Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/sUv6lFTrI7XYzpXMMWmI2DxKjsg.roa
File: sUv6lFTrI7XYzpXMMWmI2DxKjsg.roa (raw, json)
Hash identifier: MSn9rwuLsehVa79Fcpw11z1oDCoLLuwn3TH/AnEekms=
Subject key identifier: B1:4B:FA:94:54:EB:23:B5:D8:CE:95:CC:31:69:88:D8:3C:4A:8E:C8
Certificate issuer: /CN=a0606b8aad553f0948c7a894d68671870eb82cb0
Certificate serial: 01856D0A9527438AE1289905A3B868C76778
Authority key identifier: A0:60:6B:8A:AD:55:3F:09:48:C7:A8:94:D6:86:71:87:0E:B8:2C:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oGBriq1VPwlIx6iU1oZxhw64LLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/sUv6lFTrI7XYzpXMMWmI2DxKjsg.roa
Signing time: Sun 01 Jan 2023 11:14:48 +0000
ROA not before: Sun 01 Jan 2023 11:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2471
IP address blocks: 147.99.88.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:95:27:43:8a:e1:28:99:05:a3:b8:68:c7:67:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0606b8aad553f0948c7a894d68671870eb82cb0
Validity
Not Before: Jan 1 11:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b14bfa9454eb23b5d8ce95cc316988d83c4a8ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:54:b9:bd:83:72:1e:df:c5:9f:c9:e3:d8:83:
91:c4:38:c7:fe:fb:6d:db:31:21:c9:1a:67:cb:ad:
89:4a:7d:b5:2a:cc:32:9c:7a:9d:06:aa:35:02:c6:
f1:5c:81:be:1c:36:73:e5:bd:bb:fb:c1:ef:05:67:
72:30:a6:a6:a1:f6:f6:5b:af:96:cd:d5:d4:b8:97:
26:a9:8c:e6:98:9f:d0:1d:cf:7d:79:7a:58:1e:8b:
1f:cd:36:a2:4f:f3:03:7a:28:d7:e1:95:0b:ed:65:
ea:c3:d9:fb:02:47:94:3b:ae:a1:e4:a5:c6:fa:2c:
90:59:1a:b4:c4:04:5a:72:43:73:fa:03:7c:b1:9c:
35:cf:07:b6:d6:7b:87:8c:58:88:1f:a3:b5:f6:b2:
3f:81:87:45:1a:dd:ad:4a:f1:87:fe:d8:18:83:93:
48:52:08:77:d4:27:29:e8:91:70:a5:b6:96:d8:b8:
6f:c9:9e:af:95:a9:f7:11:89:26:f5:cd:71:78:07:
55:22:fc:f5:62:0b:13:ad:99:26:79:e4:27:a8:cf:
3c:f3:31:f7:a1:13:77:6d:10:31:58:55:d0:15:14:
18:cf:13:a4:13:98:b0:aa:1b:d9:4d:0b:89:b7:cc:
16:3f:a9:bb:f4:06:b2:8d:3f:c8:46:03:a4:a4:cf:
7d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4B:FA:94:54:EB:23:B5:D8:CE:95:CC:31:69:88:D8:3C:4A:8E:C8
X509v3 Authority Key Identifier:
keyid:A0:60:6B:8A:AD:55:3F:09:48:C7:A8:94:D6:86:71:87:0E:B8:2C:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oGBriq1VPwlIx6iU1oZxhw64LLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/sUv6lFTrI7XYzpXMMWmI2DxKjsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/oGBriq1VPwlIx6iU1oZxhw64LLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.99.88.0/21
Signature Algorithm: sha256WithRSAEncryption
42:1c:52:de:af:6f:d8:b0:65:2d:3e:a0:5d:c8:88:f8:68:dc:
7a:3d:c8:3c:23:55:9a:f2:a2:7c:d1:ae:a9:a6:74:de:d6:84:
f5:c8:20:4e:6a:8e:8a:12:42:e2:ad:99:b6:5e:65:c9:58:ad:
67:70:6b:99:8e:b3:f7:63:0d:71:ac:f1:16:0b:02:5f:52:25:
53:6f:a5:95:04:15:cc:7d:5a:5d:7e:63:81:d9:4f:ac:b2:23:
71:5e:32:9c:e8:96:42:28:dd:38:c3:fb:5e:77:fc:bb:f7:cd:
c0:ea:29:e3:5d:d1:12:44:0d:d8:3b:ee:05:98:98:a6:1f:11:
d2:7c:13:13:4c:39:aa:4a:20:4a:8b:b9:3a:f8:08:ce:2b:b9:
ec:e8:47:0e:d6:ba:5c:bb:bc:d3:85:6d:67:c8:31:04:8b:4f:
2c:ec:bf:04:85:7d:b9:9b:3e:62:e5:86:f1:ca:88:a6:e1:2a:
23:44:72:6f:4e:07:e2:84:2a:6f:b7:27:29:9d:8e:06:e0:be:
8f:7d:77:3f:74:bc:0a:ed:27:dc:7a:28:86:65:df:c0:e3:c9:
34:df:e6:0d:a3:e5:d8:a6:c7:fe:68:d7:df:8a:23:cd:5d:12:
a0:b9:df:e7:86:00:73:33:6e:16:29:2e:98:10:5b:da:54:09:
ee:67:8b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:27 2024 by rpki-client on console-ams.rpki-client.org