Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/2U3abq2Qdxdc7Nqhd-7RVBB8tPI.roa
File: 2U3abq2Qdxdc7Nqhd-7RVBB8tPI.roa (raw, json)
Hash identifier: UazXOnEhrVNFPheE0+SoinhN/21ZKCkGMPdKKCasF5c=
Subject key identifier: D9:4D:DA:6E:AD:90:77:17:5C:EC:DA:A1:77:EE:D1:54:10:7C:B4:F2
Certificate issuer: /CN=1d2cdcb9c76f5e0ce0c385d7e0ef15572d15a54c
Certificate serial: 018750F82CEA2A30ED53DE68B45DEE4C1934
Authority key identifier: 1D:2C:DC:B9:C7:6F:5E:0C:E0:C3:85:D7:E0:EF:15:57:2D:15:A5:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSzcucdvXgzgw4XX4O8VVy0VpUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/2U3abq2Qdxdc7Nqhd-7RVBB8tPI.roa
Signing time: Wed 05 Apr 2023 10:30:54 +0000
ROA not before: Wed 05 Apr 2023 10:30:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 378
IP address blocks: 132.66.0.0/15 maxlen: 15
132.66.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:f8:2c:ea:2a:30:ed:53:de:68:b4:5d:ee:4c:19:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d2cdcb9c76f5e0ce0c385d7e0ef15572d15a54c
Validity
Not Before: Apr 5 10:30:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d94dda6ead9077175cecdaa177eed154107cb4f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a5:4d:a0:08:6b:4f:26:57:dc:5e:38:4a:e6:
c9:1d:fa:da:59:06:b1:e9:e5:3f:e3:34:bb:73:e6:
d4:6b:a6:e3:f0:21:0f:35:7a:b2:96:e9:0c:63:d4:
25:72:c0:4e:02:1e:c2:e0:a1:16:05:f3:2c:ca:4e:
5e:f0:77:50:41:ba:65:0a:0f:88:78:28:c5:a9:d6:
cd:b8:c0:ed:40:0a:7c:6d:10:e7:e0:de:87:0d:f3:
e2:2a:27:25:92:aa:01:62:e8:e4:ca:f1:01:a4:71:
68:b4:0b:70:6e:4b:e1:c8:4a:cf:37:00:81:46:21:
39:31:a3:90:6c:46:d2:47:b5:1d:0a:de:91:e1:67:
af:02:44:b5:47:04:43:17:e1:af:b3:6e:64:21:41:
ee:5c:29:4e:88:cd:96:11:4b:af:6f:b9:dd:de:90:
95:01:a5:ea:8d:55:67:bd:dd:1f:20:1a:f2:4e:bf:
0d:0f:3b:b0:91:dd:a8:24:02:db:c6:e5:0f:2f:3f:
cd:3e:a9:fa:0d:50:1e:a2:9c:fa:de:39:b7:25:24:
8c:04:78:fa:60:c9:d7:34:71:d3:b1:81:3f:67:c4:
cc:69:8a:56:e7:7b:3a:04:57:29:40:51:98:4c:8f:
de:ee:2a:8a:f5:12:24:76:ec:6b:30:e0:d2:18:9a:
36:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4D:DA:6E:AD:90:77:17:5C:EC:DA:A1:77:EE:D1:54:10:7C:B4:F2
X509v3 Authority Key Identifier:
keyid:1D:2C:DC:B9:C7:6F:5E:0C:E0:C3:85:D7:E0:EF:15:57:2D:15:A5:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSzcucdvXgzgw4XX4O8VVy0VpUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/2U3abq2Qdxdc7Nqhd-7RVBB8tPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/HSzcucdvXgzgw4XX4O8VVy0VpUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.66.0.0/15
Signature Algorithm: sha256WithRSAEncryption
a7:e2:5c:e0:9a:ee:c3:24:59:70:50:5f:cc:28:33:c8:bc:79:
bb:81:0a:f2:02:08:94:db:66:b1:cd:ff:0a:85:ca:e5:e7:84:
bf:da:2a:61:7f:a6:3d:e7:04:d8:0a:a8:54:62:ed:bd:58:a9:
fc:de:23:95:40:fd:4c:fa:5d:55:b6:e8:e4:37:63:05:12:52:
16:e4:be:22:62:93:71:8d:8d:de:e0:91:aa:a8:55:92:d8:71:
a0:77:94:20:c7:21:98:d4:cf:c1:43:fe:f6:c1:d2:77:3e:55:
b1:4a:de:05:cd:2e:ed:8c:09:57:e7:a1:49:3d:66:35:38:24:
4c:2e:92:b6:3a:9f:04:e2:56:bd:be:61:87:d0:88:03:04:ca:
2f:3a:87:16:ab:37:dd:79:ac:16:b1:c1:5d:ec:f3:85:58:01:
10:a6:fe:1d:88:97:89:8c:d2:80:14:a1:4b:f2:a2:cb:06:e3:
90:fc:10:54:c3:3f:4b:2c:29:74:52:8c:1b:c0:99:69:c1:fa:
69:a6:50:f4:44:f1:1c:a6:dd:bc:83:4b:30:56:32:42:e2:8c:
f2:f6:7b:4f:43:e0:e7:6d:ad:59:3f:8d:f5:a9:dc:5b:7b:b4:
fd:7e:72:14:d9:28:13:dc:50:8b:bd:08:54:a2:9b:d8:8e:8c:
95:21:36:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:49 2023 by rpki-client on console-fra.rpki-client.org