Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/oGw_54cObcYZjLlCGOTkqhNpSqg.roa
File: oGw_54cObcYZjLlCGOTkqhNpSqg.roa (raw, json)
Hash identifier: MDNka3tE6/f04nk27hWvBo2GSRVlmBSxeoGPdFVfDOg=
Subject key identifier: A0:6C:3F:E7:87:0E:6D:C6:19:8C:B9:42:18:E4:E4:AA:13:69:4A:A8
Certificate issuer: /CN=6d069e19e12c104004e8b4b75f8a7789b7e11396
Certificate serial: 018570D5484E27AECF33D04360711C7FEB9A
Authority key identifier: 6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/oGw_54cObcYZjLlCGOTkqhNpSqg.roa
Signing time: Mon 02 Jan 2023 04:55:03 +0000
ROA not before: Mon 02 Jan 2023 04:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203396
IP address blocks: 145.12.0.0/16 maxlen: 24
145.69.0.0/16 maxlen: 24
145.69.47.240/28 maxlen: 28
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:48:4e:27:ae:cf:33:d0:43:60:71:1c:7f:eb:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d069e19e12c104004e8b4b75f8a7789b7e11396
Validity
Not Before: Jan 2 04:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a06c3fe7870e6dc6198cb94218e4e4aa13694aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8d:4a:c2:07:c5:03:64:3e:d0:01:cd:89:9b:
6d:18:7b:fb:39:be:b2:55:27:ed:5f:68:17:f1:5f:
d4:40:04:99:6b:b0:26:db:94:f3:8b:90:64:fa:32:
f6:a3:99:1f:6f:4b:4f:1f:0a:6f:28:83:4a:58:09:
95:8d:fc:e3:04:8a:a7:e8:ca:fe:cf:77:8d:97:d9:
ef:90:e2:88:27:80:74:a9:ab:29:c9:b4:47:ad:80:
0c:95:40:ec:bd:3d:f9:ed:98:d1:6a:c1:7d:3e:e8:
43:90:ec:9b:47:3f:5e:39:0c:64:3e:a7:5c:b2:84:
e5:11:90:1a:d7:7a:c8:18:90:a7:fc:0d:7b:59:2e:
f8:2b:e8:4a:1b:9a:73:d1:c2:cf:3b:81:82:1b:3e:
f0:fe:36:76:fb:e5:54:41:a7:ad:2b:1f:17:a7:71:
f7:f4:a8:2e:d2:02:22:87:01:c6:41:61:25:ce:22:
5b:e5:10:64:bc:29:2c:03:10:9e:63:7c:73:a8:8e:
52:ad:dc:df:c7:f3:fd:b6:65:c3:41:1a:34:e4:53:
07:cc:19:aa:c3:40:68:1e:34:39:20:95:f3:fb:d0:
b2:b4:91:77:7c:c3:2c:17:3f:8c:a5:ef:8e:c9:45:
0a:d5:1e:17:08:ba:0c:12:5f:d5:a9:4a:a3:4a:ba:
e2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:6C:3F:E7:87:0E:6D:C6:19:8C:B9:42:18:E4:E4:AA:13:69:4A:A8
X509v3 Authority Key Identifier:
keyid:6D:06:9E:19:E1:2C:10:40:04:E8:B4:B7:5F:8A:77:89:B7:E1:13:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/oGw_54cObcYZjLlCGOTkqhNpSqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/cf64f6-0789-43e3-bd6b-7bff296c6b02/1/bQaeGeEsEEAE6LS3X4p3ibfhE5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.12.0.0/16
145.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
09:66:5f:17:50:8c:bd:b5:ca:7e:08:2e:9f:7c:a4:ae:54:eb:
cb:2b:ce:be:9c:3c:3b:59:4c:f2:9b:40:da:e5:46:09:cd:09:
ba:8d:29:e0:40:ce:28:e9:71:68:2e:f2:21:95:2c:12:a1:20:
11:2d:2f:1a:ba:1c:11:ef:27:af:50:85:9d:87:3f:34:75:4d:
07:69:60:a0:f2:6f:e3:76:a9:eb:c8:45:9d:a4:e3:07:b2:06:
aa:8a:08:ae:56:a6:92:50:b5:f6:67:ae:22:a9:79:42:bf:e4:
cc:36:ce:e6:b9:c1:1a:32:1f:6c:3c:a7:aa:5e:f7:a0:3e:3e:
41:f9:04:a9:db:37:d1:3a:96:a4:5f:a0:0e:2b:38:5b:ce:29:
db:42:5a:3c:8d:a0:bf:b5:8b:16:77:8c:fe:3e:ab:cd:45:82:
dc:50:ec:5b:17:19:04:6d:08:64:3c:ef:63:63:bb:41:37:04:
73:41:bb:10:33:1d:0b:6e:07:eb:f7:70:1a:6e:c5:3b:12:86:
7b:a2:52:c3:84:a3:cd:98:7a:45:84:bd:c5:b0:1a:c3:31:4d:
e8:c7:37:72:e4:eb:1f:33:e1:df:c2:76:d7:27:31:88:dc:2d:
5c:56:8c:12:85:87:21:65:a4:58:77:2e:20:ce:0d:14:2f:91:
56:ef:46:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:02 2024 by rpki-client on console-ams.rpki-client.org