Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/OPS3cWaLutVnQFrbEJdtR0Z3LRU.roa
File: OPS3cWaLutVnQFrbEJdtR0Z3LRU.roa (raw, json)
Hash identifier: 1iPao63ar2YD1myVmFFEPgBGSa7/S0YPsYMepyG949w=
Subject key identifier: 38:F4:B7:71:66:8B:BA:D5:67:40:5A:DB:10:97:6D:47:46:77:2D:15
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0187AF257A991D0FE59D4B9EB74817DA372F
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/OPS3cWaLutVnQFrbEJdtR0Z3LRU.roa
Signing time: Sun 23 Apr 2023 17:24:41 +0000
ROA not before: Sun 23 Apr 2023 17:24:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.253.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Apr 2023 06:36:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:af:25:7a:99:1d:0f:e5:9d:4b:9e:b7:48:17:da:37:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Apr 23 17:24:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38f4b771668bbad567405adb10976d4746772d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8c:17:47:34:16:ab:d7:cd:dd:d3:e0:a9:04:
5f:44:dc:6b:dd:28:4a:be:a6:47:2b:b6:5f:dd:99:
cf:76:4d:28:d8:49:dc:62:5d:22:ad:43:07:e3:ba:
06:d8:1a:1b:53:05:66:9b:91:e2:85:83:eb:1c:e8:
88:78:c2:01:66:f5:62:7c:7b:51:2d:a3:c8:f6:c7:
35:93:73:53:72:75:4e:84:ae:79:05:2b:e0:78:ba:
b0:f2:bb:41:e7:46:7c:19:2a:98:2f:e4:86:de:02:
9d:a7:ad:27:f8:4b:fa:9d:35:7b:e2:58:b8:3a:27:
94:c9:fe:5b:6a:76:14:ec:7a:76:10:ab:9b:2a:86:
73:5c:0a:7d:f4:f5:31:d3:5c:db:2e:09:8e:40:b6:
2e:76:97:c0:c5:e9:00:5a:55:f4:a2:a4:09:f5:ac:
11:aa:c3:6a:5f:f9:73:b6:ec:69:ff:4c:5a:11:4c:
94:22:0f:7c:32:80:bd:53:ea:ed:89:a5:e5:6e:17:
a3:36:be:58:fc:5f:60:3a:29:55:cd:5e:25:32:c9:
82:94:59:84:e7:85:5f:47:ec:06:41:f4:73:06:84:
9e:fc:46:39:83:f0:84:58:48:4a:2f:a9:08:68:16:
7d:f7:5a:83:48:65:8d:de:20:60:58:34:46:f1:18:
f2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F4:B7:71:66:8B:BA:D5:67:40:5A:DB:10:97:6D:47:46:77:2D:15
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/OPS3cWaLutVnQFrbEJdtR0Z3LRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.36.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:d5:ab:1a:b5:e9:70:5d:36:2b:fb:80:b8:2f:92:5d:63:47:
ba:b7:ba:39:b7:39:1f:eb:09:61:de:f4:05:8f:78:6e:5a:93:
8a:af:24:0a:0b:d5:5a:71:c3:2c:58:96:6b:30:22:72:22:e2:
0a:3a:2c:28:8b:b8:fc:bc:39:23:af:fc:fb:a2:d2:f0:c4:ab:
ab:73:8c:4e:94:2e:79:83:e3:bd:ee:8b:ac:fc:65:78:61:a7:
79:7f:95:8e:05:3c:9c:3d:84:c7:73:2f:9f:09:46:ed:77:38:
1b:4c:01:0b:b5:55:45:e9:06:86:14:9d:bd:e9:1b:8d:57:dc:
73:44:32:01:77:85:cb:19:6d:94:01:a3:2d:e5:ff:fc:55:4b:
06:1e:01:0f:85:dd:75:f3:b2:73:1d:9c:3d:35:11:9b:a5:06:
a4:78:4d:a9:73:0a:cb:a8:55:d3:49:38:19:72:59:27:67:65:
ae:72:30:96:ee:ce:eb:14:17:f7:a3:8f:cc:68:54:aa:bc:b4:
95:89:59:4c:80:d5:97:ac:82:d8:e3:93:b5:a7:92:0e:d2:8e:
44:aa:fc:56:f9:35:66:22:04:30:48:f0:86:40:2f:97:01:30:
96:a2:f1:b8:2f:ea:5a:43:a6:e0:70:2a:92:e9:d3:24:38:34:
15:dd:49:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:20 2024 by rpki-client on console-ams.rpki-client.org