Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/537267-b243-4657-99ff-94b514433c11/1/OmtePFpL8GfCc8PwyDFryqxUdZw.roa
File: OmtePFpL8GfCc8PwyDFryqxUdZw.roa (raw, json)
Hash identifier: kQj64AxD3hxJf/HYcW2xr/vuGDjIf2WpXyJVSB+6Y0Y=
Subject key identifier: 3A:6B:5E:3C:5A:4B:F0:67:C2:73:C3:F0:C8:31:6B:CA:AC:54:75:9C
Certificate issuer: /CN=f278acbcc46f133efd393f51160fdbb7607e1e16
Certificate serial: 01856F54A90C7D69A112A51F6F4D9803E041
Authority key identifier: F2:78:AC:BC:C4:6F:13:3E:FD:39:3F:51:16:0F:DB:B7:60:7E:1E:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nisvMRvEz79OT9RFg_bt2B-HhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/537267-b243-4657-99ff-94b514433c11/1/OmtePFpL8GfCc8PwyDFryqxUdZw.roa
Signing time: Sun 01 Jan 2023 21:54:57 +0000
ROA not before: Sun 01 Jan 2023 21:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208596
IP address blocks: 185.191.248.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:a9:0c:7d:69:a1:12:a5:1f:6f:4d:98:03:e0:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f278acbcc46f133efd393f51160fdbb7607e1e16
Validity
Not Before: Jan 1 21:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a6b5e3c5a4bf067c273c3f0c8316bcaac54759c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c9:2f:17:78:b1:4a:ea:05:14:12:eb:ba:6e:
ee:89:74:55:cb:4e:b3:d6:e7:5f:cb:63:dd:14:4a:
7e:2b:9d:44:4f:54:8f:9d:35:67:8f:30:3e:69:89:
eb:26:6a:d6:07:cd:af:5e:dc:4d:89:c6:85:80:9a:
df:6d:33:d5:6b:cc:b3:77:ff:ef:d6:09:9a:d9:f5:
29:79:58:81:58:02:e9:d2:93:e2:ba:29:35:99:86:
38:9b:06:79:cc:55:9f:30:5d:e0:cd:03:5e:24:3f:
60:28:89:9c:88:f9:4e:62:1f:71:c8:86:7a:fa:3c:
06:22:36:9c:bf:c3:d0:e7:e4:f5:55:c8:ec:95:7e:
3e:c4:37:5a:90:77:d8:80:47:e6:8e:33:38:fe:e4:
73:4b:d5:7f:f4:6b:d9:d0:5c:e2:6d:3e:a3:94:b8:
53:9c:5d:78:ae:32:25:89:ca:94:65:c2:0a:34:05:
33:3b:1e:15:c6:c4:d6:78:55:c1:6d:56:73:d7:a9:
76:58:a3:b6:9d:a6:a3:1a:b0:4d:e2:ca:3b:1c:f2:
7e:43:5c:53:20:7d:fa:c5:b3:cc:ab:13:13:9e:29:
af:85:f1:9d:ed:74:20:74:9d:52:80:b3:63:59:ee:
cf:78:c8:01:a9:d8:fa:53:43:7b:0d:5b:31:4d:15:
32:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:6B:5E:3C:5A:4B:F0:67:C2:73:C3:F0:C8:31:6B:CA:AC:54:75:9C
X509v3 Authority Key Identifier:
keyid:F2:78:AC:BC:C4:6F:13:3E:FD:39:3F:51:16:0F:DB:B7:60:7E:1E:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nisvMRvEz79OT9RFg_bt2B-HhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/537267-b243-4657-99ff-94b514433c11/1/OmtePFpL8GfCc8PwyDFryqxUdZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/537267-b243-4657-99ff-94b514433c11/1/8nisvMRvEz79OT9RFg_bt2B-HhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.248.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:16:38:e2:c5:73:d3:23:b0:00:d9:2a:7f:70:76:d5:d8:a0:
eb:c0:47:ff:78:dd:4e:df:2d:6b:ea:6f:af:6f:5b:da:1e:c2:
eb:55:1e:d2:0d:ea:73:f1:52:0f:41:95:5b:ef:04:a7:77:3c:
da:dd:8e:b9:92:af:f5:9b:bd:7b:72:0c:07:07:58:64:6d:61:
e0:f7:7c:c7:32:84:5e:d7:bf:a3:76:36:ff:48:87:8b:de:e0:
94:ef:c4:61:c7:47:18:83:e8:da:a6:53:50:87:ae:21:62:62:
f8:d1:80:86:29:12:c4:cf:46:85:76:22:ae:2c:79:0d:57:3b:
18:13:8e:68:81:d5:23:5c:73:d7:24:79:f9:b4:50:7a:6a:6d:
ed:37:46:ce:2d:f6:42:1a:c1:d3:f4:76:06:a9:a7:ba:10:1a:
9f:10:67:5e:8d:10:91:8a:bd:d1:63:c2:7a:a1:3f:8c:ec:52:
0a:41:97:f1:52:db:ea:fd:c0:93:0d:b2:71:33:00:95:c1:66:
ee:50:9a:46:c3:6f:a6:84:a2:37:82:c6:1b:4f:20:e7:5f:20:
c4:6f:d1:60:ea:bd:52:24:be:cb:f3:6e:9f:84:4d:80:f9:02:
08:86:15:d4:a6:d7:ad:8c:a6:f6:30:17:55:1b:ea:88:f3:5b:
1a:46:bf:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 28 11:30:04 2023 by rpki-client on console-fra.rpki-client.org