Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/IourudUSmXeX0o1QB_nyEWGPBbw.roa
File: IourudUSmXeX0o1QB_nyEWGPBbw.roa (raw, json)
Hash identifier: dKxKRG3L+8inaiyIWFbL7xl+iOwP7SNYuy6lJrCL5EI=
Subject key identifier: 22:8B:AB:B9:D5:12:99:77:97:D2:8D:50:07:F9:F2:11:61:8F:05:BC
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018CC50116DE65CD8B387BD3051580847FC8
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/IourudUSmXeX0o1QB_nyEWGPBbw.roa
Signing time: Mon 01 Jan 2024 12:30:32 +0000
ROA not before: Mon 01 Jan 2024 12:30:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3320
IP address blocks: 2a0c:9e02::/32 maxlen: 40
2a0b:3c41:2::/48 maxlen: 48
2a0e:eb40::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 08 Feb 2024 15:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:16:de:65:cd:8b:38:7b:d3:05:15:80:84:7f:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 12:30:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=228babb9d512997797d28d5007f9f211618f05bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:24:9c:45:63:80:02:7d:4f:51:a0:2b:a0:c8:
32:bb:c3:78:cc:50:bb:97:4e:a8:c4:38:83:70:82:
06:37:12:9e:0b:41:5f:cc:73:ec:bc:79:5a:4a:a9:
c4:5c:a1:8b:57:27:d1:7e:ce:88:ae:62:1b:9e:b7:
3f:7c:94:d3:00:6b:b3:ea:46:95:27:25:4e:7c:44:
5d:4b:20:fb:cf:e1:65:e1:c6:e7:8d:f3:23:58:f6:
2d:64:ba:33:29:6f:16:70:74:2f:2b:5a:72:ab:4a:
7a:29:a3:d9:38:1e:aa:31:ca:9d:c8:0c:44:33:1d:
b2:78:00:bd:c1:77:08:5d:2e:60:04:f7:53:6f:55:
a3:50:d2:5d:2c:85:59:28:89:6e:e9:18:97:e8:44:
7d:95:33:49:22:21:e2:cd:7c:8c:4d:83:49:bc:81:
59:9c:50:cd:40:00:5a:f6:0c:e9:5d:2e:c8:44:b2:
9e:44:12:8a:12:bd:fb:a0:89:d6:38:be:c0:da:3f:
df:9e:a1:cc:aa:91:df:30:c1:b4:35:d1:19:1e:38:
e2:f2:5e:ca:b9:fe:82:3d:0b:f8:6e:e2:1d:99:04:
38:03:e1:e4:a0:f9:15:44:e2:ae:a9:f6:be:ac:81:
15:44:05:fd:50:f8:72:f1:ea:53:e5:3e:b0:ab:83:
24:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8B:AB:B9:D5:12:99:77:97:D2:8D:50:07:F9:F2:11:61:8F:05:BC
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/IourudUSmXeX0o1QB_nyEWGPBbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:3c41:2::/48
2a0c:9e02::/32
2a0e:eb40::/32
Signature Algorithm: sha256WithRSAEncryption
7e:36:6c:24:a2:aa:d3:f5:a2:dd:fd:7e:93:b9:6c:68:cf:ef:
21:d8:7c:52:c3:48:d6:20:c2:32:30:16:4f:3b:05:03:30:41:
20:4b:41:b8:b9:53:3e:31:8a:51:8e:75:ab:8f:90:94:fd:67:
84:31:c3:d5:84:1b:21:ca:b3:d7:a0:a2:90:71:fc:6d:94:e5:
cb:17:49:35:0c:68:90:a2:61:5f:8b:17:6d:38:21:cf:25:ea:
60:a8:30:a2:f8:d6:d8:a2:9d:f5:56:ce:57:47:75:77:fa:f6:
69:58:38:f5:ad:ce:c5:96:40:82:64:33:90:ff:4a:f4:24:ea:
84:73:f1:37:e1:a5:3f:d2:f1:2c:d5:81:e0:e5:ff:e2:81:e2:
82:52:2c:79:5e:28:9f:c9:6b:a5:80:85:ae:91:66:df:cc:ac:
90:4f:6c:39:c0:74:39:b8:7d:8c:6a:41:c3:a9:44:d4:59:c5:
3e:83:40:fb:04:37:c0:6c:7b:60:bd:f3:26:37:f3:d3:0c:90:
91:94:0f:8b:c9:14:50:39:b1:1f:f3:c5:64:0c:26:50:77:c1:
36:e5:8b:16:b9:49:62:37:75:0e:2c:76:2d:cd:84:95:df:e9:
fa:99:a5:34:85:08:88:05:10:d7:cf:59:1c:3b:3c:2b:ae:2d:
d2:2c:e2:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org