Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/AMIo2YyJ19ZpZqtRooOcIYc5ZYA.roa
File: AMIo2YyJ19ZpZqtRooOcIYc5ZYA.roa (raw, json)
Hash identifier: B4Fha29v21ASs9Ds4+NKA24zNKprioUBAAl/2oAXRgE=
Subject key identifier: 00:C2:28:D9:8C:89:D7:D6:69:66:AB:51:A2:83:9C:21:87:39:65:80
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F023FD7DDBB70D20178459A143A784A
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/AMIo2YyJ19ZpZqtRooOcIYc5ZYA.roa
Signing time: Sun 01 Jan 2023 20:24:56 +0000
ROA not before: Sun 01 Jan 2023 20:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35685
IP address blocks: 159.148.131.0/24 maxlen: 24
159.148.82.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:3f:d7:dd:bb:70:d2:01:78:45:9a:14:3a:78:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00c228d98c89d7d66966ab51a2839c2187396580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3a:b3:51:7f:a0:1c:5d:6b:ff:48:cf:cd:dc:
67:39:3f:16:c6:46:5b:a1:5c:1c:2e:e5:75:e2:1f:
32:26:66:50:39:bf:91:1c:60:64:d7:97:51:97:58:
f4:0f:d9:00:be:59:34:3b:27:c0:29:91:29:4b:72:
29:c4:c8:7a:1d:ef:5d:c3:5a:54:3b:24:a6:f8:57:
1a:bd:b6:aa:47:41:c6:80:a3:3b:81:15:85:fe:0f:
06:53:97:c5:eb:c4:09:3d:e6:25:a6:ab:de:c4:22:
8b:23:84:67:f2:94:68:8a:03:a4:6d:43:d7:64:10:
91:cf:1b:66:90:d5:7a:eb:b8:df:b2:da:80:30:38:
10:26:00:a4:b3:52:bd:04:3c:ce:42:58:32:26:13:
ee:e4:ab:e0:18:8b:8d:dd:0c:80:bf:a2:d1:71:20:
b1:80:de:4e:91:6f:22:52:13:34:95:1f:10:b7:83:
45:5f:b9:f2:e9:bb:82:87:2f:18:13:c0:98:8e:71:
1c:8f:3c:12:70:d7:9d:47:80:9f:b3:06:0f:7d:c9:
58:19:6f:d5:bd:b0:38:ce:73:7e:d0:41:79:89:51:
e2:15:89:a0:e7:a7:60:0f:24:d0:96:70:5f:c6:50:
72:0d:c8:55:19:6f:9c:05:68:5a:a1:09:2e:d2:f8:
1f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C2:28:D9:8C:89:D7:D6:69:66:AB:51:A2:83:9C:21:87:39:65:80
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/AMIo2YyJ19ZpZqtRooOcIYc5ZYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.82.0/24
159.148.131.0/24
Signature Algorithm: sha256WithRSAEncryption
82:06:d2:d1:6b:54:9f:9f:7a:e6:42:1c:b6:34:d8:48:9e:1b:
7a:4f:39:36:f6:5f:08:8d:2e:c0:49:cf:92:e6:74:ed:35:95:
b7:6a:7c:2f:8f:b8:d8:36:1c:db:9c:d8:3e:04:af:51:32:ef:
73:49:90:50:ed:ca:34:05:3e:df:6e:8b:f6:89:97:55:f8:da:
87:bd:3a:b1:be:bb:73:94:4c:3b:a6:9a:8a:cc:8a:5a:3f:ab:
a1:bd:d2:2e:b2:ef:3b:c4:ad:7f:88:2d:2a:2e:3f:62:7f:e3:
a1:3a:71:41:1c:51:85:47:cc:11:ca:63:68:de:e5:de:4a:bd:
5b:9e:81:1e:4f:e3:68:b8:ec:03:26:ed:45:bb:73:9a:e1:6c:
66:e7:30:22:b4:78:7e:5c:24:0e:d2:fa:86:c2:61:83:53:95:
f3:35:34:3c:92:c3:dc:2a:e7:04:25:80:33:5b:cb:21:fc:96:
96:e1:76:0e:7e:de:c7:0b:78:c7:09:7e:cd:95:8e:c6:0a:e6:
01:9a:48:88:e5:f5:31:ca:91:0d:ab:39:ce:30:c4:7a:41:47:
08:1d:45:7e:a2:11:8c:fa:72:86:7a:cd:52:53:a6:7c:60:8e:
bd:fd:5d:8c:03:af:8d:a9:49:c0:80:59:31:b6:9e:13:f7:43:
f8:46:87:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:48 2024 by rpki-client on console-ams.rpki-client.org