Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/sx-2Sv5DqCF2qu6vmhl7UHg5YBw.roa
File: sx-2Sv5DqCF2qu6vmhl7UHg5YBw.roa (raw, json)
Hash identifier: xMisp7xHqyAS/UMXG2SrT/An/FidGi499b79aZtBC6g=
Subject key identifier: B3:1F:B6:4A:FE:43:A8:21:76:AA:EE:AF:9A:19:7B:50:78:39:60:1C
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F02475C810F700EF094CB2C9FDF9BA7
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/sx-2Sv5DqCF2qu6vmhl7UHg5YBw.roa
Signing time: Sun 01 Jan 2023 20:24:58 +0000
ROA not before: Sun 01 Jan 2023 20:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56925
IP address blocks: 159.148.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:47:5c:81:0f:70:0e:f0:94:cb:2c:9f:df:9b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b31fb64afe43a82176aaeeaf9a197b507839601c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:bd:f5:9d:e9:72:74:91:f0:80:49:a8:2d:af:
0f:de:35:2b:b8:d2:80:c2:8a:48:80:b8:f7:a2:6a:
a5:9c:39:61:1b:cd:06:3a:53:ac:93:48:8f:36:16:
64:0c:4e:2d:ac:70:25:f1:9f:6b:dd:8e:8a:7c:e7:
f8:a5:7a:ae:cd:91:d9:99:b8:6d:90:f4:e1:0c:fe:
cb:11:10:4b:c1:d3:a5:01:6e:63:34:8d:66:0a:f0:
83:fd:fa:e9:8b:46:e8:b1:3d:85:06:38:6e:9d:d2:
f1:9b:f4:af:db:21:2e:06:d2:c5:4c:67:0e:8b:97:
f9:a8:2e:29:b3:0a:c5:ac:d2:ae:f6:1e:fc:35:69:
7d:7d:19:2a:96:b9:94:ce:b6:6e:44:15:3c:c4:7d:
bc:31:53:79:44:6c:19:c8:9e:6c:b9:fe:c0:8e:ad:
b6:62:93:36:5f:cf:2d:3f:1e:97:4d:64:39:49:49:
51:24:28:7b:5d:e6:d5:be:bf:bb:81:b9:1d:9e:49:
a3:03:54:d4:24:12:45:9c:f1:8f:e0:53:dc:d3:4b:
84:22:99:a4:b3:c0:11:54:fd:98:2a:10:ed:5c:86:
b0:cf:9d:ef:9c:28:6e:2c:19:1c:51:8b:86:59:fb:
a3:0c:aa:ce:8a:d0:f9:23:39:92:d4:26:27:51:72:
3c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1F:B6:4A:FE:43:A8:21:76:AA:EE:AF:9A:19:7B:50:78:39:60:1C
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/sx-2Sv5DqCF2qu6vmhl7UHg5YBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.249.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:14:8d:45:5a:85:62:9f:cd:8e:26:59:a9:09:dc:c8:33:a9:
0e:a3:69:fb:f7:ca:70:2c:db:3c:a4:67:9f:62:7d:c2:08:a1:
e8:65:c5:5b:9f:a4:37:96:c6:6a:2e:b3:0a:b6:2c:3e:a3:95:
64:71:03:54:c6:b1:e2:26:f3:fd:57:fb:95:44:17:5d:b6:bd:
3a:68:db:15:d4:de:6a:e9:a9:cb:d9:f4:a5:3d:a9:88:f5:98:
26:29:8d:74:3a:b4:c5:2c:39:3d:c2:7a:f1:af:88:e1:99:66:
b5:63:26:8a:b3:8d:25:01:62:bb:95:13:b2:dd:c7:84:d7:6e:
42:4d:b3:e0:e9:c7:29:a1:b6:a7:a7:95:4d:6c:54:a9:3a:bc:
71:dd:b9:bc:0f:2f:58:42:b9:30:3a:99:18:44:e4:5f:d0:21:
28:56:4e:fa:09:3d:d4:b3:7f:c2:8d:8f:8b:9c:b7:79:14:32:
05:6e:0e:dd:8a:6b:e5:37:c2:21:3a:0e:5c:f6:35:d5:00:62:
61:8d:c5:36:e5:09:b6:89:c8:ea:76:48:9f:2a:95:d3:d8:6e:
53:9c:ed:64:33:a2:07:81:c7:d1:83:cd:1e:ec:dd:69:52:2e:
41:76:f5:ba:eb:fe:02:95:40:27:03:fa:8b:29:d0:27:3a:7d:
ff:dc:37:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-ams.rpki-client.org