Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/50f08f-f907-44de-be94-05764c7edaa7/1/OqZb-oll8kgOzaWzreB7TEoM5I0.roa
File: OqZb-oll8kgOzaWzreB7TEoM5I0.roa (raw, json)
Hash identifier: wDz2hIJefWrZSs5sZ4jg9hAEUzqSSQ7VfLuMtPEsqDs=
Subject key identifier: 3A:A6:5B:FA:89:65:F2:48:0E:CD:A5:B3:AD:E0:7B:4C:4A:0C:E4:8D
Certificate issuer: /CN=4ab6d7c468d092c921314d66473cfa53851cd686
Certificate serial: 01856E8B38D7DDF6D79F1EBF5F7C40BDD759
Authority key identifier: 4A:B6:D7:C4:68:D0:92:C9:21:31:4D:66:47:3C:FA:53:85:1C:D6:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SrbXxGjQkskhMU1mRzz6U4Uc1oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/50f08f-f907-44de-be94-05764c7edaa7/1/OqZb-oll8kgOzaWzreB7TEoM5I0.roa
Signing time: Sun 01 Jan 2023 18:14:55 +0000
ROA not before: Sun 01 Jan 2023 18:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21183
IP address blocks: 80.91.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:38:d7:dd:f6:d7:9f:1e:bf:5f:7c:40:bd:d7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ab6d7c468d092c921314d66473cfa53851cd686
Validity
Not Before: Jan 1 18:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3aa65bfa8965f2480ecda5b3ade07b4c4a0ce48d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d7:15:3f:9e:c2:c5:31:f5:05:30:9f:bd:25:
9a:95:e8:c7:c0:ff:17:e3:bd:f6:a9:de:38:bc:9b:
59:bc:74:12:9a:02:2b:81:d0:66:b0:81:2c:b4:be:
36:72:77:47:c9:7c:c7:45:d3:4c:69:3f:b1:21:00:
10:0e:30:bc:cd:5e:d3:dc:ce:e1:5a:e8:62:e6:09:
0c:27:ae:3d:ba:5b:af:37:43:cf:5e:56:01:84:6a:
68:1b:c4:11:8c:2d:30:52:46:38:41:81:c1:9e:8f:
ee:12:75:18:b1:38:26:08:b4:9e:39:d9:cd:af:53:
9b:53:aa:e2:14:ed:7e:e4:18:41:c6:43:f2:b3:7f:
04:c0:30:8a:54:c2:03:92:13:66:06:80:1d:60:b8:
2b:ad:8e:f3:8d:3b:27:c2:43:2f:c5:cc:92:c8:ea:
85:cf:18:b9:54:e0:94:e3:ee:b9:14:0f:f1:13:4a:
1b:a9:23:e4:6c:b7:84:52:3a:50:2d:05:3d:d9:f6:
da:b5:7c:8d:c0:dd:f1:65:46:45:08:1a:19:f4:77:
e4:ec:56:89:57:4a:9d:01:61:86:40:63:03:b9:2e:
2f:ca:32:ac:10:e2:36:08:1f:2f:3a:f7:9f:6a:64:
f2:48:97:48:6d:43:be:23:08:88:1f:46:e2:3a:be:
a5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:A6:5B:FA:89:65:F2:48:0E:CD:A5:B3:AD:E0:7B:4C:4A:0C:E4:8D
X509v3 Authority Key Identifier:
keyid:4A:B6:D7:C4:68:D0:92:C9:21:31:4D:66:47:3C:FA:53:85:1C:D6:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SrbXxGjQkskhMU1mRzz6U4Uc1oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/50f08f-f907-44de-be94-05764c7edaa7/1/OqZb-oll8kgOzaWzreB7TEoM5I0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/50f08f-f907-44de-be94-05764c7edaa7/1/SrbXxGjQkskhMU1mRzz6U4Uc1oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.124.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:4b:13:c2:c2:62:dc:ee:13:ba:3a:ca:b1:eb:7d:0e:2a:7f:
68:bf:ab:37:f0:59:df:fd:bf:6d:e5:97:ac:50:0f:b2:2a:5d:
f8:49:c2:d5:1b:de:5c:74:b0:af:86:6a:fd:a2:8a:9f:a2:44:
24:a1:05:eb:2f:d3:39:35:60:ad:a9:db:63:54:cd:f3:f9:c8:
49:ed:d7:e7:38:45:bd:54:c9:10:ff:d6:c8:0f:7c:d1:af:6f:
3a:d9:9f:a9:ec:13:01:3d:a8:98:a3:bd:d3:02:59:0e:a9:ab:
5a:d5:9d:93:6e:18:bd:36:a1:df:95:d6:47:6b:e9:f0:ae:0f:
06:73:01:d1:13:69:f5:68:85:cd:d4:01:94:06:89:1f:5a:5e:
ba:0d:48:f2:bf:56:2f:07:ad:f0:1e:eb:84:af:2a:5d:a9:a2:
82:19:32:95:a5:20:05:83:6a:ca:e6:6f:38:45:bc:64:99:d1:
82:41:2d:25:93:e5:d5:6c:eb:49:33:bc:54:70:dc:2c:02:97:
1c:72:1e:84:87:8d:fa:1d:ae:5d:c8:1f:50:9d:27:71:59:47:
20:03:d3:ca:43:76:39:4f:03:3a:8e:3d:62:a1:27:e3:39:a3:
2b:18:7e:e5:68:98:40:6a:49:6b:30:f3:f7:76:4d:63:30:d3:
8b:7c:12:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:17 2024 by rpki-client on console-fra.rpki-client.org