Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/OMcQny_Aw6uIN82OHUR2KqiMkpw.roa
File: OMcQny_Aw6uIN82OHUR2KqiMkpw.roa (raw, json)
Hash identifier: 5d93rQ5EWFpwjsg/09WY9hQVlJdVRSZgwtkIDDvFirE=
Subject key identifier: 38:C7:10:9F:2F:C0:C3:AB:88:37:CD:8E:1D:44:76:2A:A8:8C:92:9C
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 018C6EE3B71ABC620BC8E94C9E7F4773ACCC
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/OMcQny_Aw6uIN82OHUR2KqiMkpw.roa
Signing time: Fri 15 Dec 2023 19:11:06 +0000
ROA not before: Fri 15 Dec 2023 19:11:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 45.150.225.0/24 maxlen: 32
45.150.224.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6e:e3:b7:1a:bc:62:0b:c8:e9:4c:9e:7f:47:73:ac:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Dec 15 19:11:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38c7109f2fc0c3ab8837cd8e1d44762aa88c929c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c7:cf:f1:2e:ae:7f:6e:c4:31:89:a6:41:98:
14:10:75:7e:fb:cf:3c:03:b5:93:06:2c:4b:9e:e8:
cc:c4:f6:cc:06:be:7c:75:f4:4a:5c:cd:ba:0b:29:
f5:98:35:0c:56:e6:c5:7f:d4:8f:73:a0:e8:fa:a5:
24:6a:8a:97:bf:93:b1:ee:b6:ff:5a:d9:ed:ff:3b:
24:0a:87:a2:ef:e5:c8:86:e0:81:5d:23:54:d7:99:
52:28:54:7d:29:7e:c0:15:53:f4:d8:9f:68:dd:e5:
72:f0:12:e5:5c:b6:75:33:66:9b:c7:8f:f4:3e:44:
9f:9b:90:59:96:61:0d:0d:95:ac:69:be:d3:3e:a7:
47:f7:db:3e:e8:31:c0:01:ec:38:f0:2c:53:82:32:
16:c5:87:17:00:6e:5d:73:3b:eb:1f:28:13:c4:6b:
d8:f0:64:81:4d:2a:20:0c:9e:c8:94:a9:8f:7c:4e:
92:4f:4f:5e:e6:69:5a:60:f1:3c:07:68:db:3b:d9:
9a:ad:5e:17:08:be:a9:75:b0:e2:2b:cd:7e:84:1a:
9f:6b:5e:4f:13:a8:88:b2:7a:c6:78:5b:dd:5c:a2:
0a:e2:78:77:dd:bf:9f:a9:bd:5e:3c:df:22:6d:21:
b0:90:83:0e:93:0b:20:79:9f:49:3b:43:47:bd:85:
3d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C7:10:9F:2F:C0:C3:AB:88:37:CD:8E:1D:44:76:2A:A8:8C:92:9C
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/OMcQny_Aw6uIN82OHUR2KqiMkpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.224.0/23
Signature Algorithm: sha256WithRSAEncryption
45:41:e1:30:ee:1f:94:ed:e6:cc:95:73:18:33:52:47:9a:35:
ca:8b:83:41:55:02:b1:e6:f0:95:d6:1b:f9:22:9b:b6:40:6f:
e0:18:f5:48:22:44:86:14:8a:fc:e1:35:07:c2:13:c9:dd:5d:
c5:42:46:22:85:c1:21:68:3b:37:a3:f1:94:2d:44:23:e7:51:
9f:31:b0:97:05:bc:b1:fd:9b:2d:69:11:e7:9d:6c:ca:c6:17:
0b:06:0b:cb:c0:c4:46:96:1a:02:7a:59:8d:f6:4e:31:31:43:
76:04:62:61:fc:1c:21:a5:6a:75:d8:cb:b2:47:56:50:64:88:
d0:a5:83:37:89:23:8e:d6:09:56:39:8d:18:ca:b6:07:b3:81:
0e:ea:26:20:86:bb:59:a3:99:6b:54:e6:83:d8:e4:47:2a:95:
00:14:b7:1a:55:67:a0:21:0a:fa:44:2c:b0:aa:ab:f7:5d:69:
38:4d:51:4e:9f:0c:3a:a7:9c:f6:e6:75:85:21:27:f7:15:26:
04:64:28:93:c0:e9:2f:4e:4a:c0:67:24:82:ea:18:23:65:a9:
d2:c0:80:cf:67:9c:6c:4f:b4:c4:71:1a:2f:97:e0:d8:ad:fa:
c1:1f:56:c0:13:94:57:49:39:de:10:f3:1e:5b:6d:6d:9c:fd:
d9:b3:60:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:57 2024 by rpki-client on console-fra.rpki-client.org