNK6wCiZrWnn0gOXacLas.roa (raw, json)
Hash identifier: ks/Kp3Njk+3jym4FSmyb/dX6J8h6N8eSErkXdwrQleg=
Subject key identifier: 38:29:AE:B3:5C:CD:2B:AC:02:89:9A:D6:9E:7D:20:39:76:9C:2D:AB
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AE50A3990E8A702B051337ACCCC03
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OCmus1zNK6wCiZrWnn0gOXacLas.roa
Signing time: Sun 01 Jan 2023 11:15:08 +0000
ROA not before: Sun 01 Jan 2023 11:15:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8409
IP address blocks: 188.93.104.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 13 Nov 2023 15:49:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:e5:0a:39:90:e8:a7:02:b0:51:33:7a:cc:cc:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3829aeb35ccd2bac02899ad69e7d2039769c2dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:19:09:0b:bb:68:96:ca:ce:e4:22:33:c8:e8:
f4:1a:fa:7c:72:96:08:88:1f:06:3c:30:ac:c7:c5:
ed:c1:4c:38:eb:28:54:b9:28:df:0a:02:76:49:fc:
2f:25:bb:13:94:d1:86:1a:6b:37:bc:e5:7c:3c:f5:
4b:cb:b9:76:c4:b9:06:f5:13:19:ad:9c:c7:9d:5a:
99:73:8f:16:e0:fd:35:6d:4a:30:c5:95:59:d7:6d:
45:24:9a:07:eb:ea:c2:2a:26:f5:82:45:aa:b3:39:
1e:40:cd:48:df:27:d4:4f:7e:a0:fc:e5:3b:fb:f0:
55:66:b6:6f:76:03:52:c7:8c:06:26:a6:1f:19:87:
50:55:ab:9e:16:bd:74:c4:3b:24:19:67:80:7f:d1:
86:a9:a6:9d:b8:bc:13:f9:42:87:31:74:68:b9:3f:
1c:f9:94:16:8e:79:c1:21:ec:ba:08:70:f7:1d:1a:
58:42:ab:d5:a3:87:60:96:71:d8:52:91:43:c8:6d:
cb:83:0b:d6:6a:14:8c:53:4c:3e:74:27:d6:e5:a3:
2c:65:aa:c3:83:10:8c:83:a1:86:49:d8:16:94:28:
88:e7:2c:2b:af:47:ab:48:58:3a:95:95:99:da:27:
cb:94:01:cd:28:d6:e7:37:e0:1a:69:dc:fe:69:08:
76:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:29:AE:B3:5C:CD:2B:AC:02:89:9A:D6:9E:7D:20:39:76:9C:2D:AB
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OCmus1zNK6wCiZrWnn0gOXacLas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.104.0/23
Signature Algorithm: sha256WithRSAEncryption
31:10:f2:01:65:16:e4:84:f7:4f:35:a4:be:35:84:0a:2e:d1:
24:fe:36:e9:41:69:a0:e7:de:b0:b0:85:ef:58:15:a0:c2:53:
d3:55:e9:bf:62:1e:b7:85:4b:b7:d7:70:32:d8:bc:95:61:ae:
47:69:9c:04:61:bd:c5:4d:54:6d:61:86:0a:c0:d9:b6:66:d9:
16:be:df:4e:64:07:46:b0:64:a8:e0:b6:c4:9c:6b:09:05:07:
c3:38:d6:4b:ee:ba:35:80:02:0d:1a:69:0e:53:f4:07:68:92:
07:94:bf:1e:b1:07:f5:15:20:20:f3:03:45:0c:42:86:cf:2f:
48:ab:e3:c8:22:a4:76:09:79:d5:c0:ec:ef:6e:fa:b2:20:74:
9c:a0:be:76:24:52:e5:f3:a1:49:81:38:9c:0d:c1:98:0c:32:
d0:fe:57:a5:42:8d:47:ed:93:7b:6d:12:77:48:b9:83:41:99:
24:7d:97:66:18:00:71:68:dc:88:cd:7c:fe:96:59:3e:4f:d1:
ad:2a:32:32:29:ab:60:15:46:47:ad:4e:1a:34:3c:c3:0b:d8:
81:ff:20:a1:ff:c6:14:b5:a6:c8:9d:3e:1d:99:1a:b1:fa:4b:
cd:67:17:00:f8:68:46:23:74:2d:59:5d:e6:14:0a:08:83:f7:
48:62:ab:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org