Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/C8oikredRBJdXTg-HjQcRaoYLpE.roa
File: C8oikredRBJdXTg-HjQcRaoYLpE.roa (raw, json)
Hash identifier: 9eqEVfwp9LL1IVL/0t9DrMBn21h0w5PqOFH+1rUh3J4=
Subject key identifier: 0B:CA:22:92:B7:9D:44:12:5D:5D:38:3E:1E:34:1C:45:AA:18:2E:91
Certificate issuer: /CN=1734db5c41e711b73d8f29dac12e9b8364cd1fbd
Certificate serial: 01856DCAD9685DC2EBCE676509BB25932C5D
Authority key identifier: 17:34:DB:5C:41:E7:11:B7:3D:8F:29:DA:C1:2E:9B:83:64:CD:1F:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FzTbXEHnEbc9jynawS6bg2TNH70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/C8oikredRBJdXTg-HjQcRaoYLpE.roa
Signing time: Sun 01 Jan 2023 14:44:48 +0000
ROA not before: Sun 01 Jan 2023 14:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 140.77.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:d9:68:5d:c2:eb:ce:67:65:09:bb:25:93:2c:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1734db5c41e711b73d8f29dac12e9b8364cd1fbd
Validity
Not Before: Jan 1 14:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bca2292b79d44125d5d383e1e341c45aa182e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:dc:4e:2f:c1:e1:bb:a5:e2:57:61:18:ca:f2:
bb:17:6b:ce:b9:0a:21:8d:85:87:07:e8:96:6a:95:
0b:82:71:20:b2:36:10:f0:70:12:ed:92:09:eb:c4:
4e:32:ab:cf:fe:83:41:6a:db:42:8b:b6:a6:1c:85:
c1:e7:0e:4d:e4:28:df:4e:13:7b:af:41:a5:f5:b5:
5f:68:58:28:53:69:1b:50:2f:00:06:38:ae:28:ef:
32:85:de:0b:97:2f:68:4e:62:5e:e0:b6:e6:74:dd:
c3:1f:b6:5e:b3:c2:27:9a:3b:b3:f1:60:e0:52:e9:
f6:ca:bb:41:0b:60:92:e9:f0:50:d9:5c:f3:86:30:
41:97:05:86:90:63:5c:61:40:30:2a:18:f6:31:f7:
aa:69:ac:51:72:87:e5:75:85:d3:ee:11:57:22:15:
84:b4:0c:7d:30:61:7b:e9:6a:16:a4:76:44:bd:51:
5d:34:1b:af:79:92:17:0e:4c:51:02:18:65:4c:5c:
3e:c8:e4:18:ce:35:34:1c:44:62:e2:e9:8f:0f:2d:
12:7f:a6:50:31:21:56:57:b3:cb:f2:56:ad:d3:b7:
4f:c8:c0:b6:12:6d:04:fb:3f:bd:eb:ab:6b:96:dd:
c7:18:dd:a0:08:59:c2:c0:a1:a9:0d:96:b5:76:e8:
4d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:CA:22:92:B7:9D:44:12:5D:5D:38:3E:1E:34:1C:45:AA:18:2E:91
X509v3 Authority Key Identifier:
keyid:17:34:DB:5C:41:E7:11:B7:3D:8F:29:DA:C1:2E:9B:83:64:CD:1F:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FzTbXEHnEbc9jynawS6bg2TNH70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/C8oikredRBJdXTg-HjQcRaoYLpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/FzTbXEHnEbc9jynawS6bg2TNH70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.77.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:d9:d9:e1:8a:26:ab:34:d3:e5:b2:74:06:d0:81:d2:e9:93:
e1:69:86:c8:12:db:06:98:4e:ac:c0:c7:fb:42:52:df:1a:93:
f6:92:17:f3:03:30:a7:21:0c:81:88:ed:01:f5:11:d6:b0:32:
92:80:2b:b1:52:84:59:21:02:bf:90:18:65:47:a8:64:98:29:
74:7e:4d:21:95:8e:a4:db:9f:31:44:99:4e:0b:71:d5:7e:a9:
50:28:78:00:e4:a2:22:b1:ad:fc:70:ab:89:7f:19:c9:4f:b7:
de:9c:26:0d:bb:06:86:16:3c:b8:12:b5:a4:79:fa:db:d0:77:
13:75:e9:bc:52:bd:f3:26:76:77:25:0f:62:df:e9:8c:93:2b:
a6:98:ed:7a:00:7b:be:ca:c3:d1:27:2a:ef:bd:23:c1:47:e8:
56:49:34:02:31:11:79:77:41:84:b2:a6:63:29:9a:3e:75:4c:
87:94:9a:1a:22:e2:3c:d3:b5:08:cd:13:3b:5a:e7:f3:11:ed:
c5:6a:b0:2e:29:2c:2a:3d:60:91:4c:ac:df:10:50:37:06:d0:
76:23:4d:98:74:8e:0f:f5:19:72:87:41:5b:c7:02:13:80:c3:
35:c2:ad:6f:f8:3b:45:83:12:d3:31:9b:fc:59:0b:5f:e7:f1:
53:38:5f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:09 2024 by rpki-client on console-ams.rpki-client.org