Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/61158a-7246-4b47-b496-c40c0dbe1de0/1/8uM1vNtnISzNcWNn1MQx2HX_A5w.roa
File: 8uM1vNtnISzNcWNn1MQx2HX_A5w.roa (raw, json)
Hash identifier: ap1f5L+tvoVJfefO8UA5FElCpEYUib/trxiiKcMuMWw=
Subject key identifier: F2:E3:35:BC:DB:67:21:2C:CD:71:63:67:D4:C4:31:D8:75:FF:03:9C
Certificate issuer: /CN=bcec8c732aa43ef0b39bd34d140fdd3a73aedb79
Certificate serial: 0185719E63DE7E9A48CDDFFABAAEDB9139D4
Authority key identifier: BC:EC:8C:73:2A:A4:3E:F0:B3:9B:D3:4D:14:0F:DD:3A:73:AE:DB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vOyMcyqkPvCzm9NNFA_dOnOu23k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/61158a-7246-4b47-b496-c40c0dbe1de0/1/8uM1vNtnISzNcWNn1MQx2HX_A5w.roa
Signing time: Mon 02 Jan 2023 08:34:43 +0000
ROA not before: Mon 02 Jan 2023 08:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 141.57.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:63:de:7e:9a:48:cd:df:fa:ba:ae:db:91:39:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcec8c732aa43ef0b39bd34d140fdd3a73aedb79
Validity
Not Before: Jan 2 08:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2e335bcdb67212ccd716367d4c431d875ff039c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:dd:25:71:a6:75:59:aa:35:cf:68:07:ea:ab:
d4:8e:da:1e:6d:d7:23:95:9e:34:92:08:35:d4:ba:
dd:db:76:84:e1:87:5d:46:12:4c:ff:24:c6:49:fb:
1a:87:78:47:a1:60:19:16:07:7e:11:b3:7d:cc:10:
9c:b8:a7:a9:c3:e8:e0:87:92:0c:2f:c2:d6:18:7e:
24:f3:50:e1:1a:37:94:9f:77:e0:53:05:e0:30:83:
42:f8:c5:1f:4e:b9:ef:15:3c:56:3d:32:c1:a8:c9:
f6:4d:e5:6d:ea:15:4b:89:3a:73:9d:8c:69:5b:ec:
28:71:f4:6a:be:4e:d7:65:ea:12:00:33:9b:e3:e6:
55:3c:5f:fb:2b:25:70:7e:29:f7:ac:03:46:a9:de:
04:87:75:de:6e:4a:d0:4a:c3:53:9b:aa:dd:f3:82:
c6:7c:d6:c0:61:11:3a:35:3a:b8:e5:3e:47:66:87:
db:dc:d1:02:8a:14:e0:4e:da:2f:d6:47:0c:69:a6:
3c:ad:c3:a7:6a:05:d0:a1:b0:78:e3:86:7a:0f:0d:
e4:9a:f9:34:64:4b:88:e2:13:9f:da:9c:8c:ea:68:
e8:f8:32:be:9d:58:07:49:69:b7:e2:62:1a:db:09:
42:6c:92:80:5d:0b:82:b0:01:7a:d0:3d:9b:67:58:
c0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E3:35:BC:DB:67:21:2C:CD:71:63:67:D4:C4:31:D8:75:FF:03:9C
X509v3 Authority Key Identifier:
keyid:BC:EC:8C:73:2A:A4:3E:F0:B3:9B:D3:4D:14:0F:DD:3A:73:AE:DB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vOyMcyqkPvCzm9NNFA_dOnOu23k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/61158a-7246-4b47-b496-c40c0dbe1de0/1/8uM1vNtnISzNcWNn1MQx2HX_A5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/61158a-7246-4b47-b496-c40c0dbe1de0/1/vOyMcyqkPvCzm9NNFA_dOnOu23k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.57.0.0/16
Signature Algorithm: sha256WithRSAEncryption
24:10:80:4f:f2:57:56:d4:20:ba:81:b4:98:41:7a:54:da:f5:
c0:ea:33:72:87:cc:0f:86:f5:74:0b:ab:21:d9:73:64:18:2b:
bb:7d:29:92:c7:9f:cd:88:f1:6b:4f:75:80:49:44:70:46:3c:
79:39:46:7a:5e:2a:d5:7f:f2:92:d3:9e:dc:fa:ca:62:86:7d:
90:23:a5:fa:b2:6c:5e:44:52:bc:92:31:46:58:3b:ee:4a:2f:
eb:d9:c6:93:b9:71:02:c1:00:51:6a:78:d5:d7:98:7b:27:d2:
f1:33:02:8e:7f:ca:16:04:0d:38:ab:06:ec:a4:a5:f0:86:a0:
a6:70:f5:a9:95:ce:c7:59:ba:60:72:e2:f7:b1:ee:9a:e8:f2:
8e:d6:da:53:70:89:ef:54:88:73:67:2a:1f:2a:51:0e:05:06:
a5:cd:c8:10:95:86:2e:6c:b5:55:da:68:f3:10:d5:e0:42:66:
34:de:49:b6:8e:cd:57:8e:52:8b:e4:ed:43:01:b7:bd:79:48:
b5:b2:4a:14:e8:63:f8:1b:2d:55:bb:2d:5b:e2:64:63:71:cf:
04:25:b9:a5:75:e2:74:bd:9a:72:44:e8:e1:12:83:6f:5a:b7:
9e:cf:6f:43:c9:9d:66:e3:a3:6f:83:55:d5:e2:d5:04:cd:cc:
82:22:20:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:56 2024 by rpki-client on console-fra.rpki-client.org