Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/oqcii_hTJ4glKHxoKiLiJJyUkw4.roa
File: oqcii_hTJ4glKHxoKiLiJJyUkw4.roa (raw, json)
Hash identifier: O8VOFhIrPCV3Bw5347Z1IVfHPJPfCdXuZTZ+07fqdZY=
Subject key identifier: A2:A7:22:8B:F8:53:27:88:25:28:7C:68:2A:22:E2:24:9C:94:93:0E
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018CC9BCB646D1EEC78E8112CC3033D7A95C
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/oqcii_hTJ4glKHxoKiLiJJyUkw4.roa
Signing time: Tue 02 Jan 2024 10:33:56 +0000
ROA not before: Tue 02 Jan 2024 10:33:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6813
IP address blocks: 194.179.98.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 15 Jan 2024 09:44:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:b6:46:d1:ee:c7:8e:81:12:cc:30:33:d7:a9:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 2 10:33:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2a7228bf853278825287c682a22e2249c94930e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:00:3e:e6:36:39:8e:a4:31:7f:cc:9e:91:f1:
7a:dc:a5:b2:da:73:e0:23:5a:78:e0:c8:e8:03:28:
df:28:da:9e:5d:eb:b3:d1:62:45:54:74:78:3a:42:
9c:d9:4c:0b:71:fd:ab:1b:83:37:74:d1:f3:46:e5:
09:2f:0a:bc:8b:7c:81:95:02:a6:23:e2:86:e2:a5:
e3:10:bb:d7:4a:10:1e:72:bc:5e:2c:3e:17:81:eb:
99:bb:1d:69:d1:55:5a:64:6f:9e:e7:6b:d3:47:de:
f2:8f:f0:10:b2:94:e5:f5:31:e8:e6:7e:da:ed:de:
45:fe:c2:58:29:c2:51:1a:35:9f:c5:70:0e:d6:ad:
c5:b4:06:c6:b6:38:51:cf:23:af:08:d2:f9:8b:ff:
1f:92:77:6a:4f:73:78:e5:a6:34:bd:d8:35:84:3d:
93:eb:99:e2:f8:f8:f2:db:8c:d1:4d:a0:69:72:ef:
80:cb:46:d1:f9:f7:d9:a5:99:ac:77:5c:ea:ca:57:
42:9e:ce:69:19:b9:da:ab:25:ea:e4:03:43:b9:e2:
60:33:ab:8f:be:52:f4:cc:2a:1e:c4:b9:27:48:02:
3f:39:aa:d4:2d:c4:16:a6:6a:9c:c7:e1:1c:03:93:
48:4e:c1:20:f3:12:07:d3:51:e8:3a:39:b6:d2:13:
15:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A7:22:8B:F8:53:27:88:25:28:7C:68:2A:22:E2:24:9C:94:93:0E
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/oqcii_hTJ4glKHxoKiLiJJyUkw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.179.98.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:9e:9b:c0:f7:2e:0d:3c:47:f5:a8:ba:95:e5:34:3e:6c:87:
7c:05:48:d4:1b:a3:cd:69:dc:a5:58:59:d6:99:a7:0c:a4:5c:
9a:ad:c3:c1:a3:cb:1f:b9:be:80:9d:32:9b:fd:c1:89:9d:c0:
7b:94:b9:a9:44:16:7c:31:33:9f:26:df:7d:17:d2:00:fe:e3:
5a:39:43:95:76:4d:fb:01:18:d0:59:14:3e:62:4a:1c:b5:00:
78:bc:81:ea:d5:cb:33:52:ab:93:0c:08:a2:8b:54:7b:36:a5:
2c:3b:4b:f0:4b:a9:40:bc:0e:38:00:a4:13:64:14:6c:59:f0:
d0:61:0e:87:b0:ae:2a:8b:82:6d:a2:8b:13:b6:4c:9f:c0:ae:
64:cd:34:7a:b7:f8:a1:4d:23:75:c0:88:7c:93:c6:f3:86:ac:
2f:04:ed:2f:e1:34:ec:2c:13:d1:d8:84:7a:1d:d4:85:48:be:
03:c4:94:f7:dc:f0:40:6b:1f:b9:ee:6e:49:04:93:a0:94:fc:
c3:2e:d7:ad:6a:9f:d0:ea:d4:22:61:f2:66:53:a0:48:f7:3f:
9b:b8:66:35:61:f8:37:1c:48:50:8a:0e:56:49:2c:5b:42:60:
92:5f:97:c8:f4:1d:6f:09:df:38:77:2a:38:4f:f5:a2:e9:83:
30:3d:48:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:13 2024 by rpki-client on console-ams.rpki-client.org