Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/6iinpocumgJ8FZ29rw04WKCywWI.roa
File: 6iinpocumgJ8FZ29rw04WKCywWI.roa (raw, json)
Hash identifier: nfafVd8EAucL56LOG/0A8sUCds6gIKenadsGorMG1BE=
Subject key identifier: EA:28:A7:A6:87:2E:9A:02:7C:15:9D:BD:AF:0D:38:58:A0:B2:C1:62
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F0246019A482245B58CA2C6C9A8E443
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/6iinpocumgJ8FZ29rw04WKCywWI.roa
Signing time: Sun 01 Jan 2023 20:24:58 +0000
ROA not before: Sun 01 Jan 2023 20:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56323
IP address blocks: 159.148.141.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:46:01:9a:48:22:45:b5:8c:a2:c6:c9:a8:e4:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea28a7a6872e9a027c159dbdaf0d3858a0b2c162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:95:04:39:2b:76:96:47:80:e9:0e:6e:a9:58:
0b:5b:26:60:8b:3c:7d:f2:a8:ba:28:b8:c8:a8:53:
2e:77:dc:e0:15:2b:c7:83:26:61:2a:ef:ee:db:f2:
4e:e1:a3:61:d4:ae:ab:0d:ab:7d:2c:31:af:4a:9c:
f6:6c:ec:97:a3:ab:e4:0b:f1:c9:07:98:f3:5c:0d:
e4:27:35:4d:d7:c7:e9:38:d9:19:16:b0:61:0f:17:
15:a4:c2:66:d6:f9:a9:e2:1f:1f:8a:84:31:e0:76:
63:7b:78:ac:2b:4b:4f:c9:28:4d:d8:d5:0d:ec:9d:
e4:9b:84:02:a3:bf:5f:01:54:07:d6:a2:77:d3:f9:
4c:08:a1:9b:11:3f:ac:61:f9:8d:c1:5f:52:2e:70:
91:4b:06:74:84:40:16:68:b3:22:72:77:3e:c0:d9:
a8:89:b3:52:28:57:1d:cb:1b:d6:ce:d7:a9:02:50:
95:df:c4:6d:52:78:58:b8:65:8b:2b:e3:e3:a9:fe:
26:2a:1b:9f:e4:fb:f5:8b:49:1b:4d:72:6a:bc:1b:
1d:ee:1e:a6:83:b1:05:a6:d0:7e:c3:ae:5a:38:f4:
c3:5c:a1:9b:85:af:da:8d:31:08:a6:e1:45:2c:56:
33:e9:15:a2:93:eb:b4:2e:95:53:e2:6e:c0:f1:5d:
b1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:28:A7:A6:87:2E:9A:02:7C:15:9D:BD:AF:0D:38:58:A0:B2:C1:62
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/6iinpocumgJ8FZ29rw04WKCywWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.141.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:d8:2e:9e:25:3b:e9:1e:9c:fd:04:ae:56:7a:7b:49:e6:37:
ec:d5:81:26:22:a8:44:0c:9a:a7:be:22:4d:f1:c2:1c:6a:25:
6e:9d:18:f9:fd:16:40:c2:d4:7e:07:f3:87:a3:cc:1f:f9:ab:
68:7f:ab:76:eb:76:f4:90:65:b7:a6:58:51:78:59:ec:2e:10:
d8:94:e6:68:75:55:8d:0c:22:0f:85:09:21:3f:8f:bf:d6:6d:
04:0e:40:32:7e:ef:91:83:df:78:4e:e8:7c:c4:41:88:7d:e8:
23:1a:24:e5:37:8f:62:f9:0b:56:1a:e3:ba:5d:7c:6e:cb:db:
5b:2b:fe:b7:94:aa:b1:c1:e7:61:67:01:88:ac:a0:bf:71:bd:
ae:82:ed:a5:31:0e:96:c0:db:15:f4:0f:fc:1e:41:2f:16:52:
2d:3c:d4:0c:2b:af:52:b3:fb:4f:97:74:ae:0c:c3:d8:bb:2f:
30:78:d9:5b:aa:20:df:6d:17:e4:ca:9e:4d:42:aa:b4:87:7f:
96:2f:54:51:1b:3a:56:9d:7f:c9:ed:9b:ae:61:ca:04:e1:79:
f3:30:42:82:01:0b:8c:26:ed:d7:75:d1:89:e9:70:51:74:ab:
c3:8b:2f:2c:1b:2b:d6:e3:e8:da:1d:97:99:bd:a1:0c:e9:cd:
e7:e7:94:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:48 2024 by rpki-client on console-ams.rpki-client.org