Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/Hs7MyscxqSJzLApOyJz1-AJPn-U.roa
File: Hs7MyscxqSJzLApOyJz1-AJPn-U.roa (raw, json)
Hash identifier: nE9mfhh3Em253HAG5PZnLatdK0hPb0FBkjLP+njCxBU=
Subject key identifier: 1E:CE:CC:CA:C7:31:A9:22:73:2C:0A:4E:C8:9C:F5:F8:02:4F:9F:E5
Certificate issuer: /CN=1d2cdcb9c76f5e0ce0c385d7e0ef15572d15a54c
Certificate serial: 0187F69DBDF58CAF8645A5A2BA9B3F05A709
Authority key identifier: 1D:2C:DC:B9:C7:6F:5E:0C:E0:C3:85:D7:E0:EF:15:57:2D:15:A5:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSzcucdvXgzgw4XX4O8VVy0VpUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/Hs7MyscxqSJzLApOyJz1-AJPn-U.roa
Signing time: Sun 07 May 2023 14:29:05 +0000
ROA not before: Sun 07 May 2023 14:29:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 132.66.0.0/16 maxlen: 16
132.67.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f6:9d:bd:f5:8c:af:86:45:a5:a2:ba:9b:3f:05:a7:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d2cdcb9c76f5e0ce0c385d7e0ef15572d15a54c
Validity
Not Before: May 7 14:29:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ececccac731a922732c0a4ec89cf5f8024f9fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:55:71:10:7a:33:f1:81:5d:d4:b5:df:b8:18:
26:cc:79:47:42:9e:2d:8e:29:1c:99:85:7e:39:27:
08:96:0e:64:28:12:88:10:00:dc:4e:76:f4:74:0a:
3e:ae:fd:26:93:25:fa:a7:15:70:27:0f:ad:51:12:
69:9c:0a:bd:71:f9:08:31:35:c1:8a:c2:dd:30:4c:
83:b7:6e:dd:79:00:30:ff:48:14:87:05:4a:89:94:
1b:76:64:43:6c:7b:19:ce:49:f3:95:93:2f:51:11:
ca:0b:85:52:8b:d7:d4:f5:0f:bb:b0:91:46:8e:19:
d7:f5:14:bd:09:64:54:f8:50:6d:44:06:ed:2f:79:
95:99:9a:2d:ef:f3:d4:69:86:39:c2:02:d1:1d:9b:
cb:46:27:a1:56:b1:47:f6:ac:24:56:b0:3b:a2:10:
63:0b:c2:a0:74:c4:e3:bd:7a:85:90:f0:c5:e6:e0:
ed:58:29:cf:8f:f1:53:49:29:c7:b5:32:d9:57:49:
dc:44:39:5d:2d:04:f1:2b:9a:8e:94:4d:28:5c:f5:
53:64:d0:f1:cf:e0:c0:57:c7:fb:b7:d3:de:79:9b:
80:43:72:07:c2:5a:73:17:c3:4a:80:70:bf:32:b8:
85:ae:10:02:9d:b3:a4:4f:4d:41:16:e4:41:2b:47:
52:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:CE:CC:CA:C7:31:A9:22:73:2C:0A:4E:C8:9C:F5:F8:02:4F:9F:E5
X509v3 Authority Key Identifier:
keyid:1D:2C:DC:B9:C7:6F:5E:0C:E0:C3:85:D7:E0:EF:15:57:2D:15:A5:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSzcucdvXgzgw4XX4O8VVy0VpUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/Hs7MyscxqSJzLApOyJz1-AJPn-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/HSzcucdvXgzgw4XX4O8VVy0VpUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.66.0.0/15
Signature Algorithm: sha256WithRSAEncryption
56:57:f7:40:76:03:8a:b7:9e:e3:50:3f:d0:48:40:63:d3:7e:
d6:e3:a9:9c:95:f1:0e:18:f3:5b:5b:50:8a:9f:0c:36:f8:df:
df:65:73:7b:23:41:c3:62:8e:bf:ff:30:91:2e:ed:91:08:9e:
10:77:3b:b3:62:9d:a6:70:ab:64:53:12:4e:49:c5:1c:96:7e:
b7:9d:e8:6d:1a:37:65:51:40:98:79:4d:47:ca:94:c5:7f:cd:
50:b5:20:d4:eb:f2:92:f3:64:77:e9:cc:13:68:88:47:1f:f1:
25:c4:34:69:e1:b1:54:33:50:ec:30:9f:16:ba:33:34:90:1e:
d0:9c:f5:70:61:ff:d6:67:95:45:a3:8e:fb:37:66:75:aa:a1:
5f:16:7c:a7:b5:fa:7f:c0:ed:08:d6:3e:77:8b:85:a8:72:db:
fe:7a:f6:f4:99:c8:03:36:b6:08:e3:82:50:1b:e8:d9:08:62:
0d:d1:0b:9c:ca:a6:92:fb:c8:8b:1e:aa:0f:2d:2c:f8:48:84:
36:a3:2e:b4:f2:26:c2:ca:72:4a:8c:e0:47:89:56:d2:dd:13:
e8:a3:33:55:b1:aa:e6:69:52:0c:35:06:23:87:7b:8b:1a:e7:
bb:a1:4a:13:f1:a8:7f:5d:f9:8a:8a:6f:fb:63:c6:39:42:ea:
84:47:43:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:29 2024 by rpki-client on console-ams.rpki-client.org