Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/Ogj0zklsm8YQg0cjT6VKb9oq_40.roa
File: Ogj0zklsm8YQg0cjT6VKb9oq_40.roa (raw, json)
Hash identifier: jP/N8ikeZ5AqrDdVFvd4ZwAYr7r7wgOXZ1+6OGPwuUQ=
Subject key identifier: 3A:08:F4:CE:49:6C:9B:C6:10:83:47:23:4F:A5:4A:6F:DA:2A:FF:8D
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018D9D23BF07ADAEF37C54A51D8DA03A0A4F
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/Ogj0zklsm8YQg0cjT6VKb9oq_40.roa
Signing time: Mon 12 Feb 2024 11:46:22 +0000
ROA not before: Mon 12 Feb 2024 11:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12389
IP address blocks: 82.137.176.0/20 maxlen: 21
Validation: Failed, certificate revoked on Mon 12 Aug 2024 12:22:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9d:23:bf:07:ad:ae:f3:7c:54:a5:1d:8d:a0:3a:0a:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Feb 12 11:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a08f4ce496c9bc6108347234fa54a6fda2aff8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ff:00:46:bf:97:0b:cd:32:07:da:a2:8d:7a:
ae:8c:e3:19:13:77:2d:40:fd:e3:7d:d1:fe:d4:ab:
3b:a0:d4:c8:c2:11:50:da:11:d1:81:af:cf:60:f4:
20:56:4e:04:04:94:57:c4:cb:98:0c:bc:98:7c:0e:
b0:83:35:b8:6c:a6:52:f9:64:1b:c7:da:bc:23:51:
9b:db:1e:bf:de:dc:2c:d3:87:fe:85:c2:5b:96:30:
71:97:c0:4e:0f:e2:0a:88:f4:39:8d:78:ac:f2:9f:
06:88:0a:41:a5:36:73:24:26:e5:f1:45:01:cd:8f:
ec:72:1f:77:63:a9:2a:b2:f8:1a:01:86:65:66:fe:
2d:0b:c9:bc:e8:7f:65:37:81:80:eb:ad:d6:ac:41:
94:84:82:8d:80:6b:3c:44:9e:da:69:4c:56:b7:35:
b0:19:a4:96:29:c1:94:14:e0:2a:44:f6:57:ec:d4:
aa:28:2d:10:3b:6a:ea:d6:9b:2f:6c:4c:92:54:6c:
d0:9f:df:4a:b5:6b:2c:14:a3:c2:e0:42:70:70:17:
61:1c:a4:84:d9:3e:3e:41:46:1a:85:39:92:66:c1:
3d:0a:de:07:97:1d:77:d8:3f:08:d5:8e:f4:72:73:
1b:66:11:15:22:2f:0a:28:4b:64:cc:e6:9f:4d:0b:
e1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:08:F4:CE:49:6C:9B:C6:10:83:47:23:4F:A5:4A:6F:DA:2A:FF:8D
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/Ogj0zklsm8YQg0cjT6VKb9oq_40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.137.176.0/20
Signature Algorithm: sha256WithRSAEncryption
69:06:8e:ed:b7:f6:b9:98:08:bb:86:14:11:d6:3f:59:ef:83:
3a:91:17:ca:8b:51:c8:4b:63:0c:82:54:75:c8:8e:35:ff:14:
00:5b:f2:16:a4:68:e0:0d:61:92:1b:41:56:c5:72:30:86:be:
d9:a0:75:8f:67:47:39:7d:94:77:e6:1b:b1:d3:f1:11:ce:c2:
26:42:01:7e:47:cc:ff:c3:81:59:cb:20:7d:e5:53:3b:ca:a8:
fc:0d:7f:cd:a2:d3:f1:f1:47:37:aa:8c:ab:f5:94:df:d0:07:
bd:9a:18:ef:93:5e:59:67:bb:5a:e8:1e:b4:04:36:0d:4a:50:
2a:e9:e8:de:a2:89:23:50:a4:fc:bc:ae:a6:a3:a5:a5:9d:93:
e2:b8:02:66:7f:6f:6e:9b:23:d7:ba:2b:f4:c5:0b:e2:90:ea:
f9:61:2a:e5:a8:a2:10:05:7f:f7:b1:09:64:c3:dc:da:de:a3:
8b:68:cd:f9:d5:00:19:78:66:70:21:82:1c:af:3a:11:9f:4b:
d6:97:a2:df:d3:63:a7:46:e6:80:9c:56:b0:2e:44:6f:f9:12:
89:f7:b2:2f:2e:68:85:a8:31:c3:56:61:19:68:d5:c8:5c:90:
05:6a:db:76:31:d6:ff:7e:95:64:3d:1e:ad:77:18:3a:97:42:
0a:1c:63:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 14:09:09 2024 by rpki-client on console-fra.rpki-client.org