Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/aa06b6-e766-4ad9-aa7a-a4bbb1bc98c6/1/cMjVD0HcLJL3pRNbv3WYN-sd-uE.roa
File: cMjVD0HcLJL3pRNbv3WYN-sd-uE.roa (raw, json)
Hash identifier: uGDWOPV+Btw07Xx0lBkki/RlKsxQa0FgGdgmxS5EEG8=
Subject key identifier: 70:C8:D5:0F:41:DC:2C:92:F7:A5:13:5B:BF:75:98:37:EB:1D:FA:E1
Certificate issuer: /CN=6ffe7b21b62183d5e3d4ae1b93ff00909282c912
Certificate serial: 018C164A63AB170281BE8C99F6A633D547BD
Authority key identifier: 6F:FE:7B:21:B6:21:83:D5:E3:D4:AE:1B:93:FF:00:90:92:82:C9:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b_57IbYhg9Xj1K4bk_8AkJKCyRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/aa06b6-e766-4ad9-aa7a-a4bbb1bc98c6/1/cMjVD0HcLJL3pRNbv3WYN-sd-uE.roa
Signing time: Tue 28 Nov 2023 14:17:03 +0000
ROA not before: Tue 28 Nov 2023 14:17:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197942
IP address blocks: 171.32.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:16:4a:63:ab:17:02:81:be:8c:99:f6:a6:33:d5:47:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ffe7b21b62183d5e3d4ae1b93ff00909282c912
Validity
Not Before: Nov 28 14:17:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70c8d50f41dc2c92f7a5135bbf759837eb1dfae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b6:bd:4d:e3:37:db:0f:9b:3a:05:cb:18:11:
09:c9:28:2b:cf:a2:fa:8d:15:3f:3f:18:84:9d:e5:
27:fa:65:7b:fc:0d:18:6a:84:e7:ed:e1:36:43:7e:
84:c1:8e:d8:cd:0b:34:42:78:9f:cf:04:bb:47:80:
cf:bc:e7:28:6a:53:25:ed:96:0c:d0:bf:10:fd:a3:
51:d7:53:f9:fa:3e:b2:44:4e:d6:0d:8d:77:62:41:
cc:8d:e4:42:7f:94:17:b5:b6:af:b4:92:83:52:32:
25:3f:80:97:7a:d0:fe:25:82:a1:d1:ec:26:0e:a1:
4b:f1:8a:b3:04:0f:db:d3:30:25:fa:7e:71:48:7b:
69:fa:1e:a4:3b:3e:14:23:a2:b9:7c:3e:57:fb:38:
59:dc:96:8c:56:52:67:87:1a:9a:18:b1:46:3c:03:
d9:1c:f1:40:75:6f:3d:a5:62:2a:e1:bf:36:cd:5c:
f3:2a:b2:20:b8:4e:c5:ac:9e:96:9a:63:92:90:c3:
59:d3:67:35:71:26:9d:3e:f5:20:21:9e:7f:84:53:
64:67:1b:cf:87:b2:57:a5:f0:83:a7:bb:b2:cd:54:
6f:22:30:6d:eb:c5:4b:df:6a:d2:88:51:34:a5:2a:
1c:e5:23:3e:c6:38:33:10:79:43:1e:16:89:0c:ae:
6f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C8:D5:0F:41:DC:2C:92:F7:A5:13:5B:BF:75:98:37:EB:1D:FA:E1
X509v3 Authority Key Identifier:
keyid:6F:FE:7B:21:B6:21:83:D5:E3:D4:AE:1B:93:FF:00:90:92:82:C9:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_57IbYhg9Xj1K4bk_8AkJKCyRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa06b6-e766-4ad9-aa7a-a4bbb1bc98c6/1/cMjVD0HcLJL3pRNbv3WYN-sd-uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa06b6-e766-4ad9-aa7a-a4bbb1bc98c6/1/b_57IbYhg9Xj1K4bk_8AkJKCyRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
75:e4:40:ac:ab:c9:06:58:f4:7e:94:38:a3:15:84:41:8f:eb:
e7:3e:93:0b:36:a4:96:66:cb:b7:60:bf:38:4a:a7:91:a0:06:
45:c1:2e:b4:63:dc:0d:14:95:29:68:12:3f:5b:8d:c5:9d:d0:
c0:ff:d5:77:9f:1e:f4:20:0b:38:2e:01:d4:cf:d0:03:d3:48:
b9:32:60:1e:cc:1e:42:24:7c:76:89:4d:3a:02:8a:30:1c:e8:
95:98:f6:bb:14:d3:23:2b:85:08:46:d8:8d:e4:b6:c9:f9:9d:
8f:90:58:75:18:9a:03:9b:0b:a1:27:e0:14:b4:70:dd:e1:bd:
65:41:14:23:3d:e5:fd:73:8c:cb:1f:6b:99:7b:f7:9e:02:5c:
58:21:6b:df:4f:b5:e8:a6:32:51:d1:30:63:e5:27:68:b8:fa:
dc:c1:6e:e5:69:46:1c:a7:b1:fa:bd:10:af:21:51:99:83:a5:
b3:4d:5d:a6:b7:38:89:af:e7:e5:2f:40:dd:ca:ba:00:dc:82:
d7:3e:fc:26:a0:b6:c9:1b:7c:b7:56:3d:46:00:59:02:7b:36:
29:35:db:da:28:af:8e:d3:18:94:fb:33:8f:14:99:51:13:19:
a8:f0:13:00:c4:31:64:e5:b2:5f:28:26:5f:c9:b4:bd:84:0d:
e2:0b:9a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:34 2024 by rpki-client on console-fra.rpki-client.org