Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/KSAlUuePYN6baTxiiKC-LFtQ2Lw.roa
File: KSAlUuePYN6baTxiiKC-LFtQ2Lw.roa (raw, json)
Hash identifier: L0I3RzvXPJJeg87u+iaIlheXk3WCbJAL0Sz4IO9qXHU=
Subject key identifier: 29:20:25:52:E7:8F:60:DE:9B:69:3C:62:88:A0:BE:2C:5B:50:D8:BC
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 018571D7B5C63B22760AEB482F55A95F7351
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/KSAlUuePYN6baTxiiKC-LFtQ2Lw.roa
Signing time: Mon 02 Jan 2023 09:37:20 +0000
ROA not before: Mon 02 Jan 2023 09:37:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 141.63.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:b5:c6:3b:22:76:0a:eb:48:2f:55:a9:5f:73:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jan 2 09:37:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29202552e78f60de9b693c6288a0be2c5b50d8bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6b:ed:ac:8f:1e:f7:d5:80:ee:6c:7e:e2:e6:
1d:2c:67:e4:36:f4:91:59:bc:20:c6:24:8e:c2:1e:
83:38:3a:2a:4e:31:bd:10:bc:4d:d2:02:aa:ce:bb:
38:b5:af:fb:65:02:67:73:4c:01:14:4b:6d:d1:6d:
17:c9:9b:2e:40:43:1c:aa:44:6f:56:97:c9:ce:f4:
3c:39:bb:c8:93:7a:e8:47:29:55:a5:5b:70:63:c7:
ed:39:29:d5:79:63:2f:dc:2c:33:01:c7:95:c0:ce:
6f:ba:9a:cc:b5:f6:31:93:97:6c:43:5d:d1:09:5d:
1a:d5:e9:f5:f2:ca:69:fe:3d:9b:1e:c1:5a:e7:4e:
a2:c7:80:e3:59:0d:ed:9e:e1:40:01:ac:2a:5e:c9:
2b:c2:c7:35:d4:99:37:0f:52:1b:21:ff:43:2f:06:
e4:a9:2c:bc:7f:21:c2:50:92:e3:ea:5f:eb:95:1a:
9a:77:09:22:46:d9:53:4c:00:77:7b:bf:db:a6:d0:
b7:15:cd:0b:41:a9:5f:03:bc:7a:06:c9:ed:7e:d3:
91:69:15:3f:3a:60:82:cf:28:41:ee:37:9a:d5:2b:
63:07:5e:d0:1b:6b:e6:ac:b0:25:69:74:04:b9:7c:
07:a0:f4:c4:0f:31:e5:e6:41:56:44:d1:85:7d:fb:
a2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:20:25:52:E7:8F:60:DE:9B:69:3C:62:88:A0:BE:2C:5B:50:D8:BC
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/KSAlUuePYN6baTxiiKC-LFtQ2Lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.63.0.0/16
Signature Algorithm: sha256WithRSAEncryption
11:af:1f:11:bb:22:1a:f0:fe:a5:83:44:56:18:8f:3a:17:7d:
20:d1:bd:2a:63:8a:32:90:7e:92:a1:d3:be:ee:10:e5:34:94:
bd:ab:38:73:12:b8:92:7c:3a:0e:ba:c4:9f:f5:f6:0b:fc:16:
a6:20:6c:b2:5c:c8:dc:f9:86:9a:21:b7:ce:d2:91:4d:bd:5e:
79:14:35:dc:6a:64:25:fc:f3:d7:2c:a6:3e:d3:7c:02:28:0f:
aa:4e:68:59:1d:83:87:ba:bd:68:7a:34:88:31:f8:dd:fc:93:
34:03:db:31:13:ae:6b:45:00:9e:c7:c4:89:db:19:1a:75:b2:
c0:d7:77:35:ca:a6:43:ed:a9:c1:16:e2:53:f9:6a:a1:bd:eb:
89:6e:ee:08:15:99:7b:dc:a6:ef:91:02:b2:99:25:5a:e1:32:
33:38:c6:86:9f:5c:be:2a:31:5e:35:31:13:ff:e0:96:94:90:
43:f1:02:fc:f0:46:ed:40:1a:fe:3b:4e:95:57:5a:30:80:6a:
ed:2c:ea:35:af:d3:c2:5c:20:c3:6c:06:ba:88:f4:71:91:3e:
d4:8d:c5:95:eb:ab:3e:7a:be:39:f9:3f:cf:68:58:8b:92:83:
07:bc:aa:74:63:2c:76:e0:f9:01:1f:cf:d8:a3:f4:50:25:fc:
34:6c:15:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:30 2024 by rpki-client on console-ams.rpki-client.org