Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/lB72Sr64iNYeQbQuJTWPaDuKjiM.roa
File: lB72Sr64iNYeQbQuJTWPaDuKjiM.roa (raw, json)
Hash identifier: ggmZ5S+KJLuf+kHBYqE0SdYnaA9mqbCiGzuDAOgRdj0=
Subject key identifier: 94:1E:F6:4A:BE:B8:88:D6:1E:41:B4:2E:25:35:8F:68:3B:8A:8E:23
Certificate issuer: /CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Certificate serial: 0189072C1829661F66CDF54E1D76EBD88057
Authority key identifier: 11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/lB72Sr64iNYeQbQuJTWPaDuKjiM.roa
Signing time: Thu 29 Jun 2023 12:41:17 +0000
ROA not before: Thu 29 Jun 2023 12:41:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210465
IP address blocks: 146.19.99.0/24 maxlen: 24
80.88.144.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:07:2c:18:29:66:1f:66:cd:f5:4e:1d:76:eb:d8:80:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625
Validity
Not Before: Jun 29 12:41:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=941ef64abeb888d61e41b42e25358f683b8a8e23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8e:b1:88:e8:2a:73:aa:0d:48:2b:d8:84:c7:
79:4e:a0:6a:18:68:d3:55:69:6f:f4:4a:52:9f:17:
44:77:08:7d:a6:f7:6d:6d:6e:22:32:ad:e3:48:db:
a2:15:64:e5:7b:7e:bc:e0:0d:a4:ec:55:30:2e:9e:
0b:07:d9:ad:1f:c1:bd:e6:01:64:0f:09:27:4e:ea:
44:cd:65:b9:f1:ea:71:05:2d:51:d9:e1:30:13:05:
1b:56:c7:14:f4:77:d9:e8:38:40:bc:be:ae:8f:b4:
a0:0b:45:3c:a2:ff:db:f3:91:c5:de:50:de:b1:0a:
e2:ed:14:42:a0:35:af:4e:76:dc:7d:97:8d:7c:1e:
6a:1e:09:be:dc:22:34:ae:86:f2:44:df:16:70:6c:
0e:e0:ad:3c:4a:3b:6f:c6:06:a1:36:56:bf:98:26:
7d:4a:4a:58:6d:a7:e8:eb:e4:1a:bd:8c:e8:97:a3:
3a:6a:54:9f:87:ac:81:bc:04:09:4f:91:a5:a6:f4:
56:16:c6:e7:5d:c6:d3:1e:32:65:c7:85:fe:a7:5f:
2d:31:ce:84:fe:2c:f7:2d:eb:ce:f3:85:10:58:db:
a0:38:c1:91:5e:16:97:89:c5:6e:f1:da:66:72:f8:
b5:3b:e1:3b:f3:ae:96:fd:41:7a:a9:39:6c:14:57:
00:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1E:F6:4A:BE:B8:88:D6:1E:41:B4:2E:25:35:8F:68:3B:8A:8E:23
X509v3 Authority Key Identifier:
keyid:11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/lB72Sr64iNYeQbQuJTWPaDuKjiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.88.144.0/21
146.19.99.0/24
Signature Algorithm: sha256WithRSAEncryption
19:0f:55:48:97:f0:22:1c:06:7d:5b:d3:d5:14:c3:2b:e2:83:
d4:81:1e:5e:9e:18:60:bc:13:77:ef:e8:56:83:d0:e2:20:56:
9f:6a:20:3b:7e:4f:a8:92:26:1f:ef:8e:7c:b8:10:1e:71:c3:
12:7f:86:71:9a:ed:2d:47:a5:93:45:f3:d8:3b:3d:c4:d8:53:
15:6b:17:aa:77:20:93:8b:a7:97:97:87:6c:8d:f9:25:fe:74:
81:d6:e9:96:d4:2c:94:1e:79:66:51:6e:d4:8a:14:5e:14:1e:
95:57:c2:68:53:6b:a0:90:c1:b3:08:dd:c7:ca:2c:25:40:2e:
92:e3:89:44:a8:17:17:d0:62:6e:50:18:ab:f7:d7:7b:13:20:
1f:c3:c8:50:fc:f2:fe:b8:88:4c:cb:cf:11:67:ed:7f:04:8e:
99:08:92:2b:0c:6d:34:24:a7:3e:a5:14:75:3f:7d:dd:54:b0:
2e:11:cc:00:5e:41:45:15:29:b7:3c:8d:75:55:04:be:77:14:
ee:a2:9b:01:95:b6:af:bb:b0:11:a6:10:93:47:7f:b7:e7:04:
99:4b:70:67:f5:0e:32:b2:15:4f:82:e2:bf:08:63:a1:81:56:
fb:bc:c9:af:21:22:38:5f:bd:f2:2a:22:80:26:3a:38:ba:80:
89:fc:7b:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:09 2024 by rpki-client on console-ams.rpki-client.org