Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/8bf78d-c3b5-4691-8108-f0cad9ff65be/1/N1Fj-VfHyZ7LhFdLZ1E7ZHtLYnY.roa
File: N1Fj-VfHyZ7LhFdLZ1E7ZHtLYnY.roa (raw, json)
Hash identifier: rkJQou4n18425dZXMu1ET1dqgxhss6+nc2xb5wYvcf8=
Subject key identifier: 37:51:63:F9:57:C7:C9:9E:CB:84:57:4B:67:51:3B:64:7B:4B:62:76
Certificate issuer: /CN=534633f19f61d6546ebabf7de9fb7aa987ed5bf3
Certificate serial: 01856FF973D93C675CDA2AFF1240A2C1C478
Authority key identifier: 53:46:33:F1:9F:61:D6:54:6E:BA:BF:7D:E9:FB:7A:A9:87:ED:5B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0Yz8Z9h1lRuur996ft6qYftW_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/8bf78d-c3b5-4691-8108-f0cad9ff65be/1/N1Fj-VfHyZ7LhFdLZ1E7ZHtLYnY.roa
Signing time: Mon 02 Jan 2023 00:54:57 +0000
ROA not before: Mon 02 Jan 2023 00:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1103
IP address blocks: 141.252.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:73:d9:3c:67:5c:da:2a:ff:12:40:a2:c1:c4:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=534633f19f61d6546ebabf7de9fb7aa987ed5bf3
Validity
Not Before: Jan 2 00:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=375163f957c7c99ecb84574b67513b647b4b6276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2a:94:91:5b:99:3f:96:45:d1:4c:fd:c4:e2:
be:0c:a8:82:c6:ba:16:1a:dd:31:93:85:87:15:95:
72:65:83:7a:4e:2f:22:44:f8:82:20:45:b3:10:da:
d8:63:00:9a:1b:b1:a4:be:86:f6:2f:04:ac:69:12:
a5:1c:56:de:06:31:17:4d:20:7b:79:f0:5a:45:2d:
60:45:d8:8e:bf:2a:dd:97:b1:a7:17:65:a7:56:e1:
80:c2:e2:89:c9:60:38:3d:c0:33:8d:3c:ea:c7:e1:
f2:70:1e:c0:86:4f:47:cf:99:d2:8f:d6:73:16:97:
70:50:cd:11:15:14:71:47:ac:69:9d:d0:d2:4e:80:
77:99:ec:1d:25:38:88:49:b9:5e:8d:f2:68:f3:16:
1e:f6:0b:f4:df:35:31:96:12:43:b3:fe:a2:92:3f:
cb:1f:8f:b2:63:f6:4e:a5:78:9f:10:1a:7b:d8:14:
90:84:ec:6a:d5:66:32:3f:21:d5:6d:75:d2:ba:f7:
69:cf:9d:83:8b:a3:d3:a4:df:6c:9a:10:1d:72:e4:
5d:72:bf:8e:7a:96:2e:74:f3:77:85:7c:32:a6:f8:
00:14:a5:e4:bf:64:fa:91:a8:6e:d4:0f:26:ad:7f:
49:0d:bb:9e:b5:58:92:61:4d:a6:44:65:aa:67:08:
95:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:51:63:F9:57:C7:C9:9E:CB:84:57:4B:67:51:3B:64:7B:4B:62:76
X509v3 Authority Key Identifier:
keyid:53:46:33:F1:9F:61:D6:54:6E:BA:BF:7D:E9:FB:7A:A9:87:ED:5B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0Yz8Z9h1lRuur996ft6qYftW_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/8bf78d-c3b5-4691-8108-f0cad9ff65be/1/N1Fj-VfHyZ7LhFdLZ1E7ZHtLYnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/8bf78d-c3b5-4691-8108-f0cad9ff65be/1/U0Yz8Z9h1lRuur996ft6qYftW_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.252.0.0/16
Signature Algorithm: sha256WithRSAEncryption
42:01:58:3b:99:73:e1:6d:18:5a:b4:08:32:8a:1c:08:5b:a3:
76:9f:43:97:37:5b:ac:61:e6:d6:19:59:24:ec:a6:1b:8d:32:
70:6a:57:70:75:ac:11:21:1d:19:76:42:a3:9e:c1:22:7b:cc:
c8:08:65:9f:59:bd:98:fc:0f:ce:68:6d:6f:1c:a2:ea:5d:99:
cf:25:14:a9:d6:47:e5:4f:00:9f:f0:2f:21:f6:77:4a:a2:1e:
f0:6a:9b:d0:21:a2:04:d7:cb:21:38:f2:af:61:4b:20:96:1b:
d7:f4:f8:95:ea:af:72:3d:f2:0e:28:6d:07:ee:5c:54:e8:69:
90:dc:04:e2:7e:65:bc:fa:af:8d:e1:88:22:05:f1:22:c7:45:
14:35:c5:e6:f2:e1:2a:0f:a5:2f:6e:cc:a0:ee:f3:72:d2:5c:
12:a5:a1:06:a8:04:7b:41:b1:39:b7:dc:71:0d:09:c9:30:a2:
ef:cd:94:4c:78:4c:55:29:e5:74:8e:e3:39:df:3f:9c:39:c3:
76:e6:ad:f8:18:c2:ff:18:4e:5b:cf:82:2f:d0:40:5b:06:21:
b4:54:6b:41:55:9e:48:01:15:88:00:cd:d4:cf:a0:12:5c:56:
e0:b2:93:d1:9c:be:39:55:22:36:02:2b:88:62:b2:14:6d:cb:
1b:a8:16:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org