Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/szK91_LMlg1NKUfB9PkizwsoQfk.roa
File: szK91_LMlg1NKUfB9PkizwsoQfk.roa (raw, json)
Hash identifier: mM1iXkLPbii/56zfFKntu81yAjkH4EK+f2MxFWUVjGI=
Subject key identifier: B3:32:BD:D7:F2:CC:96:0D:4D:29:47:C1:F4:F9:22:CF:0B:28:41:F9
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 01857082C226EBA34AC61DF5C8C5D460AA83
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/szK91_LMlg1NKUfB9PkizwsoQfk.roa
Signing time: Mon 02 Jan 2023 03:24:55 +0000
ROA not before: Mon 02 Jan 2023 03:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 08:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c2:26:eb:a3:4a:c6:1d:f5:c8:c5:d4:60:aa:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Jan 2 03:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b332bdd7f2cc960d4d2947c1f4f922cf0b2841f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:32:73:54:cc:91:39:c3:4a:09:aa:ba:4e:81:
23:cc:f9:38:4c:b9:a5:d9:54:0e:9a:09:7a:8a:95:
2f:c4:e3:72:15:d8:bb:63:0b:51:5c:35:42:a6:b4:
ac:c9:ad:f5:4b:aa:69:03:64:d4:e7:a9:75:96:fd:
00:d3:a2:bb:ea:0e:eb:df:43:55:69:39:fa:45:34:
78:fe:a1:6d:41:bd:fc:05:0a:b6:f1:f5:55:01:02:
e7:d3:d2:2b:74:2f:cd:07:56:e4:ae:b7:8b:af:82:
92:a6:37:8a:8b:85:74:15:b3:db:f3:c2:c7:7e:5d:
26:59:63:f1:70:bd:79:f6:63:af:38:4f:78:f3:2a:
cc:c3:c4:9d:bd:1b:31:d5:a5:af:33:02:57:fc:98:
d1:ed:f6:8e:70:f9:3b:c7:84:72:0a:76:63:8a:d6:
91:54:91:65:fc:48:65:9b:76:3c:62:5a:f3:05:9d:
ae:bd:60:d9:ca:87:ee:c1:24:55:d7:29:3b:f9:3f:
b2:e2:30:67:0e:28:b6:95:a4:20:d6:99:37:05:47:
ac:df:1c:a6:ba:bd:ba:09:7f:b2:a1:f0:d0:27:88:
c6:6e:ea:7b:4d:46:b3:61:00:02:5c:5e:86:1c:c4:
cb:c8:ea:32:ea:f0:de:81:06:e4:e6:06:9c:c0:06:
5b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:32:BD:D7:F2:CC:96:0D:4D:29:47:C1:F4:F9:22:CF:0B:28:41:F9
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/szK91_LMlg1NKUfB9PkizwsoQfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.85.0/24
Signature Algorithm: sha256WithRSAEncryption
99:55:09:4e:68:03:c0:7a:56:33:b1:63:59:74:2d:99:21:e2:
60:b4:72:7f:f0:51:4b:79:c0:b0:21:2b:16:0e:60:86:50:13:
59:08:42:e1:64:3c:e2:4d:24:ed:93:48:fb:0c:f1:86:ac:77:
3b:80:84:3d:01:3e:d4:9b:e0:11:35:73:f2:59:c2:f3:f2:e5:
3c:93:28:53:f2:b0:2e:c7:c5:4d:f9:b0:71:7b:83:12:58:32:
57:21:78:91:fa:48:75:16:26:51:28:d1:e7:7d:e9:44:cc:2e:
b1:5e:98:99:d3:fd:c6:03:b6:d3:28:7c:1f:b9:26:16:89:1c:
b4:bf:42:ca:2d:e4:5a:29:3a:a1:b1:4b:d9:74:97:f9:a9:8c:
fe:80:53:43:f7:b2:ee:e1:1b:a2:4c:ab:6f:54:b7:40:28:22:
dd:f3:0f:3f:69:59:7c:de:6b:ee:f1:25:0f:bc:d9:df:0b:92:
0e:7f:d7:4b:b9:82:9b:fa:06:37:e3:71:aa:c7:4e:4e:16:1f:
00:a7:16:b7:48:01:38:0d:b4:01:d5:a8:28:cb:ed:81:35:7f:
ae:0b:66:60:7b:b9:e1:2f:f9:22:24:c3:ad:7d:a8:92:5f:2f:
81:ab:14:9b:7c:3c:c0:25:e3:dd:4f:6f:46:90:f8:e2:7a:76:
a6:96:e7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:03 2024 by rpki-client on console-ams.rpki-client.org