Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/OMqGJyAjrLR4Q19Nn3wjSsCEpVo.roa
File: OMqGJyAjrLR4Q19Nn3wjSsCEpVo.roa (raw, json)
Hash identifier: MqZYVw00NsyY4aFyl3UFuqduC4IuwWUP9HTctL/jCOI=
Subject key identifier: 38:CA:86:27:20:23:AC:B4:78:43:5F:4D:9F:7C:23:4A:C0:84:A5:5A
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 0185711555631C83992B323CAE0E48EC7493
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/OMqGJyAjrLR4Q19Nn3wjSsCEpVo.roa
Signing time: Mon 02 Jan 2023 06:05:01 +0000
ROA not before: Mon 02 Jan 2023 06:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198591
IP address blocks: 78.133.246.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:55:63:1c:83:99:2b:32:3c:ae:0e:48:ec:74:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 2 06:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38ca86272023acb478435f4d9f7c234ac084a55a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:50:77:55:1d:dd:fb:3b:ac:d7:51:10:d9:ae:
8c:c3:b3:f0:05:c3:e8:4f:19:b7:4c:fb:e3:7a:04:
0e:8a:de:d4:7e:05:e0:5c:70:26:dd:50:53:55:36:
96:c8:92:a6:85:10:2c:42:2a:b1:e2:5f:07:6b:97:
78:97:69:43:f7:d9:9c:5a:dc:dd:dd:99:02:a8:ab:
8d:a7:b3:39:d8:44:fd:f6:4f:fc:22:42:3f:17:01:
e4:52:91:57:98:32:58:47:0f:18:2d:ef:a3:ff:4e:
39:39:68:17:40:ec:20:93:6d:32:e3:89:6e:7f:f7:
ba:f9:ef:cd:72:d7:2e:60:a3:dd:29:45:44:a3:9e:
cf:a7:12:3f:d5:8c:f0:0e:fd:67:b8:84:57:7c:48:
05:50:d1:2e:f9:4e:76:f8:77:20:61:8a:af:2c:cd:
c4:68:e3:1f:5f:bf:84:52:6f:14:c9:18:75:db:2c:
9c:bc:02:79:46:cf:44:25:4f:ef:60:74:e5:b7:d1:
87:3d:78:fb:bf:c6:7b:22:34:33:e9:6b:a1:40:f0:
90:f7:b8:9c:76:db:29:e8:b9:d1:b7:37:9a:b7:3a:
4e:66:8b:ac:62:12:7c:63:a1:24:45:99:f0:5e:c0:
3e:6e:8f:56:49:77:f5:62:a0:68:82:45:25:64:3c:
a2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CA:86:27:20:23:AC:B4:78:43:5F:4D:9F:7C:23:4A:C0:84:A5:5A
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/OMqGJyAjrLR4Q19Nn3wjSsCEpVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.133.246.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:cc:51:85:83:42:39:d3:e5:04:fd:14:5b:b5:82:16:6f:29:
0b:de:f6:93:fe:b2:83:7e:dc:94:c0:d8:fb:e0:65:cb:f8:a5:
05:da:04:3b:4c:c9:86:36:bf:94:7d:21:97:e0:fb:2e:b3:12:
4e:3e:30:9c:3c:9e:06:6d:3a:51:67:0d:5d:73:2f:27:77:74:
be:63:ff:bd:40:ae:21:e5:4e:75:4c:1c:24:d6:3a:8e:58:3e:
f6:9b:33:61:b8:ff:13:ba:7d:a8:cf:f0:7f:ba:10:b1:b2:26:
c9:c6:fc:4b:00:c4:e4:9b:9f:50:41:f2:85:48:5b:33:a9:91:
33:14:cd:e5:fd:f0:15:40:dd:45:f2:8f:4c:06:1e:ee:2a:20:
1d:65:89:4b:fc:8b:b2:09:38:1a:7d:98:66:5f:97:cb:42:9b:
8b:ee:82:5c:f5:a9:5d:cf:ad:b0:44:44:94:fe:95:9f:c5:ad:
f0:9d:df:82:eb:d9:a5:d3:40:81:0a:7e:87:5b:38:4c:d4:79:
7b:f5:e3:07:f8:8b:c6:06:4b:a3:b2:00:a7:c9:2f:95:28:e4:
09:dd:b6:4e:5e:af:22:ec:78:0d:01:32:91:f6:da:85:8b:0f:
76:80:ea:70:23:e5:69:d7:fa:47:08:a4:5a:05:ec:07:27:a3:
a8:1f:cf:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:29 2024 by rpki-client on console-fra.rpki-client.org