Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/e1a472-14ef-46af-b4c9-e6f89903ee7d/1/OGf5EjphPwoLDwxOarhQrj3W_rw.roa
File: OGf5EjphPwoLDwxOarhQrj3W_rw.roa (raw, json)
Hash identifier: 1YWwQN2BryavIC73S4IGA+6G7yIEse18e87uhW2+FCg=
Subject key identifier: 38:67:F9:12:3A:61:3F:0A:0B:0F:0C:4E:6A:B8:50:AE:3D:D6:FE:BC
Certificate issuer: /CN=b56f0e2fe6da00d2cd01f73a1c7d264eaa722661
Certificate serial: 018CC3B6F969950F34D27A6D52F390D33E6C
Authority key identifier: B5:6F:0E:2F:E6:DA:00:D2:CD:01:F7:3A:1C:7D:26:4E:AA:72:26:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW8OL-baANLNAfc6HH0mTqpyJmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/e1a472-14ef-46af-b4c9-e6f89903ee7d/1/OGf5EjphPwoLDwxOarhQrj3W_rw.roa
Signing time: Mon 01 Jan 2024 06:29:57 +0000
ROA not before: Mon 01 Jan 2024 06:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209281
IP address blocks: 86.62.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 13:53:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:f9:69:95:0f:34:d2:7a:6d:52:f3:90:d3:3e:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56f0e2fe6da00d2cd01f73a1c7d264eaa722661
Validity
Not Before: Jan 1 06:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3867f9123a613f0a0b0f0c4e6ab850ae3dd6febc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8d:24:e5:b9:57:98:ac:b8:f5:a8:78:a4:b2:
82:84:7c:5e:f0:31:77:da:43:08:26:14:9a:84:54:
ef:95:68:69:2e:ba:59:bc:60:1f:44:ca:ab:83:ab:
b5:5b:b3:ee:a1:bc:e0:be:c7:c2:d2:70:34:dd:7a:
34:18:e4:4a:3a:f6:61:85:fb:53:66:cc:6f:64:37:
7e:ca:a3:33:e2:79:d0:f0:cb:52:3f:71:e1:64:ca:
0f:2a:6f:84:a1:d6:df:b8:04:bc:16:7f:5e:20:28:
40:01:d0:16:f8:f3:a1:b6:1f:0f:ba:ca:dc:06:51:
4f:b3:03:68:7f:c8:db:35:b4:33:1e:7c:ed:18:6f:
65:24:68:d4:bb:de:96:67:c6:05:b0:69:f6:ab:12:
91:c5:16:8f:ce:d5:c0:cc:07:99:7f:c1:0a:e8:21:
6f:a6:c4:12:43:42:82:42:b0:07:fc:0a:3f:b6:d0:
75:26:eb:27:ff:38:b2:bf:22:d8:87:66:7a:91:91:
b3:6b:2e:84:de:d1:b2:20:58:62:0e:4e:44:31:0b:
6a:c4:99:67:e6:fb:49:52:6a:80:cc:fb:c4:60:cf:
c6:cc:c0:5a:22:6b:04:1f:b0:3a:0a:9c:99:79:d3:
b7:5d:39:66:f3:c1:16:e4:af:d7:9d:d1:09:e2:68:
29:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:67:F9:12:3A:61:3F:0A:0B:0F:0C:4E:6A:B8:50:AE:3D:D6:FE:BC
X509v3 Authority Key Identifier:
keyid:B5:6F:0E:2F:E6:DA:00:D2:CD:01:F7:3A:1C:7D:26:4E:AA:72:26:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW8OL-baANLNAfc6HH0mTqpyJmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e1a472-14ef-46af-b4c9-e6f89903ee7d/1/OGf5EjphPwoLDwxOarhQrj3W_rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e1a472-14ef-46af-b4c9-e6f89903ee7d/1/tW8OL-baANLNAfc6HH0mTqpyJmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.20.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c1:a0:83:0b:07:d3:00:86:cd:49:37:55:52:83:d6:e7:dd:
fc:60:5b:67:1e:7b:aa:af:b3:19:92:87:cf:58:24:e9:16:c9:
d8:0b:d8:a0:61:83:ba:c6:fa:b1:9c:eb:01:8f:0a:d5:f2:0f:
7a:99:f3:f8:e0:fe:4f:6d:a8:be:85:e4:51:46:ec:31:f1:a6:
13:8d:a2:b2:c5:00:0b:a9:9d:85:92:c2:e5:cc:76:98:e5:eb:
b2:7e:ce:ea:1c:7a:e9:87:84:d8:d4:b1:be:4a:48:fb:1b:c1:
6b:3a:ee:b2:29:23:87:a2:78:a0:36:82:34:9e:e2:d8:fa:a4:
fd:08:e8:0e:35:36:b9:c9:13:a8:fb:05:87:23:96:a3:f0:37:
58:cf:e6:d7:f1:fd:77:0e:71:b4:ee:fb:7a:26:54:9f:4f:7b:
17:fa:a8:2f:a6:3b:b7:64:8c:79:8c:d7:42:03:5a:57:2a:6f:
1a:bd:26:7c:73:db:c3:97:e0:1a:5b:b0:23:a3:e8:3a:98:37:
34:af:af:fb:d4:5c:4f:28:1d:b4:99:7d:60:7a:9c:9b:49:0b:
5c:6f:19:fa:76:6c:83:49:cd:9a:df:71:c7:71:6a:1d:14:a6:
63:a7:e5:d5:6e:bf:b2:6d:0d:ec:85:e1:2e:1d:ae:e2:a4:c7:
16:cc:5b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:22 2024 by rpki-client on console-fra.rpki-client.org