Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/OOJBiVOB3JFmHAov_sj__fhZDZg.roa
File: OOJBiVOB3JFmHAov_sj__fhZDZg.roa (raw, json)
Hash identifier: bLV7NE6w9M8bJcFiaPrAI6v0aegi7vAoWNb5nU7xm8c=
Subject key identifier: 38:E2:41:89:53:81:DC:91:66:1C:0A:2F:FE:C8:FF:FD:F8:59:0D:98
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 018AFE7161C6854F14A899F3FE7902040104
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/OOJBiVOB3JFmHAov_sj__fhZDZg.roa
Signing time: Thu 05 Oct 2023 06:05:58 +0000
ROA not before: Thu 05 Oct 2023 06:05:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33915
IP address blocks: 2a07:3502:1060::/48 maxlen: 48
2a07:3500:12f8::/48 maxlen: 48
2a07:3500:15c0::/48 maxlen: 48
2a07:3500:1240::/46 maxlen: 46
2a07:3501:1340::/48 maxlen: 48
2a07:3502:11a0::/46 maxlen: 46
2a07:3502:10a1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 26 Oct 2023 06:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fe:71:61:c6:85:4f:14:a8:99:f3:fe:79:02:04:01:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Oct 5 06:05:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38e241895381dc91661c0a2ffec8fffdf8590d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:70:03:11:dc:9d:d9:1e:b8:22:8e:ca:4e:ba:
1e:b5:f6:73:5c:ba:d7:5c:15:7e:4e:b9:0b:00:1c:
d1:c2:da:30:7a:d7:40:ab:76:58:8c:24:4f:3f:15:
0b:db:d7:46:4c:1d:c5:11:18:62:cd:4e:3b:cf:ca:
19:6a:7a:00:02:a1:4e:99:10:dd:6b:c1:10:ca:4a:
07:af:71:be:63:61:38:3a:ef:d1:9c:60:6c:40:5a:
b8:ad:7e:70:32:a1:c1:53:dd:c7:f7:76:c4:58:65:
8c:2e:9a:21:95:37:9d:5f:cb:6f:3f:8f:b9:7c:e7:
62:fc:b6:fd:6e:cf:1b:be:03:89:f7:ab:bb:29:d6:
3a:d6:f5:83:d9:b3:1d:00:dc:06:41:a5:5c:42:07:
53:bc:ac:b0:28:0e:e9:f9:03:89:aa:15:e9:69:67:
d2:e2:58:ac:1b:c1:d5:4c:6b:da:8c:49:24:5f:bb:
97:9d:62:f3:66:1e:3d:d5:47:e1:33:e4:e2:ed:b7:
6e:8b:b6:ab:60:d3:ef:78:f6:38:31:82:89:da:75:
ef:19:29:ce:a8:33:80:d1:0b:98:d9:8e:62:ef:27:
2e:2b:30:e8:64:7a:1f:1b:db:86:79:bd:f5:02:f4:
0a:48:4f:ae:ad:e2:04:91:90:51:b3:00:ae:f7:a5:
4f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E2:41:89:53:81:DC:91:66:1C:0A:2F:FE:C8:FF:FD:F8:59:0D:98
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/OOJBiVOB3JFmHAov_sj__fhZDZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:3500:1240::/46
2a07:3500:12f8::/48
2a07:3500:15c0::/48
2a07:3501:1340::/48
2a07:3502:1060::/48
2a07:3502:10a1::/48
2a07:3502:11a0::/46
Signature Algorithm: sha256WithRSAEncryption
51:8c:70:14:60:03:a0:9f:97:11:ba:36:57:13:a2:31:bb:0d:
bd:20:30:54:5c:16:6e:c6:c4:c8:77:96:8a:f8:3d:b2:74:01:
95:5e:ab:d9:6b:3a:b6:ce:8b:23:31:26:88:79:96:f2:c4:0c:
0e:20:a1:c7:61:cb:a1:4a:b7:5d:9b:80:07:02:b4:b4:3a:5f:
90:5d:0a:f9:50:f0:51:2f:d9:98:82:c3:ea:61:63:1c:df:15:
35:b7:df:da:de:da:7f:ca:66:44:91:b4:24:8c:89:ba:0d:32:
21:cf:27:2a:f6:f9:c1:ae:05:46:5e:18:b7:b0:0c:4d:2d:86:
2a:29:a9:9c:81:1e:d8:bb:2d:53:9b:4b:62:06:8e:ad:f0:e5:
04:1f:4f:41:ea:6a:9c:55:2a:81:6c:ab:0f:aa:e9:99:2c:70:
a5:6c:7b:43:20:99:0d:69:dc:51:3d:13:28:88:c2:f8:23:cc:
14:0a:a6:49:24:d3:9c:92:63:31:76:90:08:07:42:8e:07:73:
28:4b:a8:32:38:07:f5:91:c3:2f:50:09:b1:4c:46:4b:c7:1e:
18:8e:69:4c:1d:8c:59:13:85:ce:61:74:de:87:8c:c8:ec:80:
f5:d3:1d:38:33:28:72:f0:65:0c:16:b0:bd:6e:e7:2b:1a:90:
ba:e8:f4:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:54 2024 by rpki-client on console-fra.rpki-client.org