Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/a067c3-6ba8-45f3-8d62-2fda6a565013/1/I1n4a9w-ZbKSiDpcdSHIPpMhswU.roa
File: I1n4a9w-ZbKSiDpcdSHIPpMhswU.roa (raw, json)
Hash identifier: FVg8s3LXKtls/rwToPuOEh5jL3kW4PI83WOXZN0cyBs=
Subject key identifier: 23:59:F8:6B:DC:3E:65:B2:92:88:3A:5C:75:21:C8:3E:93:21:B3:05
Certificate issuer: /CN=2ee353f3503f9bff3381450035628e81a96d908f
Certificate serial: 018572A800F395B8C71ADC53C5BC2D910DBE
Authority key identifier: 2E:E3:53:F3:50:3F:9B:FF:33:81:45:00:35:62:8E:81:A9:6D:90:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LuNT81A_m_8zgUUANWKOgaltkI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/a067c3-6ba8-45f3-8d62-2fda6a565013/1/I1n4a9w-ZbKSiDpcdSHIPpMhswU.roa
Signing time: Mon 02 Jan 2023 13:24:50 +0000
ROA not before: Mon 02 Jan 2023 13:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 553
IP address blocks: 134.103.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a8:00:f3:95:b8:c7:1a:dc:53:c5:bc:2d:91:0d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee353f3503f9bff3381450035628e81a96d908f
Validity
Not Before: Jan 2 13:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2359f86bdc3e65b292883a5c7521c83e9321b305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ea:06:ac:a9:ef:58:28:e2:ee:7c:ba:ce:4f:
10:f6:dd:3f:1a:9e:75:ac:10:79:33:d8:6d:31:42:
27:f2:02:c0:7c:3a:b9:6b:29:87:11:2c:c2:64:e1:
e8:51:7e:8e:4a:0e:18:67:4f:44:1b:74:7e:9f:52:
26:41:7f:73:40:c6:7c:cc:e1:fe:3a:22:1e:f5:fd:
66:41:87:af:60:23:c2:00:4c:89:c2:45:b6:f1:f9:
f6:80:ec:8d:d5:34:f7:e6:04:70:ac:72:d3:5f:52:
ec:f8:ae:43:8a:7e:1c:fc:2c:78:39:ff:d3:12:cf:
64:47:8b:a3:ec:e7:f5:ae:42:e6:c6:86:cf:aa:d1:
9c:de:9a:39:be:16:e8:7b:a0:48:ca:5f:98:c2:cb:
af:bf:78:b2:83:73:97:3f:08:d1:b2:6c:aa:f5:a5:
68:18:4d:69:17:de:ad:2f:f1:18:82:cc:51:e2:52:
f9:62:90:e0:5c:56:90:e5:1c:51:ac:98:18:13:76:
5f:3a:ab:83:ad:de:cb:c1:c0:e1:40:c4:93:fb:66:
89:76:e1:f3:50:6f:dd:d2:40:35:1b:2a:59:f0:fd:
8a:5d:44:20:ed:7f:8b:1e:5a:b8:93:f5:d7:24:5c:
48:04:90:82:63:1d:62:ab:f3:fe:3b:24:09:d9:26:
76:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:59:F8:6B:DC:3E:65:B2:92:88:3A:5C:75:21:C8:3E:93:21:B3:05
X509v3 Authority Key Identifier:
keyid:2E:E3:53:F3:50:3F:9B:FF:33:81:45:00:35:62:8E:81:A9:6D:90:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LuNT81A_m_8zgUUANWKOgaltkI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a067c3-6ba8-45f3-8d62-2fda6a565013/1/I1n4a9w-ZbKSiDpcdSHIPpMhswU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a067c3-6ba8-45f3-8d62-2fda6a565013/1/LuNT81A_m_8zgUUANWKOgaltkI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.103.0.0/16
Signature Algorithm: sha256WithRSAEncryption
84:70:60:59:fa:98:ec:f4:0a:9d:8c:33:d0:35:7e:fd:99:8b:
87:45:4f:52:29:ee:c0:46:64:2a:a8:4b:aa:2a:76:22:52:88:
ff:1a:de:28:69:11:9b:7a:8c:00:08:67:c6:fc:a3:9b:2d:b9:
e8:32:79:2f:1c:0a:cd:95:12:d8:8f:01:48:96:3a:97:5f:a9:
f1:3b:46:b1:eb:3b:23:c5:63:28:32:c8:7a:37:d7:78:65:d5:
02:f4:ee:97:96:c2:39:47:50:e7:0c:8c:1f:a2:15:14:30:1a:
66:e5:9b:69:e7:ac:0d:9a:d3:25:cf:b2:4f:a2:ff:8b:3a:52:
81:d6:19:fa:b6:71:c5:42:b0:18:0f:30:58:f1:a3:0a:16:4d:
10:88:d7:26:93:41:fd:be:83:81:67:dc:71:54:86:92:4b:9d:
45:14:af:f2:da:d6:09:83:c5:43:fa:28:3d:25:b3:a5:3f:db:
7d:3d:a6:d3:54:cd:60:39:55:b8:d0:fe:2d:36:13:f0:77:71:
08:ab:0a:55:c1:0e:9b:20:f2:31:2a:59:1a:7f:2c:9f:78:02:
d7:24:89:09:5a:9a:e4:02:a9:a0:91:35:dd:7c:b0:88:b0:76:
01:5e:b3:10:e9:6b:d6:02:19:5c:29:89:ac:f3:0a:b6:25:38:
ea:dd:85:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:20 2024 by rpki-client on console-ams.rpki-client.org