Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/paCv6cNxkaSHhVDbJccsK_r5Gko.roa
File: paCv6cNxkaSHhVDbJccsK_r5Gko.roa (raw, json)
Hash identifier: SSUGnKDn5sYUpo0HsGLMlvF7PY+7fStZYDQ2kngDfAM=
Subject key identifier: A5:A0:AF:E9:C3:71:91:A4:87:85:50:DB:25:C7:2C:2B:FA:F9:1A:4A
Certificate issuer: /CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Certificate serial: 01856DCACAFEC3CF7CECDDFEA31A03DF9E39
Authority key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/paCv6cNxkaSHhVDbJccsK_r5Gko.roa
Signing time: Sun 01 Jan 2023 14:44:44 +0000
ROA not before: Sun 01 Jan 2023 14:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35540
IP address blocks: 151.127.0.0/16 maxlen: 16
109.190.0.0/16 maxlen: 16
2001:41d0:fc00::/38 maxlen: 38
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:ca:fe:c3:cf:7c:ec:dd:fe:a3:1a:03:df:9e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Validity
Not Before: Jan 1 14:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5a0afe9c37191a4878550db25c72c2bfaf91a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:95:24:23:88:0e:3b:b8:8c:7d:10:13:b5:01:
52:cb:9b:3a:a4:5f:87:11:ed:f4:92:f6:c6:bd:f0:
8b:0d:b4:c2:d4:9f:82:6e:12:b6:46:0d:0b:76:be:
fc:15:9e:38:30:26:54:54:f8:8b:71:aa:b6:71:b1:
f7:ab:e3:38:e6:f5:eb:8d:09:93:21:f9:62:5b:e9:
7b:00:6e:e2:5e:c4:31:3c:33:c0:7f:80:e1:6b:fe:
55:21:97:cd:ef:53:e1:98:c1:78:4f:54:1a:87:52:
3f:5b:a6:b9:b6:82:6b:3b:00:11:e1:1a:c0:66:1d:
03:62:f7:df:e5:7c:72:22:6b:eb:ad:b1:25:4c:f9:
6b:6b:15:1b:31:9a:18:0f:e9:93:8a:fd:ad:eb:a0:
eb:6c:c3:cb:77:44:02:eb:ad:3a:23:0e:68:13:8f:
88:04:7c:3f:62:a5:f0:04:2d:a9:43:4e:da:c7:d2:
85:60:c8:dc:0c:0e:a9:3a:23:f2:45:9f:8d:7c:ab:
20:70:73:23:c6:6e:b8:a0:ce:c4:8f:4b:92:34:be:
58:59:90:2e:e1:3a:2c:cb:d2:16:5b:1f:f5:53:d4:
c1:a7:09:38:61:ca:31:de:db:f9:ec:4d:31:c5:14:
94:6c:93:50:5b:69:91:ee:39:5e:ea:b8:77:34:af:
c6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A0:AF:E9:C3:71:91:A4:87:85:50:DB:25:C7:2C:2B:FA:F9:1A:4A
X509v3 Authority Key Identifier:
keyid:80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/paCv6cNxkaSHhVDbJccsK_r5Gko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.190.0.0/16
151.127.0.0/16
IPv6:
2001:41d0:fc00::/38
Signature Algorithm: sha256WithRSAEncryption
2d:83:b4:f1:01:72:18:58:23:af:fe:15:67:3c:eb:f6:b6:2d:
68:70:cb:49:af:dd:64:9e:98:85:5c:43:b5:b7:23:22:48:05:
fd:38:ac:c0:f4:ae:fc:37:94:4f:64:7d:62:60:96:bc:97:26:
ef:1c:55:62:84:5b:3f:41:f0:b3:5d:43:05:67:30:35:6c:07:
cb:b8:03:37:3f:11:46:48:24:52:95:bf:a5:db:ca:e4:ef:d0:
fc:aa:b9:54:6a:27:e9:ab:ae:fd:39:0d:16:48:34:4d:7d:e9:
e8:0b:a5:5c:58:d7:67:0b:c7:35:70:a4:54:17:56:28:70:19:
00:06:86:93:02:2a:4f:ee:80:69:bc:e7:f1:93:71:e8:17:ce:
a0:4d:29:a0:18:d3:37:7a:f0:54:a6:20:25:13:ad:02:4c:b4:
9d:82:53:6b:4e:e7:02:c8:3d:82:95:a3:d7:a0:a9:11:80:cb:
15:bf:62:63:e6:16:25:f6:60:73:e9:43:9c:15:74:43:6c:27:
fc:9e:e8:1b:6f:68:53:08:51:25:75:05:67:99:42:81:b9:a3:
f0:2c:04:0a:73:09:34:37:16:4e:fb:39:24:9c:ea:1e:ee:1f:
fb:f1:46:00:bc:8a:e3:f5:b8:c9:9b:6e:28:69:4d:4b:c1:38:
2d:7c:8e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:23 2024 by rpki-client on console-fra.rpki-client.org