Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/OgtPrsEF3v-jeoZJfNK0TB7VAP0.roa
File: OgtPrsEF3v-jeoZJfNK0TB7VAP0.roa (raw, json)
Hash identifier: IuOCxINgJbVyd39BpdzFyGj1NBd/ebQH6Rycwn2hVzc=
Subject key identifier: 3A:0B:4F:AE:C1:05:DE:FF:A3:7A:86:49:7C:D2:B4:4C:1E:D5:00:FD
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01888BAEDADF1331BD5F731F2C3E4AE7533D
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/OgtPrsEF3v-jeoZJfNK0TB7VAP0.roa
Signing time: Mon 05 Jun 2023 13:11:12 +0000
ROA not before: Mon 05 Jun 2023 13:11:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 85.208.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8b:ae:da:df:13:31:bd:5f:73:1f:2c:3e:4a:e7:53:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jun 5 13:11:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a0b4faec105deffa37a86497cd2b44c1ed500fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:64:d5:5d:0d:b8:fb:ed:e3:55:7a:9b:bd:76:
a8:64:67:4c:56:4d:e4:9e:a7:28:2f:cf:b0:cb:ea:
60:05:81:40:6b:85:47:72:14:5f:b7:7a:c5:23:de:
fd:31:2c:30:49:c2:12:bd:5f:26:98:49:96:09:fd:
aa:07:da:58:88:44:4e:db:73:3d:aa:58:78:90:75:
6f:49:00:b2:a4:4d:07:05:99:d6:fe:98:69:ff:57:
2c:1d:db:d2:46:5b:54:ed:3b:0a:1b:37:b4:76:80:
f7:16:ec:32:2b:ae:fb:b2:e2:63:6e:ed:e8:6b:fa:
7b:92:f1:e8:3d:ae:f1:48:86:05:03:21:20:83:c8:
7d:fd:d9:90:3f:84:8f:d5:9b:c1:04:c3:72:14:22:
e4:e2:16:b2:c1:18:a9:97:8d:8c:53:75:1d:fa:8b:
2e:5d:4d:5b:8a:16:cb:7f:d8:12:a6:47:34:67:bf:
21:5a:e6:5e:9d:dc:16:71:08:be:09:49:b2:51:6f:
c0:8a:b2:cf:3b:a4:63:6b:b0:dc:29:9c:20:71:5e:
d8:70:74:98:7d:98:46:b5:4d:24:81:24:e0:b6:da:
53:97:dc:55:d5:f3:c4:ea:2a:25:c2:84:40:2b:b1:
e0:c1:7e:eb:85:bb:26:cc:e9:4f:4f:f8:35:c1:d0:
4a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:0B:4F:AE:C1:05:DE:FF:A3:7A:86:49:7C:D2:B4:4C:1E:D5:00:FD
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/OgtPrsEF3v-jeoZJfNK0TB7VAP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.106.0/24
Signature Algorithm: sha256WithRSAEncryption
40:1b:7a:23:fa:8e:fb:54:a9:75:c1:be:44:ab:4a:4f:ee:31:
e8:da:eb:4b:12:15:c2:3d:91:01:51:54:e8:7c:1b:46:47:af:
60:63:f3:8b:58:06:43:53:33:f9:f3:0b:fe:90:ce:2d:7f:3b:
37:03:c6:1b:9e:c9:6c:19:33:b4:51:5e:b5:5e:a0:57:98:0c:
3b:e3:56:cd:a8:d6:21:0b:69:c3:2f:7b:6c:79:13:cb:53:f4:
4a:bd:38:40:0c:7b:f5:0e:97:d7:e7:6c:cb:d9:28:be:7b:13:
ce:67:c5:5f:a6:32:4a:1c:e8:b2:e9:bc:0a:35:09:45:b3:5e:
de:e8:12:f0:d2:b8:a8:8c:46:1e:81:b2:e0:75:61:36:44:be:
98:ac:83:6b:a9:b3:4a:2d:88:69:5a:b7:ef:e1:0b:7e:00:28:
75:95:3c:a2:5f:d6:0f:b2:26:9e:f3:70:e4:84:84:46:12:92:
62:09:44:77:ef:f0:10:a6:b1:73:45:1b:5b:37:08:1d:1f:71:
08:7c:1e:16:20:19:14:4e:32:05:da:ca:2d:a8:f4:2f:9f:60:
41:72:23:da:86:6d:bb:6d:04:48:95:00:6e:bd:c7:eb:4b:d1:
55:0d:85:87:3a:99:2d:0f:fe:39:8b:e6:29:9d:0c:1c:6f:d4:
23:04:f7:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 1 19:07:39 2023 by rpki-client on console-ams.rpki-client.org