Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/OGIhFZzGTGsGnDMv5Zq6ahIMrpo.roa
File: OGIhFZzGTGsGnDMv5Zq6ahIMrpo.roa (raw, json)
Hash identifier: BR9/kxiYvSP8E+UGukunkB2KF/ui80ql7SRaISXnBqo=
Subject key identifier: 38:62:21:15:9C:C6:4C:6B:06:9C:33:2F:E5:9A:BA:6A:12:0C:AE:9A
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 018571F0D270F252AD559552BA81B67444CB
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/OGIhFZzGTGsGnDMv5Zq6ahIMrpo.roa
Signing time: Mon 02 Jan 2023 10:04:46 +0000
ROA not before: Mon 02 Jan 2023 10:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 553
IP address blocks: 141.19.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f0:d2:70:f2:52:ad:55:95:52:ba:81:b6:74:44:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Jan 2 10:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=386221159cc64c6b069c332fe59aba6a120cae9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:94:bf:bb:22:6f:3e:41:fd:9c:be:93:cc:4e:
7c:f8:b5:71:f3:bd:7c:75:1c:da:b5:39:9d:e3:6f:
02:24:21:cb:c6:bd:a0:8c:97:b4:ec:c0:34:e2:71:
c2:ff:0e:65:b9:a2:bf:c9:6f:b8:64:c1:b3:7d:6e:
da:0c:a4:60:fd:39:d1:4e:11:8a:17:1a:7d:e5:06:
f0:a8:d2:2c:1e:3e:88:32:4a:ff:78:48:ca:b2:e2:
d6:c2:e0:40:7b:bd:59:af:2b:52:56:b4:50:19:c1:
38:8d:f1:7b:5f:fe:e5:8b:a7:b0:0e:a1:00:31:7a:
df:db:55:ec:43:74:a6:7c:3c:1c:f2:fb:42:e3:5b:
c6:4e:0a:be:37:68:58:b5:3e:02:2f:58:f3:8f:a6:
78:3c:56:c1:ef:d3:30:1f:20:c1:e0:36:8e:87:09:
89:99:8d:b0:47:dc:86:b2:6c:76:66:87:fd:0c:d9:
b1:7d:67:e3:6a:7a:c1:e6:90:27:4d:74:52:3d:6a:
12:82:75:94:6b:be:5a:a0:9a:ba:b8:3c:0f:db:78:
9f:8d:50:56:0f:61:2b:58:dd:47:ff:49:0f:b7:d2:
54:6c:17:26:7b:83:9b:79:85:bd:1e:1a:e2:5c:bb:
1e:06:27:93:99:61:48:b1:b3:77:49:ad:20:c0:ee:
d3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:62:21:15:9C:C6:4C:6B:06:9C:33:2F:E5:9A:BA:6A:12:0C:AE:9A
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/OGIhFZzGTGsGnDMv5Zq6ahIMrpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.19.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7e:a4:c5:35:57:5a:73:e7:e5:11:7e:67:1c:72:f7:8a:75:52:
d5:f0:98:cc:46:d3:d7:38:d0:b5:df:d8:1f:e2:57:29:07:f5:
c6:e9:d2:42:52:c7:92:ec:b9:08:d4:83:75:ea:4e:83:c7:ae:
99:62:44:9c:5b:81:95:ca:4d:7b:5c:fd:6c:6d:43:a4:25:e7:
50:8f:f5:6a:38:f2:f1:38:b3:c6:4c:2e:6b:65:4a:5d:08:24:
d2:99:70:93:07:59:0f:f6:c5:a8:e5:21:05:69:bc:24:76:e0:
5e:5e:73:04:77:0e:61:11:29:fb:fa:b1:47:35:ff:57:92:7a:
43:c4:ab:4c:a9:d4:ec:34:55:8c:bf:fc:2d:01:0d:ce:43:f1:
5e:e4:aa:44:5a:f5:de:ba:7d:22:39:fc:2d:b6:73:c6:9a:6f:
7b:7a:dd:5c:18:a5:a2:ec:31:fe:83:34:9e:7d:99:7a:30:eb:
f6:27:9b:35:d6:41:a6:6f:9a:31:f9:d9:96:01:60:a2:74:12:
6d:6d:2c:f3:9f:38:d7:0c:27:0f:ac:21:69:b3:56:09:10:e8:
6d:cd:b3:d7:fd:f4:ac:b6:d4:d0:88:04:f2:4b:1c:81:3f:76:
8a:12:bb:99:84:5b:de:07:cf:e8:af:d0:cc:2f:7e:c3:8d:cc:
a1:16:ff:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:55 2024 by rpki-client on console-ams.rpki-client.org