Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c60ba7-796b-4140-b0ac-addd65bc5a6a/1/OhTmV9M1-DWe9nUZM-2o66HfZso.roa
File: OhTmV9M1-DWe9nUZM-2o66HfZso.roa (raw, json)
Hash identifier: mGEvASHaTSlh4wveyGYEsNyySYZhtrnhVaAotebX+lo=
Subject key identifier: 3A:14:E6:57:D3:35:F8:35:9E:F6:75:19:33:ED:A8:EB:A1:DF:66:CA
Certificate issuer: /CN=348c2f0d9677a4d15865601f18e6af1ff7c7ea4f
Certificate serial: 01856C414B9719E738243933F72D1D454B19
Authority key identifier: 34:8C:2F:0D:96:77:A4:D1:58:65:60:1F:18:E6:AF:1F:F7:C7:EA:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIwvDZZ3pNFYZWAfGOavH_fH6k8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c60ba7-796b-4140-b0ac-addd65bc5a6a/1/OhTmV9M1-DWe9nUZM-2o66HfZso.roa
Signing time: Sun 01 Jan 2023 07:34:56 +0000
ROA not before: Sun 01 Jan 2023 07:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49820
IP address blocks: 195.93.224.0/23 maxlen: 23
2001:67c:1e8::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:4b:97:19:e7:38:24:39:33:f7:2d:1d:45:4b:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=348c2f0d9677a4d15865601f18e6af1ff7c7ea4f
Validity
Not Before: Jan 1 07:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a14e657d335f8359ef6751933eda8eba1df66ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5f:2d:25:8c:79:9b:d5:48:e2:fd:ee:ca:2d:
0f:15:18:f4:0b:87:84:48:9d:c3:e0:f8:81:ab:a3:
72:f8:1c:41:b7:8a:48:78:f6:7d:ac:66:95:f9:c5:
84:af:50:bc:d2:cf:e1:8f:b3:d7:23:47:3e:98:e5:
44:87:2c:e7:7d:24:de:35:c1:e8:3f:57:1f:79:49:
70:fc:9d:32:b2:f0:45:86:3a:70:6e:a2:81:42:8f:
78:19:e2:31:4a:c3:ce:1f:c0:67:c9:4c:0d:fc:36:
d4:09:e6:86:f0:6d:70:e0:cf:ff:5f:e4:41:f4:67:
98:fc:ec:8c:b8:c3:43:ba:c0:68:69:b4:e4:ab:e4:
5a:b6:b2:bc:af:d6:ca:47:9a:16:30:f5:18:1a:67:
04:1a:5e:66:ed:c4:e2:e6:40:0d:2d:23:88:46:98:
54:7c:90:06:6b:0f:7b:e9:75:48:5f:d1:aa:dc:15:
91:86:e9:76:c4:f1:0f:05:7d:9b:76:f2:64:dd:43:
7c:c4:42:3c:76:9d:12:ae:64:12:59:fe:52:3a:2d:
84:0b:5b:a8:61:6d:fb:cf:c7:d0:27:31:44:f6:10:
93:81:81:1a:d2:fe:06:32:3e:f5:3f:38:72:8a:d4:
62:13:04:50:57:b7:e3:9b:f5:5c:79:57:7f:4a:89:
44:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:14:E6:57:D3:35:F8:35:9E:F6:75:19:33:ED:A8:EB:A1:DF:66:CA
X509v3 Authority Key Identifier:
keyid:34:8C:2F:0D:96:77:A4:D1:58:65:60:1F:18:E6:AF:1F:F7:C7:EA:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIwvDZZ3pNFYZWAfGOavH_fH6k8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c60ba7-796b-4140-b0ac-addd65bc5a6a/1/OhTmV9M1-DWe9nUZM-2o66HfZso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c60ba7-796b-4140-b0ac-addd65bc5a6a/1/NIwvDZZ3pNFYZWAfGOavH_fH6k8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.224.0/23
IPv6:
2001:67c:1e8::/48
Signature Algorithm: sha256WithRSAEncryption
92:7a:0d:c6:df:57:16:37:f2:fe:0f:6f:05:fd:60:cf:b1:7f:
5b:96:c4:29:bc:45:99:5e:c1:3c:2a:da:d9:f2:24:ee:de:ce:
5c:13:24:1b:51:a3:13:a9:3c:29:f1:04:c5:80:7a:c5:cb:6d:
4d:dd:02:7f:bf:5b:00:f4:fc:11:fc:9f:30:fa:aa:85:6c:73:
9c:64:19:d2:d7:d1:5d:a4:4d:61:d5:a0:07:08:48:36:3e:1b:
7f:1f:1d:d2:71:9f:73:74:6f:12:6c:63:28:fd:45:c8:e9:26:
6a:c8:94:68:23:d3:f1:f2:c0:c9:38:0c:e2:de:c4:1b:fe:08:
3c:50:72:ee:76:2d:51:02:42:af:c5:a2:d1:77:43:f9:57:e3:
0f:9d:85:50:61:97:12:34:86:03:8e:9b:6e:bc:4b:1b:aa:31:
66:40:84:12:5e:71:d4:80:de:2b:f0:ec:92:f5:f3:bf:32:68:
36:98:76:df:86:12:57:8c:66:ca:02:f1:12:f9:d9:60:10:b4:
0e:94:33:9a:1a:84:1f:bd:d8:41:a6:a1:4d:f0:f0:d0:17:3d:
61:36:10:0f:7f:76:6a:b6:4e:5c:5e:bc:8c:13:bd:7d:25:9c:
20:16:3d:d0:f9:d4:40:6b:bf:9d:29:32:b3:d8:01:ef:9b:c9:
5c:3e:dd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:15 2024 by rpki-client on console-fra.rpki-client.org