Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/oiRc-Rr2PGtrpIjQmZbArMRHCCE.roa
File: oiRc-Rr2PGtrpIjQmZbArMRHCCE.roa (raw, json)
Hash identifier: MszvVrS4rSBlSSHhhZTtqNrtNWFwBCQMiau8zOyGtYk=
Subject key identifier: A2:24:5C:F9:1A:F6:3C:6B:6B:A4:88:D0:99:96:C0:AC:C4:47:08:21
Certificate issuer: /CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Certificate serial: 0186EEDED8182A1593A5C9B4FF5BEFCE65BC
Authority key identifier: 3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/oiRc-Rr2PGtrpIjQmZbArMRHCCE.roa
Signing time: Fri 17 Mar 2023 09:20:27 +0000
ROA not before: Fri 17 Mar 2023 09:20:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14445
IP address blocks: 80.73.247.0/24 maxlen: 24
164.152.216.0/24 maxlen: 24
2a11:1680:c::/48 maxlen: 48
2a11:1680:1c::/48 maxlen: 48
2a11:1680:1a::/48 maxlen: 48
2a11:1680:a::/48 maxlen: 48
2a11:1680:5::/48 maxlen: 48
2a11:1680::/48 maxlen: 48
2a11:1680:b::/48 maxlen: 48
2a11:1680:1b::/48 maxlen: 48
2a11:1680:e::/48 maxlen: 48
2a11:1680:4::/48 maxlen: 48
2a11:1680:14::/48 maxlen: 48
2a11:1680:1f::/48 maxlen: 48
2a11:1680:f::/48 maxlen: 48
2a11:1680:2::/48 maxlen: 48
2a11:1680:1d::/48 maxlen: 48
2a11:1680:d::/48 maxlen: 48
2a11:1680:13::/48 maxlen: 48
2a11:1680:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Mar 2023 09:21:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ee:de:d8:18:2a:15:93:a5:c9:b4:ff:5b:ef:ce:65:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Validity
Not Before: Mar 17 09:20:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2245cf91af63c6b6ba488d09996c0acc4470821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:01:48:e7:37:b7:8e:bc:a8:4a:e2:a0:50:1d:
7e:7f:a8:fc:73:a6:ad:09:a5:94:70:51:30:8f:04:
2e:c3:b8:c8:43:6f:6f:10:6e:fe:23:a1:04:08:6a:
e7:76:96:40:79:b2:98:55:36:de:5f:9a:85:be:d5:
7a:ae:12:c4:fd:f9:c4:28:07:c3:86:61:10:78:f7:
83:75:99:a0:e1:f0:79:fb:bd:48:61:58:4b:fb:c8:
bc:70:ab:b2:af:bb:32:d3:02:13:cf:55:e0:2a:18:
0d:66:81:91:fa:86:e6:92:15:3b:03:be:ef:d5:52:
4b:6e:5a:cd:e5:80:0e:24:7b:a6:26:8d:57:38:ae:
f3:15:ef:c7:09:ad:7b:a1:14:8d:cf:de:6c:fc:98:
39:3a:ff:91:36:ef:25:a1:7a:de:05:44:f0:b7:f3:
d2:ed:b2:f3:72:b3:8c:52:5d:2a:fd:24:09:c8:46:
da:d0:3b:45:bf:3c:d2:a7:28:e4:88:3f:8f:fb:81:
45:39:58:43:33:71:27:4a:59:09:da:58:f1:0b:54:
4d:4d:4b:68:b7:ad:98:62:7d:40:ef:57:48:8a:cc:
99:a5:89:b2:32:45:70:f1:a0:c5:7f:a8:00:ca:a8:
1e:72:2d:7e:78:60:b1:b9:65:20:0f:ab:80:0c:ae:
31:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:24:5C:F9:1A:F6:3C:6B:6B:A4:88:D0:99:96:C0:AC:C4:47:08:21
X509v3 Authority Key Identifier:
keyid:3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/oiRc-Rr2PGtrpIjQmZbArMRHCCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.247.0/24
164.152.216.0/24
IPv6:
2a11:1680::/48
2a11:1680:2::-2a11:1680:5:ffff:ffff:ffff:ffff:ffff
2a11:1680:a::-2a11:1680:f:ffff:ffff:ffff:ffff:ffff
2a11:1680:13::-2a11:1680:14:ffff:ffff:ffff:ffff:ffff
2a11:1680:1a::-2a11:1680:1d:ffff:ffff:ffff:ffff:ffff
2a11:1680:1f::/48
Signature Algorithm: sha256WithRSAEncryption
8c:23:c8:b9:6c:a3:00:89:07:a6:b0:31:fa:f2:81:b9:40:05:
f6:b7:c8:b6:1f:bb:91:61:d3:71:5b:10:61:9b:f0:f0:2f:6d:
6a:e2:e4:35:17:ce:20:81:ce:51:93:db:1c:97:8a:ab:ff:a0:
79:ee:9e:8d:bf:34:aa:97:1c:8e:a8:48:98:11:7d:1c:12:22:
cf:b6:50:be:71:d6:ae:2b:e4:37:fc:9b:e9:18:de:a8:6c:f3:
a2:75:c6:a5:9d:63:ac:34:fc:17:37:e1:a3:1e:77:e0:7f:06:
75:1c:5f:e8:6a:e5:91:2e:ff:3b:9f:da:10:eb:93:42:2f:c4:
ae:0a:6c:74:81:19:a0:08:93:29:60:0e:6d:34:80:fe:dc:23:
2b:fa:07:5a:df:2f:76:f2:fe:f9:03:9b:03:bc:90:7b:a6:4f:
58:92:87:7c:bf:46:19:93:fa:66:1c:b5:0c:13:70:ee:20:ca:
0f:60:f2:18:c5:d8:a7:b8:12:f8:cc:41:14:66:20:ad:15:1c:
40:b2:24:49:c8:1a:fc:de:01:0c:af:82:70:79:af:d7:be:3d:
a6:16:13:10:c3:87:f6:49:97:ef:22:76:58:67:35:55:0c:07:
17:58:78:0c:c5:80:f1:88:7b:8a:cb:75:c7:f1:72:cc:fa:23:
ca:48:40:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:07 2024 by rpki-client on console-fra.rpki-client.org