Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/olKJZFjd-tw8qAqO9QsR76GxXYM.roa
File: olKJZFjd-tw8qAqO9QsR76GxXYM.roa (raw, json)
Hash identifier: JS7bvp/lIsaYjdPDSdRLjqDxrCtemTNY5aKoPYNyi1E=
Subject key identifier: A2:52:89:64:58:DD:FA:DC:3C:A8:0A:8E:F5:0B:11:EF:A1:B1:5D:83
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 01882B9748B25A9FA13897AD53A0A33F108E
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/olKJZFjd-tw8qAqO9QsR76GxXYM.roa
Signing time: Wed 17 May 2023 21:21:54 +0000
ROA not before: Wed 17 May 2023 21:21:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 87.254.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2b:97:48:b2:5a:9f:a1:38:97:ad:53:a0:a3:3f:10:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: May 17 21:21:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a252896458ddfadc3ca80a8ef50b11efa1b15d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2a:91:35:14:6b:9f:de:69:4f:d3:8b:25:04:
9a:9c:2a:17:1e:79:72:f8:35:f2:3f:e1:b4:e4:30:
8d:cb:55:f1:f3:19:48:4d:b2:1b:80:f6:eb:b3:cf:
ee:37:7d:80:23:5b:d0:37:91:98:1a:b7:1b:e0:5c:
78:ce:9c:1d:84:3b:89:6e:c2:68:21:c4:bd:5c:76:
8b:0f:55:ca:f1:17:f6:6f:e0:5f:88:6f:9a:dc:4d:
49:7a:a8:70:95:58:1d:0b:92:fe:0a:86:55:c2:e3:
fb:a0:91:c2:45:d6:1d:46:27:09:2d:d3:40:f5:1b:
16:90:0e:da:57:d0:26:32:50:2d:4d:1c:fb:97:c8:
d1:0c:a7:65:66:f9:b3:da:d7:9e:fe:d5:72:ef:82:
63:1d:13:34:41:6f:e4:3d:c6:58:fc:09:7e:05:7e:
bb:3a:4d:18:c0:ac:da:b8:42:7e:8b:68:d2:9c:dd:
71:7f:2a:fd:ff:b7:32:8a:e1:bd:cb:65:04:e9:10:
68:de:01:38:ef:f7:8a:d7:14:37:38:7f:df:30:dd:
6a:4b:e6:04:30:bc:1b:c9:f6:94:4f:7d:89:0e:df:
99:ac:0a:6e:a4:6d:99:84:5e:08:41:5b:07:09:46:
25:91:22:89:1b:8f:8c:ba:91:98:19:7a:a8:ac:41:
45:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:52:89:64:58:DD:FA:DC:3C:A8:0A:8E:F5:0B:11:EF:A1:B1:5D:83
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/olKJZFjd-tw8qAqO9QsR76GxXYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.29.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:80:bd:4a:1b:3d:02:65:f1:a6:c3:2e:22:fb:a6:fd:45:fa:
50:8e:3b:ca:dc:bc:41:ad:d6:dc:11:6b:ba:32:86:b4:40:e6:
58:1a:eb:0b:20:fd:1f:9f:6b:d1:2c:c0:b9:fa:03:df:ef:5d:
b8:8e:87:31:cf:e8:01:69:e3:f3:4c:c1:18:ad:5b:af:e1:d5:
9e:1b:4c:63:ee:26:9c:4b:70:18:d0:ab:6a:51:f8:20:c5:c3:
8d:d0:51:93:0f:2c:4f:00:76:e0:ff:3c:f7:19:c5:eb:82:f1:
02:8d:b4:dc:3b:8e:08:17:64:91:18:cd:4b:3d:76:9d:72:09:
5c:ea:95:57:19:83:af:b8:05:d3:5c:41:58:c3:48:be:23:19:
11:45:74:1d:21:2a:22:96:af:3e:62:4c:2c:34:fc:ee:ed:19:
87:2c:7d:71:a7:81:72:f2:3f:48:95:b1:fb:e1:08:18:6f:87:
6e:e0:f2:06:94:b2:2e:d9:65:44:46:7d:1b:41:82:3a:c5:5f:
35:84:3a:bc:c9:69:06:bf:4e:12:ad:2a:b0:50:ca:e9:c1:df:
86:c3:30:06:56:dd:30:13:cd:1d:18:f9:09:20:1c:37:0d:e4:
6d:ea:b5:58:ac:58:c5:63:42:0e:c0:0d:71:12:33:a4:3a:97:
dd:ab:64:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:47 2024 by rpki-client on console-fra.rpki-client.org