Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0831bf-118c-4ece-934d-75295251b1e8/1/6wKmmLIA5BLxY8iJwtSPO_otxpk.roa
File: 6wKmmLIA5BLxY8iJwtSPO_otxpk.roa (raw, json)
Hash identifier: azC96oxme2ZfAxQXS5KERHLVPLoSxQf12n5NAhEOIC8=
Subject key identifier: EB:02:A6:98:B2:00:E4:12:F1:63:C8:89:C2:D4:8F:3B:FA:2D:C6:99
Certificate issuer: /CN=7dc8911682bc5ca71cece1efe3ac135bfdb59dd6
Certificate serial: 01856E666DD40168ECF4A05EAD617E9EA95A
Authority key identifier: 7D:C8:91:16:82:BC:5C:A7:1C:EC:E1:EF:E3:AC:13:5B:FD:B5:9D:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fciRFoK8XKcc7OHv46wTW_21ndY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0831bf-118c-4ece-934d-75295251b1e8/1/6wKmmLIA5BLxY8iJwtSPO_otxpk.roa
Signing time: Sun 01 Jan 2023 17:34:44 +0000
ROA not before: Sun 01 Jan 2023 17:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53786
IP address blocks: 146.255.120.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:6d:d4:01:68:ec:f4:a0:5e:ad:61:7e:9e:a9:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc8911682bc5ca71cece1efe3ac135bfdb59dd6
Validity
Not Before: Jan 1 17:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb02a698b200e412f163c889c2d48f3bfa2dc699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:99:86:6b:8e:91:57:9c:09:25:90:05:38:ff:
d7:22:72:8e:b8:02:90:f8:9f:1c:55:da:52:64:33:
bf:34:95:67:3c:83:b0:63:9a:6f:4a:fc:dc:dc:ad:
46:a4:0d:eb:cf:80:87:58:ca:1b:8a:f0:8e:7c:de:
4f:ac:33:79:48:7f:a8:32:cb:4b:bb:a3:ec:48:93:
e9:ec:9f:d9:8e:76:dc:c2:98:54:08:d5:20:47:e2:
dc:f5:da:38:f3:8d:89:e8:cd:69:a9:f8:07:bf:11:
d1:6d:e7:a0:f5:c2:12:54:39:f7:e6:38:c8:a5:3a:
88:3c:08:f6:03:7e:9b:04:bf:34:41:47:07:94:a1:
e9:82:6c:db:96:a2:ad:42:42:5f:1e:ef:28:47:89:
1c:ed:ea:59:64:ed:41:21:04:17:6c:c4:16:96:d4:
00:82:7b:e7:84:a3:c1:98:4e:ba:37:48:16:e1:06:
57:c8:56:9a:b6:01:b9:cc:fa:fd:b2:09:fc:d4:fb:
c7:f2:d8:7c:a3:a0:c8:fa:1e:3d:a8:02:fa:3c:92:
6b:46:d4:51:c2:4b:f8:25:ba:92:26:76:83:53:58:
6a:6b:2b:43:50:8d:b0:13:0e:96:a6:f6:92:6f:7c:
52:95:90:73:01:21:63:b0:2c:db:ff:2e:ad:6f:0c:
56:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:02:A6:98:B2:00:E4:12:F1:63:C8:89:C2:D4:8F:3B:FA:2D:C6:99
X509v3 Authority Key Identifier:
keyid:7D:C8:91:16:82:BC:5C:A7:1C:EC:E1:EF:E3:AC:13:5B:FD:B5:9D:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fciRFoK8XKcc7OHv46wTW_21ndY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0831bf-118c-4ece-934d-75295251b1e8/1/6wKmmLIA5BLxY8iJwtSPO_otxpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0831bf-118c-4ece-934d-75295251b1e8/1/fciRFoK8XKcc7OHv46wTW_21ndY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.120.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:73:0f:7a:77:42:f4:f7:7d:87:a7:06:2b:73:4a:5a:ac:e6:
a1:2e:92:a7:a9:e8:40:e9:94:37:94:09:41:4f:2b:14:a1:25:
77:5f:f1:6c:24:0d:df:31:b6:4d:96:ca:c9:e9:b7:f9:6d:1c:
88:42:91:13:b5:20:9b:66:fb:42:b3:e2:a2:0e:8f:d8:b0:93:
05:41:50:3b:e2:04:67:de:53:42:63:04:b4:48:8a:67:8d:77:
e9:2c:c6:4d:20:9f:2c:a1:a0:47:75:14:80:00:56:d5:4e:a5:
b6:c7:ef:f3:bf:b6:7c:fd:70:5c:51:bd:74:9e:9d:53:72:ef:
16:33:d1:2f:55:2e:04:41:26:eb:80:7e:bb:f1:97:19:e1:5d:
dd:75:42:6d:ef:51:d0:46:9d:c8:48:06:c1:45:17:cb:b0:94:
4b:ec:f7:3b:40:b2:51:f1:1d:36:9d:5d:21:3e:5f:fb:6a:7b:
95:25:2d:44:57:7d:b1:6c:ea:c4:0a:c9:1a:f3:6e:6b:29:58:
8d:e1:30:4d:1a:52:85:3f:88:e1:45:28:2c:a3:be:bd:dc:ce:
bb:80:16:f6:18:d7:79:e6:54:83:5b:cb:f5:13:16:dd:9d:f4:
2c:46:b9:92:da:7d:27:29:51:65:8d:09:c0:4d:69:a3:f1:31:
e7:b8:f6:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:45 2024 by rpki-client on console-fra.rpki-client.org