Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/53ImaxXADe9jMxNOhDLbra_Zd5w.roa
File: 53ImaxXADe9jMxNOhDLbra_Zd5w.roa (raw, json)
Hash identifier: bKvr9ccCdx2ghwRwB2e7r5fh4X2BCK8pIwE78n3NUaQ=
Subject key identifier: E7:72:26:6B:15:C0:0D:EF:63:33:13:4E:84:32:DB:AD:AF:D9:77:9C
Certificate issuer: /CN=73fc89023eac74ab298563f99ddb71f6f15f9538
Certificate serial: 01856FA6E871C7C92B01772DC1807C1E77F4
Authority key identifier: 73:FC:89:02:3E:AC:74:AB:29:85:63:F9:9D:DB:71:F6:F1:5F:95:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_yJAj6sdKsphWP5ndtx9vFflTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/53ImaxXADe9jMxNOhDLbra_Zd5w.roa
Signing time: Sun 01 Jan 2023 23:24:47 +0000
ROA not before: Sun 01 Jan 2023 23:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201987
IP address blocks: 159.255.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:e8:71:c7:c9:2b:01:77:2d:c1:80:7c:1e:77:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73fc89023eac74ab298563f99ddb71f6f15f9538
Validity
Not Before: Jan 1 23:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e772266b15c00def6333134e8432dbadafd9779c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4d:88:25:3d:cb:10:39:e5:e2:08:82:a7:ae:
7f:9c:99:b0:ef:e7:89:44:57:07:62:ea:1c:8e:71:
75:2c:8b:63:b7:dd:2b:e8:d8:ef:68:79:d9:dd:bd:
a8:c4:5d:9c:96:03:b1:d8:49:cc:9e:fb:2f:fd:78:
fc:c1:d1:c9:13:2a:59:d0:88:3b:13:53:91:f5:10:
ea:e9:4c:f3:88:03:a8:cd:63:27:d0:57:01:f7:f7:
ac:be:46:61:95:61:63:62:0c:48:67:15:1d:cf:1f:
50:0a:98:9c:63:62:e5:06:90:3d:4c:ff:b4:f6:a8:
ad:01:a5:40:2d:3a:2d:7d:a7:12:47:f5:2f:75:0f:
e7:df:29:e3:36:96:ba:25:60:14:df:90:f6:5e:82:
c0:f4:59:70:6f:8a:8e:be:56:2a:70:66:e3:60:4e:
87:de:f5:6b:31:55:02:f6:15:8d:de:2d:8c:04:63:
d1:d2:54:15:af:6d:99:04:f9:54:7d:47:15:94:46:
d6:0e:63:66:ef:72:16:90:71:65:1b:34:06:ab:b6:
8c:ea:13:97:83:b2:72:db:0c:6e:fc:19:5f:44:25:
f4:57:74:f2:54:8e:53:8e:25:77:e6:10:6d:c1:98:
3e:b5:76:d9:3a:c2:6b:e0:87:5d:62:12:68:0a:2a:
a3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:72:26:6B:15:C0:0D:EF:63:33:13:4E:84:32:DB:AD:AF:D9:77:9C
X509v3 Authority Key Identifier:
keyid:73:FC:89:02:3E:AC:74:AB:29:85:63:F9:9D:DB:71:F6:F1:5F:95:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_yJAj6sdKsphWP5ndtx9vFflTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/53ImaxXADe9jMxNOhDLbra_Zd5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/c_yJAj6sdKsphWP5ndtx9vFflTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.255.148.0/24
Signature Algorithm: sha256WithRSAEncryption
13:ca:b4:38:62:33:91:68:e7:86:30:0e:29:8e:5f:dd:f1:00:
c8:2e:97:88:30:d4:53:7c:90:ac:5f:da:52:9c:18:b8:39:d8:
33:41:74:4c:47:f1:68:87:11:be:af:38:35:61:51:99:9a:a4:
3d:61:33:4b:b7:e9:83:e8:aa:69:27:b4:b6:30:14:66:ca:93:
90:08:ac:70:7f:ba:5e:41:c5:a2:16:f9:23:fc:cc:9a:ac:4d:
b8:dd:f9:97:0c:6c:93:b5:70:ac:64:72:ac:ca:30:4e:c8:2f:
1d:03:37:ec:59:46:0c:7a:82:3c:1b:57:af:9a:fd:bc:7b:de:
af:26:47:4e:44:77:12:08:8d:1e:ef:f1:18:6b:06:99:fe:3b:
f3:22:b3:ae:ef:37:af:13:f9:22:22:21:d8:49:d1:b6:cf:fa:
9a:50:03:a5:ac:6e:78:90:e4:11:9a:ee:b3:57:44:9a:53:27:
25:1f:dd:db:ec:60:b3:e4:9c:4d:af:92:3b:06:6b:45:ef:78:
5c:48:7a:aa:db:dc:31:08:a3:5a:e7:9a:45:58:cd:3e:af:ce:
79:42:7e:ce:07:05:a9:2e:35:f5:5d:c8:11:20:a8:e0:d0:87:
18:77:87:20:bf:30:8d:0c:4f:67:88:28:21:31:99:aa:02:fc:
6d:36:b2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:45 2024 by rpki-client on console-fra.rpki-client.org