Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/RD_TOgCYULsOwZx1k4J_bZTiwAw.roa
File: RD_TOgCYULsOwZx1k4J_bZTiwAw.roa (raw, json)
Hash identifier: n40v2WF37fqlUCxHP9yyKuvAuZZGm+SSWtuLZVo22AE=
Subject key identifier: 44:3F:D3:3A:00:98:50:BB:0E:C1:9C:75:93:82:7F:6D:94:E2:C0:0C
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 019130EE3BBCD8D9EE09C02AA07F185EBFE5
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/RD_TOgCYULsOwZx1k4J_bZTiwAw.roa
Signing time: Thu 08 Aug 2024 07:40:04 +0000
ROA not before: Thu 08 Aug 2024 07:40:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60912
IP address blocks: 139.28.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 17:19:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:30:ee:3b:bc:d8:d9:ee:09:c0:2a:a0:7f:18:5e:bf:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Aug 8 07:40:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=443fd33a009850bb0ec19c7593827f6d94e2c00c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:84:d5:20:82:15:02:8b:2b:8b:54:2d:0a:42:
b9:a8:13:31:9c:b8:b9:82:71:e6:6c:8f:78:e6:f1:
c1:96:44:fd:d6:09:b5:2b:17:ca:70:38:ea:08:7a:
9c:43:29:cf:9f:2b:e6:cf:f3:e7:81:c1:bb:83:6e:
90:3f:17:3c:24:e9:26:1d:56:4d:d6:20:c4:b2:7f:
74:02:4c:3c:57:4d:b1:b7:a4:4e:98:bb:3b:db:47:
df:3e:1d:6e:cf:68:f3:61:f5:ab:57:d6:ed:a8:ab:
4b:04:0c:12:c9:c8:ee:a1:36:75:f8:bc:cd:34:d9:
b5:39:d1:d2:79:2a:f5:8b:26:7e:14:ad:c7:28:6a:
fd:20:bf:62:bb:84:d3:9e:65:36:30:cc:a2:1c:08:
bc:9b:bf:90:6a:37:bc:85:d9:76:9c:eb:7d:fd:a6:
6c:b0:ca:9a:f7:a7:b1:3e:e8:7b:e4:99:8f:5a:89:
06:6e:55:d6:09:90:0f:7a:0b:42:c2:6d:99:59:11:
f4:a7:1c:93:34:a5:10:b7:b7:9f:93:0c:38:c9:01:
ec:b6:b5:76:2a:52:f3:1f:bb:74:99:83:93:d8:73:
b7:5a:71:9d:dd:cd:90:55:3b:60:60:87:ef:1d:aa:
0b:b4:2a:64:51:95:11:af:c9:36:38:5d:3d:76:04:
7a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:3F:D3:3A:00:98:50:BB:0E:C1:9C:75:93:82:7F:6D:94:E2:C0:0C
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/RD_TOgCYULsOwZx1k4J_bZTiwAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.72.0/22
Signature Algorithm: sha256WithRSAEncryption
42:b5:0d:f7:ec:02:df:70:60:30:c6:50:8e:01:43:ff:6d:2e:
eb:4d:cc:09:28:02:bc:46:6c:a8:e4:a1:b3:c0:ff:dc:fb:99:
c0:7a:5f:8b:ec:8d:f7:9f:05:54:a2:ff:c5:a0:de:a4:1e:68:
be:87:8c:ff:dc:fb:5a:23:b4:29:d1:36:11:32:0c:8e:5d:16:
d9:82:0f:d9:af:39:68:d9:92:61:4d:f9:7f:68:15:e6:fa:c5:
29:c0:62:ed:74:4f:0a:c3:09:03:69:48:92:04:d0:15:9d:7a:
64:af:10:c9:f8:fa:4c:94:9a:00:22:98:45:4b:87:f0:cb:ff:
5e:ae:b7:d5:80:12:db:18:42:d3:46:46:78:ab:77:84:58:17:
a1:f2:06:64:c7:0b:58:95:b7:88:85:76:4d:52:bf:5d:b7:6e:
eb:a1:4e:29:f2:14:9b:fa:9c:83:90:a6:1e:03:e2:ac:8c:23:
d3:32:b7:6e:39:62:fa:f8:87:13:72:be:b1:77:92:c7:45:48:
0d:ba:3c:37:91:02:7a:14:5c:74:56:64:bc:56:55:5a:83:b4:
7b:4e:75:a1:d9:38:5f:b0:be:40:78:a7:5b:24:e0:36:79:67:
31:75:f1:93:a9:4e:e0:19:72:4b:45:86:ee:29:73:03:f5:78:
81:3e:f5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 19:01:25 2024 by rpki-client on console-fra.rpki-client.org