Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/OhEszdbBZR_3Aq4jLJGA14E2vP8.roa
File: OhEszdbBZR_3Aq4jLJGA14E2vP8.roa (raw, json)
Hash identifier: ezHfyeSVDI8M9Qord1pHGhwTh0Bvdhpcxnt7lgEaLAY=
Subject key identifier: 3A:11:2C:CD:D6:C1:65:1F:F7:02:AE:23:2C:91:80:D7:81:36:BC:FF
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01856CCAE2C600E4612314FE48B336DBB3BB
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/OhEszdbBZR_3Aq4jLJGA14E2vP8.roa
Signing time: Sun 01 Jan 2023 10:05:13 +0000
ROA not before: Sun 01 Jan 2023 10:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35073
IP address blocks: 194.71.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e2:c6:00:e4:61:23:14:fe:48:b3:36:db:b3:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 10:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a112ccdd6c1651ff702ae232c9180d78136bcff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:95:91:b3:58:46:48:39:56:7e:5a:1d:9c:fc:
b6:75:a3:81:98:b5:f1:0d:8e:1b:ab:52:60:3b:c6:
01:84:07:77:6b:70:9b:39:d8:4a:87:18:e1:9c:f3:
89:b9:24:4c:f4:9b:fe:6a:2d:33:01:29:77:74:e6:
76:69:ee:be:fc:50:83:74:49:b4:c2:44:4a:68:33:
f9:06:46:50:9a:75:38:a9:4f:92:2e:8a:40:b2:ae:
a7:ea:92:90:80:76:42:1d:62:6f:35:66:e1:65:fb:
0c:a8:15:fa:ca:19:43:a0:52:51:6f:1a:cc:a5:de:
e2:12:70:d2:41:0c:e7:8e:d5:02:bc:4b:3c:a2:10:
b6:65:44:3a:96:15:29:b7:11:d3:8d:96:1a:be:4b:
1d:ef:23:3b:83:36:ae:be:e2:96:9f:77:b1:4b:3b:
51:41:1a:5f:14:a7:ab:df:c9:6e:17:65:28:cf:ea:
9b:c8:76:af:b5:e7:78:7f:6a:d8:de:42:34:71:b6:
2e:b0:f2:3e:fe:99:7a:b8:50:4a:2e:b1:1c:93:50:
d1:41:95:c5:13:96:b8:1a:d8:75:8e:92:71:89:3b:
40:f4:46:80:69:52:d5:b5:27:34:f7:52:38:4a:fc:
7a:91:5a:b3:7f:b6:2a:fb:64:d1:25:70:25:fc:9a:
85:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:11:2C:CD:D6:C1:65:1F:F7:02:AE:23:2C:91:80:D7:81:36:BC:FF
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/OhEszdbBZR_3Aq4jLJGA14E2vP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.71.97.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:df:ee:be:a9:ff:39:a3:cf:72:86:47:26:f7:d1:21:ef:5b:
8f:b4:62:42:19:05:12:34:61:ea:5f:c1:a8:e0:44:10:cd:d0:
62:25:d7:71:22:c4:d8:10:69:14:1b:b6:5b:53:12:0d:fc:93:
7b:0e:c3:83:55:27:c2:28:59:9f:f6:f0:88:d2:c1:2f:06:82:
2e:da:07:ea:9d:e8:ee:26:b7:b6:d5:46:2b:b9:19:c2:62:fa:
6f:61:63:62:80:8c:70:82:fc:9a:33:1e:3d:00:00:40:29:3d:
16:40:7d:ff:31:cd:03:e6:33:36:99:a3:41:40:74:54:fc:af:
52:08:dc:b8:40:df:3e:38:bb:21:a3:4f:01:da:98:d0:dd:0f:
57:50:fb:3d:79:17:06:37:c1:ad:6a:39:1a:1c:1e:b1:23:aa:
9e:91:9f:56:26:a1:13:f1:81:01:04:69:30:73:eb:46:06:0d:
90:8e:f3:d1:4b:2b:bc:ac:3c:51:00:4e:c5:84:5c:c4:a8:6a:
d2:11:fc:fd:25:0a:cd:7f:91:3d:4a:d9:4f:78:c9:28:5e:07:
8e:d2:3c:02:6b:81:a8:cf:4c:0e:4b:1d:ff:18:fb:a3:7a:7d:
04:92:90:9e:14:e2:67:85:73:de:6d:c4:0f:3b:38:99:4e:a6:
4a:24:69:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:20 2024 by rpki-client on console-ams.rpki-client.org