Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/cFS9x107IdLT9haw6ZjLUbipLHE.roa
File: cFS9x107IdLT9haw6ZjLUbipLHE.roa (raw, json)
Hash identifier: UmLqpiHTYu2pJWzW8/uDzJhi1vCHY+fR4/o6pQEPxgY=
Subject key identifier: 70:54:BD:C7:5D:3B:21:D2:D3:F6:16:B0:E9:98:CB:51:B8:A9:2C:71
Certificate issuer: /CN=01d6ef0479f9fdfa826657dfd8e0ef3668ca1abf
Certificate serial: 01856F393F26691ADDBF06585004D42A5E40
Authority key identifier: 01:D6:EF:04:79:F9:FD:FA:82:66:57:DF:D8:E0:EF:36:68:CA:1A:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AdbvBHn5_fqCZlff2ODvNmjKGr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/cFS9x107IdLT9haw6ZjLUbipLHE.roa
Signing time: Sun 01 Jan 2023 21:25:00 +0000
ROA not before: Sun 01 Jan 2023 21:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2852
IP address blocks: 147.33.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:3f:26:69:1a:dd:bf:06:58:50:04:d4:2a:5e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01d6ef0479f9fdfa826657dfd8e0ef3668ca1abf
Validity
Not Before: Jan 1 21:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7054bdc75d3b21d2d3f616b0e998cb51b8a92c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e3:ac:d0:71:44:17:b0:67:75:f8:93:a4:39:
39:d2:58:0b:03:33:f5:60:8d:05:05:af:62:fd:e9:
6f:03:f8:93:aa:bb:fd:60:48:ff:46:95:2d:71:dd:
94:6a:af:e4:2d:45:70:32:cb:be:c5:38:68:9d:18:
86:21:06:c0:cb:33:3c:d2:72:8f:ae:9d:16:d5:0b:
12:77:01:9b:ea:36:f5:0e:90:47:55:f6:61:e6:fc:
26:2e:a8:97:00:48:b2:69:cf:1e:b0:82:da:6a:c1:
41:4b:13:da:dc:e5:9a:f0:97:17:69:5c:54:41:41:
fe:6e:8e:b0:7f:0a:ba:c2:0c:cc:76:9e:9d:fb:6d:
79:eb:54:15:b9:2b:32:00:ff:76:8e:1b:7d:4c:8a:
55:13:57:18:6b:72:96:13:6d:b7:47:52:20:ef:c5:
75:8b:6a:d3:b5:71:85:aa:a5:8e:4c:53:7b:77:90:
37:19:3a:d6:28:c5:cd:08:6c:b7:58:18:5f:2f:f1:
92:a6:d8:e2:70:f2:cd:4d:13:83:9c:d2:5b:03:74:
d6:63:21:3d:2b:43:62:49:e6:4a:d6:a7:b8:23:77:
b5:88:09:9a:c9:3e:c7:de:76:cf:e8:7d:d5:84:8b:
26:98:7a:28:b0:81:9e:58:b5:7b:71:83:9b:4a:7a:
59:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:54:BD:C7:5D:3B:21:D2:D3:F6:16:B0:E9:98:CB:51:B8:A9:2C:71
X509v3 Authority Key Identifier:
keyid:01:D6:EF:04:79:F9:FD:FA:82:66:57:DF:D8:E0:EF:36:68:CA:1A:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AdbvBHn5_fqCZlff2ODvNmjKGr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/cFS9x107IdLT9haw6ZjLUbipLHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/6d74fd-5bb9-42f8-bb51-0d9cd7e8ff36/1/AdbvBHn5_fqCZlff2ODvNmjKGr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.33.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a2:f4:55:c4:24:81:0a:0b:c6:f8:b8:8b:9c:bd:de:e1:ba:66:
0f:3c:f9:78:dc:2f:0e:45:bf:23:c5:61:f3:0c:60:d4:1b:f3:
b0:50:92:cb:57:f7:4b:03:24:c5:22:7a:be:1f:72:03:85:b8:
28:8e:77:a9:98:b1:da:57:40:71:03:f6:c4:bd:09:c2:48:6b:
6b:1b:55:50:f2:ec:0b:49:41:14:e5:a2:94:18:f6:b6:8e:63:
96:55:3e:89:d6:73:96:68:1d:c7:a2:0d:7e:94:89:88:99:db:
75:2e:58:6d:6b:c2:7a:ff:6e:f3:c1:af:f4:07:fe:37:9b:13:
60:95:b9:46:0c:fb:e7:f7:ff:83:a9:13:a3:39:91:be:4c:b6:
f2:6f:64:19:62:98:79:0c:ad:85:e0:ce:fa:68:18:04:27:82:
97:ec:32:18:b1:50:68:97:14:c1:e6:27:d5:27:e9:b1:a4:91:
00:85:bc:e0:26:40:59:27:78:bf:d5:98:f7:08:ae:57:a7:23:
64:6b:69:16:31:a8:3f:99:11:f4:f8:35:fe:63:62:65:92:c7:
1e:8e:97:0f:b6:21:65:e9:b4:b4:87:55:9a:63:43:27:da:a8:
9d:0c:e0:7e:e8:e1:20:e9:44:6f:28:e7:ff:7b:38:fa:23:94:
78:dc:00:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:16 2024 by rpki-client on console-ams.rpki-client.org