Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/9ObTTOi14XxLLHdkMMRyrD2oCBY.roa
File: 9ObTTOi14XxLLHdkMMRyrD2oCBY.roa (raw, json)
Hash identifier: bHNHHklEfsU0KAPUQ63f75iENHpwRNKs8d0X5N6kEdQ=
Subject key identifier: F4:E6:D3:4C:E8:B5:E1:7C:4B:2C:77:64:30:C4:72:AC:3D:A8:08:16
Certificate issuer: /CN=29edf2a4f20ac08235c40180de74ebc3935cfc22
Certificate serial: 018570706458BD1A0E64FF587A2231F4016A
Authority key identifier: 29:ED:F2:A4:F2:0A:C0:82:35:C4:01:80:DE:74:EB:C3:93:5C:FC:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ke3ypPIKwII1xAGA3nTrw5Nc_CI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/9ObTTOi14XxLLHdkMMRyrD2oCBY.roa
Signing time: Mon 02 Jan 2023 03:04:52 +0000
ROA not before: Mon 02 Jan 2023 03:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1213
IP address blocks: 134.226.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:64:58:bd:1a:0e:64:ff:58:7a:22:31:f4:01:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29edf2a4f20ac08235c40180de74ebc3935cfc22
Validity
Not Before: Jan 2 03:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4e6d34ce8b5e17c4b2c776430c472ac3da80816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8d:ca:a6:ea:86:20:88:f5:60:67:e2:34:09:
31:b4:53:a3:96:81:ba:55:9f:ac:81:be:ee:f1:48:
d2:04:21:b5:01:66:f4:ca:59:98:a2:ca:d7:fb:39:
56:27:12:88:6c:36:9e:1a:aa:b2:68:28:2c:7b:99:
cd:51:69:fe:f8:c2:3e:28:da:ca:dc:75:c5:20:29:
c8:4c:77:45:c8:f1:07:18:f0:cf:a4:de:65:ff:0e:
ca:21:07:8e:7c:58:c8:1d:28:65:a6:9f:88:e5:be:
08:db:a9:cd:fd:6b:61:b6:9f:0b:f7:7c:27:39:bb:
93:19:52:7a:35:c9:6f:65:8b:1a:99:05:a0:1e:aa:
db:1f:45:85:be:f7:91:98:ac:94:72:f2:aa:99:8d:
9c:bb:dc:8c:8e:02:71:c6:73:b2:17:ec:62:cd:e2:
66:72:38:86:6f:6a:b2:83:fb:b3:5f:da:8a:05:f7:
2b:15:7f:f0:a2:c0:b3:95:fb:ae:79:75:02:a1:1e:
43:1d:1a:8e:44:0e:6d:5f:24:52:38:a7:aa:b3:cb:
25:8d:84:7d:50:8a:44:73:b4:fc:84:33:87:3c:ac:
b0:9f:ef:dd:09:e1:fc:6b:72:0b:fe:a5:a1:ab:1c:
57:d5:e4:51:29:1c:82:77:df:50:7f:b2:0e:d1:56:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E6:D3:4C:E8:B5:E1:7C:4B:2C:77:64:30:C4:72:AC:3D:A8:08:16
X509v3 Authority Key Identifier:
keyid:29:ED:F2:A4:F2:0A:C0:82:35:C4:01:80:DE:74:EB:C3:93:5C:FC:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ke3ypPIKwII1xAGA3nTrw5Nc_CI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/9ObTTOi14XxLLHdkMMRyrD2oCBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/Ke3ypPIKwII1xAGA3nTrw5Nc_CI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.226.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a1:b2:18:2e:f3:85:ac:2f:90:b0:cb:e3:3e:ba:0e:f8:02:9b:
f8:14:2f:7a:43:a7:a6:27:46:fc:62:8b:c4:a4:0d:30:34:41:
a1:0c:ad:aa:e0:d0:33:ea:95:8a:8f:a0:29:93:ce:72:b4:d3:
c6:0a:95:6a:4d:35:08:47:aa:54:cf:b5:0e:22:ea:b8:7b:59:
13:5e:97:18:87:9d:ba:45:8f:10:25:01:2a:75:7c:8a:f0:0e:
78:4c:cc:c5:41:62:12:5b:82:8d:b9:b1:ad:ec:c2:c6:40:4b:
5b:74:80:1a:a0:d0:57:ad:df:4d:af:b8:89:03:8d:a2:6b:68:
35:75:6f:3b:15:ad:80:92:ff:f7:ea:95:23:07:bf:8e:8b:79:
42:39:45:72:62:84:c4:ca:62:f6:fa:53:0f:1a:d7:f0:81:2f:
a1:db:6e:5e:b1:a7:0e:2a:54:e7:bc:e6:9d:f2:b7:62:82:4d:
14:6e:f2:77:1d:fa:30:c0:70:64:b8:4b:7e:00:a6:9f:64:bb:
0c:17:85:d4:67:8d:08:e7:44:0e:e6:b4:53:b4:32:4d:38:4f:
e8:8c:ca:e3:e0:d1:a3:6b:6e:7e:39:3b:fc:60:8c:d4:60:bb:
01:e8:21:cd:78:4f:73:14:b4:d8:5e:50:d3:a1:fe:25:1f:87:
0d:c3:37:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:34 2024 by rpki-client on console-fra.rpki-client.org