Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/49LxHa2NqOQeNPkJt6BkVVu4fWw.roa
File: 49LxHa2NqOQeNPkJt6BkVVu4fWw.roa (raw, json)
Hash identifier: Kw8BUR4/0SCL4YMkRQXvfr64G4VgcXRlNjGLhqX5Mhc=
Subject key identifier: E3:D2:F1:1D:AD:8D:A8:E4:1E:34:F9:09:B7:A0:64:55:5B:B8:7D:6C
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018972C03A6DD4ED23837BA6450420F5AE33
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/49LxHa2NqOQeNPkJt6BkVVu4fWw.roa
Signing time: Thu 20 Jul 2023 10:02:27 +0000
ROA not before: Thu 20 Jul 2023 10:02:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202580
IP address blocks: 141.98.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:c0:3a:6d:d4:ed:23:83:7b:a6:45:04:20:f5:ae:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jul 20 10:02:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3d2f11dad8da8e41e34f909b7a064555bb87d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:57:fd:2b:39:19:63:f6:d2:56:a6:73:e2:59:
27:06:c0:cb:50:b9:75:fe:ea:72:83:d7:4d:2f:44:
bf:69:66:c7:c1:67:a4:b1:e8:26:00:fd:56:4f:7e:
bf:ab:f0:d3:0d:ac:71:61:79:23:de:5f:f7:dd:4e:
80:21:34:86:37:0b:b2:6e:c0:43:0f:5c:22:ba:dc:
a0:33:64:27:4d:be:2b:2c:66:ba:bc:ee:21:95:ee:
3a:19:25:44:3e:7f:cf:6c:6b:fc:14:e2:ca:da:86:
58:24:3d:4b:f4:42:61:cd:c0:ed:bb:e2:ef:71:18:
7b:3a:7c:c8:fb:17:df:2d:de:f9:7d:0f:a0:18:6a:
92:11:e9:a8:38:be:b9:f0:e9:de:89:b5:3a:33:47:
59:29:c8:e6:4b:98:24:12:b9:9d:f3:00:82:a8:e5:
77:f7:10:79:e5:fe:0c:80:10:60:a0:8f:24:b5:dc:
7c:ea:5e:f2:0d:84:86:a8:15:06:80:f1:5f:e5:e0:
b3:29:c1:0a:ce:c5:2a:6c:ee:4f:5a:3e:ac:12:43:
e4:17:a5:0f:1f:03:e9:2d:3c:13:49:c1:f3:62:16:
e2:3b:c9:28:72:11:6b:b8:6e:29:bd:df:b2:17:13:
c4:ad:08:95:a6:fd:a1:83:9b:2c:17:17:40:cf:dc:
c5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D2:F1:1D:AD:8D:A8:E4:1E:34:F9:09:B7:A0:64:55:5B:B8:7D:6C
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/49LxHa2NqOQeNPkJt6BkVVu4fWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.232.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:ad:dc:af:4c:d2:5f:7f:86:d7:66:90:df:b9:a0:d0:bd:5b:
5e:01:f8:bd:b9:c7:97:b9:ca:b5:07:a2:6e:e8:2e:27:61:29:
32:ba:1e:e0:38:74:33:a5:e1:b7:fd:ee:bb:ce:f7:c1:4e:dc:
ab:85:e0:2a:33:86:64:00:58:b1:d8:59:60:14:e2:dc:72:bc:
a2:da:b8:aa:ac:da:6a:bf:aa:c5:32:20:a9:03:55:19:81:f9:
72:bd:bc:66:93:8c:3d:3e:a8:85:5c:cf:51:25:c1:f6:0b:55:
34:99:18:73:45:0d:55:cc:3e:60:d7:c8:99:09:dc:de:41:c9:
0a:74:54:27:e5:f7:9b:e8:82:a6:6d:6b:7c:69:24:7b:0f:85:
7a:53:ce:2e:83:a2:26:ab:1d:2e:3d:63:a3:02:20:93:e2:3c:
03:9b:59:94:43:76:f2:6a:b9:ee:06:0b:ad:15:4a:7f:05:60:
35:19:81:02:59:6e:67:fd:5e:50:c1:24:7a:66:36:e1:05:05:
ff:d2:bf:0f:f2:3f:10:71:88:e8:49:c8:ee:ee:f3:50:0c:1d:
57:57:e2:1c:b0:d7:c7:ab:ac:36:0b:cd:35:9b:93:41:b2:22:
17:ea:bd:12:ff:e1:18:b4:ab:04:a4:a7:7a:00:b9:ce:b8:40:
3a:90:e6:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 4 09:05:43 2023 by rpki-client on console-fra.rpki-client.org