Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/OosmZGB5N7E7RWJe0FkPs1y0BEo.roa
File: OosmZGB5N7E7RWJe0FkPs1y0BEo.roa (raw, json)
Hash identifier: eu0GBQdl6edFWofFVEE+i7ISVvOdJyJn9WZnQZHK8w4=
Subject key identifier: 3A:8B:26:64:60:79:37:B1:3B:45:62:5E:D0:59:0F:B3:5C:B4:04:4A
Certificate issuer: /CN=0ffcfc345a0646a7cf225905477e2183574886e0
Certificate serial: 01856D4192F5AF951B8B155598DCC391C8F0
Authority key identifier: 0F:FC:FC:34:5A:06:46:A7:CF:22:59:05:47:7E:21:83:57:48:86:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_z8NFoGRqfPIlkFR34hg1dIhuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/OosmZGB5N7E7RWJe0FkPs1y0BEo.roa
Signing time: Sun 01 Jan 2023 12:14:51 +0000
ROA not before: Sun 01 Jan 2023 12:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25229
IP address blocks: 91.216.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:92:f5:af:95:1b:8b:15:55:98:dc:c3:91:c8:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ffcfc345a0646a7cf225905477e2183574886e0
Validity
Not Before: Jan 1 12:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a8b2664607937b13b45625ed0590fb35cb4044a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0e:37:32:5a:55:47:fd:42:16:87:59:38:aa:
05:71:f7:8e:e9:59:a1:ed:42:8a:de:53:f6:f6:6b:
82:d5:2e:d9:32:7f:77:6f:15:eb:84:c7:b1:f0:03:
50:ad:fa:b9:68:4f:4a:08:cc:e5:a9:90:70:43:99:
40:71:3c:be:e5:40:0c:1b:70:2e:45:15:12:f7:65:
8e:1a:db:78:ef:45:7f:9e:27:65:82:d3:95:e1:24:
03:f3:e0:ba:c3:4b:9c:70:55:c6:8f:af:94:9e:46:
63:76:3a:5f:48:60:02:6a:d9:a6:86:e9:93:0e:1a:
61:a2:39:3f:fc:1d:3d:fa:b1:08:e0:b1:94:af:46:
fe:35:9f:5a:b5:54:eb:ee:86:db:11:3d:e3:a3:42:
b3:9b:86:b6:37:0f:be:80:a0:3e:c4:1b:90:91:c4:
54:28:b7:97:79:74:0f:6b:99:17:5d:16:da:94:0e:
b5:c1:a8:f2:52:9c:75:58:37:63:30:58:71:b5:29:
8e:f4:ac:5e:07:49:77:d0:0e:06:29:40:36:8d:4d:
41:79:b1:dc:cc:89:7e:11:db:42:43:6a:3c:3b:cf:
85:c9:3e:1a:c3:1e:71:6a:c0:21:3d:e2:8d:48:54:
20:56:ee:5d:b9:35:f6:05:81:a4:bf:79:99:43:d1:
11:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8B:26:64:60:79:37:B1:3B:45:62:5E:D0:59:0F:B3:5C:B4:04:4A
X509v3 Authority Key Identifier:
keyid:0F:FC:FC:34:5A:06:46:A7:CF:22:59:05:47:7E:21:83:57:48:86:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_z8NFoGRqfPIlkFR34hg1dIhuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/OosmZGB5N7E7RWJe0FkPs1y0BEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/af282b-f597-407a-bef5-132f99cfaa53/1/D_z8NFoGRqfPIlkFR34hg1dIhuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.106.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:31:d9:f3:b4:d8:70:0d:73:78:5a:eb:4b:e5:69:33:82:37:
65:22:db:0e:06:ae:7f:ac:74:58:39:a7:22:7c:69:fe:4a:f0:
86:84:3c:99:8d:7d:97:82:2b:0f:66:99:00:b4:80:11:40:aa:
30:4f:80:7c:71:64:3b:b8:58:a6:15:30:76:0d:4e:d2:04:e1:
43:9b:29:8a:e7:40:a4:88:b9:4b:d6:03:45:5c:55:a7:4d:07:
5a:a3:28:21:bc:c7:d8:14:49:26:24:5f:d5:c1:56:c6:25:25:
5b:6f:e8:cb:76:e1:83:85:25:b7:9d:40:6c:e1:6a:d0:b1:40:
c6:d6:a6:8b:d0:ce:0a:ec:c3:b8:ac:03:e1:04:bd:a6:09:39:
0f:6d:a9:aa:56:7b:56:ef:78:e4:c8:6a:8e:bc:dd:a6:ce:7f:
e2:d7:90:a6:69:59:b7:27:ea:91:2a:7f:9e:78:aa:24:22:8d:
37:5d:67:c5:a0:be:62:ba:48:7a:ea:86:94:d0:df:36:2f:1b:
34:6a:32:8a:b5:8c:3a:62:25:1b:26:bc:ca:f5:5e:22:46:2f:
c4:cb:37:85:21:2d:78:80:20:c2:4e:71:23:d0:75:11:73:bb:
9e:b3:d9:e1:44:fe:43:e8:90:3b:23:3d:f0:a7:dc:eb:8b:30:
0a:ca:77:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:47 2024 by rpki-client on console-fra.rpki-client.org