Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/dCwFR5SiZufWYIOPXO4R-fb-dmU.roa
File: dCwFR5SiZufWYIOPXO4R-fb-dmU.roa (raw, json)
Hash identifier: 4PjjXDGQip1eCHLDpPDyMnyLx4qeMlYsWtSQlD6NpCY=
Subject key identifier: 74:2C:05:47:94:A2:66:E7:D6:60:83:8F:5C:EE:11:F9:F6:FE:76:65
Certificate issuer: /CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Certificate serial: 01856F5495E3A87FD670D5818BA67EE39FD7
Authority key identifier: B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/dCwFR5SiZufWYIOPXO4R-fb-dmU.roa
Signing time: Sun 01 Jan 2023 21:54:52 +0000
ROA not before: Sun 01 Jan 2023 21:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 144.2.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:95:e3:a8:7f:d6:70:d5:81:8b:a6:7e:e3:9f:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Validity
Not Before: Jan 1 21:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=742c054794a266e7d660838f5cee11f9f6fe7665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2a:01:47:19:e5:3f:1e:9f:ec:09:83:f3:a9:
78:1f:00:79:b5:0d:35:21:a9:6c:4b:f2:aa:65:a4:
3a:22:cf:37:aa:09:bd:84:73:06:d4:5f:8c:16:f8:
74:83:04:39:be:f8:46:db:15:36:1a:fd:75:ce:2e:
7b:5d:49:10:cf:2f:8f:6a:00:7d:aa:31:a7:74:f4:
92:3d:6e:6b:40:1d:60:e6:f0:ae:93:b1:c4:b6:5d:
08:84:61:4e:e7:82:0f:e9:49:95:b5:21:2b:31:c6:
35:a9:11:61:02:72:ff:4a:23:0c:2a:84:3b:77:13:
fc:b6:fa:20:f2:10:8a:99:8b:39:66:bd:70:96:fe:
26:af:40:0a:56:95:8d:c1:df:ac:6e:f0:22:85:3b:
2b:ac:97:19:9d:94:2f:43:27:28:05:5e:81:83:a4:
94:d5:c9:66:a5:78:40:95:24:96:4c:a4:7c:74:78:
3b:6c:fa:a0:1e:06:f5:03:7f:99:26:91:ff:b6:36:
2f:0e:65:dc:78:cc:93:2e:ec:1c:8d:e2:5a:91:f4:
f9:97:49:4f:a6:d7:22:09:9e:42:cd:17:d5:27:01:
a9:b9:37:4e:4a:ed:fb:ac:9b:cb:b6:fd:dd:27:87:
19:c7:a5:a9:62:3f:79:06:e9:30:c2:f0:9d:b1:8e:
29:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2C:05:47:94:A2:66:E7:D6:60:83:8F:5C:EE:11:F9:F6:FE:76:65
X509v3 Authority Key Identifier:
keyid:B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/dCwFR5SiZufWYIOPXO4R-fb-dmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.154.0/24
Signature Algorithm: sha256WithRSAEncryption
47:83:09:fc:ec:fa:8b:59:76:be:a6:7f:77:25:95:70:7b:3c:
94:a5:1e:df:e1:79:00:f2:89:23:50:56:95:c7:01:10:23:2b:
50:42:93:92:39:6c:cd:24:86:25:5c:3f:7d:57:60:17:c0:5f:
4c:ef:2b:9b:88:70:bd:45:c9:e6:16:49:89:15:15:e5:d3:87:
c2:e7:6f:2f:c3:47:c7:40:db:b4:8f:12:3c:14:23:ba:27:72:
2e:e4:7f:0a:a0:d2:26:ff:77:93:2f:c9:72:11:06:0c:fb:7a:
fa:ac:b4:56:4a:6b:fd:ae:af:5a:1f:c9:2e:a4:66:f0:92:42:
1f:1a:38:7a:a0:e8:f6:c0:b8:fc:32:16:e0:c6:b8:53:87:bf:
9c:c8:58:98:7b:9b:c3:36:dc:19:26:d7:c3:22:51:0e:f1:6d:
bb:c2:de:db:ec:d6:67:c9:be:3e:69:7a:ab:6d:fb:54:db:5c:
04:be:f3:e4:72:40:88:5c:68:aa:32:48:b1:37:31:f3:2f:7f:
19:cb:dd:f1:f2:7e:8e:a9:38:d2:72:51:98:90:bf:53:57:de:
14:24:e6:fe:46:10:fd:29:a0:38:ba:71:38:6c:67:c0:b3:c3:
87:94:59:e7:c6:f6:ee:34:98:b4:69:59:39:75:18:f9:c0:d1:
32:e8:f4:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:01 2024 by rpki-client on console-ams.rpki-client.org