Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/3OIExNgvE0b5psRrJlgWyRe5O60.roa
File: 3OIExNgvE0b5psRrJlgWyRe5O60.roa (raw, json)
Hash identifier: ha0GYs7Tv+/IClb14evSyiQzGMSzNuq7cyOlKt02mdw=
Subject key identifier: DC:E2:04:C4:D8:2F:13:46:F9:A6:C4:6B:26:58:16:C9:17:B9:3B:AD
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 01896D70A943011FDFAF1A96E659FBB80D23
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/3OIExNgvE0b5psRrJlgWyRe5O60.roa
Signing time: Wed 19 Jul 2023 09:17:27 +0000
ROA not before: Wed 19 Jul 2023 09:17:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 92.61.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:70:a9:43:01:1f:df:af:1a:96:e6:59:fb:b8:0d:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Jul 19 09:17:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dce204c4d82f1346f9a6c46b265816c917b93bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:00:dc:a7:7e:ff:22:38:19:5d:3a:77:f1:da:
8a:a2:c9:ec:38:2f:75:2a:82:1f:ca:63:fc:ee:8e:
6b:bb:33:1f:2d:03:42:79:17:84:ea:8e:48:29:44:
89:0b:ad:42:d8:fe:c9:35:5a:10:fb:68:e3:5d:99:
96:4a:40:c5:2b:b4:d2:fb:7c:ab:27:39:15:20:b8:
ae:9c:cc:88:cc:cb:22:c5:04:bd:bb:a4:b6:b9:a6:
ec:3b:19:f1:66:00:7d:ec:5e:87:53:33:af:be:ab:
5f:7f:50:34:5c:1a:9c:cc:0b:1b:59:a6:b0:d8:e5:
5b:40:eb:29:d4:6a:64:ea:a8:0a:3a:24:70:5f:fa:
c1:9d:8c:9e:8a:b0:38:ce:77:c7:45:92:da:59:0a:
a1:76:ca:51:41:7d:89:14:2d:10:78:41:ff:d4:7c:
cb:47:eb:71:2d:97:ee:32:a2:37:d9:b8:c5:64:ae:
a7:49:59:bf:53:17:80:0e:d8:bf:e4:e1:f8:f2:71:
f5:c8:79:eb:b6:9a:a2:38:7c:76:33:08:1b:38:ce:
c2:a0:db:13:af:63:20:9f:78:a8:86:79:e1:a3:1d:
b5:4f:5b:34:b0:f7:5d:d5:64:72:0c:7d:b4:9e:86:
28:c6:82:7e:9f:93:d9:ad:be:4a:a7:bd:40:e9:2e:
a0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E2:04:C4:D8:2F:13:46:F9:A6:C4:6B:26:58:16:C9:17:B9:3B:AD
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/3OIExNgvE0b5psRrJlgWyRe5O60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.96.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:62:b3:12:56:3a:8b:a6:45:7c:8f:d4:ae:a5:81:bf:c5:a4:
ce:8f:59:02:b5:d6:b0:90:39:a9:2d:30:ac:21:b7:87:2e:f2:
ef:bd:22:ed:14:1c:70:2f:44:74:32:d8:98:3c:1c:c4:7e:ea:
c8:20:34:f8:7a:16:23:45:1a:d0:dd:5b:ae:d1:9a:9c:bf:90:
8c:74:1a:d2:03:1b:c5:bd:95:ab:00:bb:ff:27:5f:cd:77:ae:
83:c2:7f:e7:5c:5a:b9:9d:05:ed:70:23:17:0e:0b:98:12:3b:
32:04:f2:4f:31:39:dd:46:fc:44:0b:f4:68:d5:b5:81:bf:53:
ae:20:99:4e:6d:7a:85:f6:34:82:2a:6d:94:20:e9:4b:58:bd:
aa:5c:6c:64:36:a9:7c:ab:43:ee:c4:c8:42:0a:5d:a1:44:c5:
82:5a:35:8a:da:01:49:86:3f:c3:11:fd:94:49:c3:a6:a8:59:
90:c2:07:19:34:0d:0f:7e:d9:b3:d8:87:04:51:bd:65:e9:01:
ec:16:d6:08:7a:ed:d2:78:71:83:b8:f1:ee:11:fa:db:eb:0e:
ab:34:18:ab:d7:68:35:75:bd:b2:fd:b7:45:82:61:ee:88:28:
ba:0c:71:e6:f2:b6:80:09:90:f0:a9:c2:1f:fc:f4:27:ee:cf:
d9:c8:8d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:31 2023 by rpki-client on console-fra.rpki-client.org