Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/9q0NcUM3RB1RuR7e4LBfy5tJkv0.roa
File: 9q0NcUM3RB1RuR7e4LBfy5tJkv0.roa (raw, json)
Hash identifier: MNMTdsV/7diPB4yjneeysY+kzaj/vKkdMDXKkftTfn0=
Subject key identifier: F6:AD:0D:71:43:37:44:1D:51:B9:1E:DE:E0:B0:5F:CB:9B:49:92:FD
Certificate issuer: /CN=29edf2a4f20ac08235c40180de74ebc3935cfc22
Certificate serial: 0185707063C8DEFC24CFBD075AB75706E450
Authority key identifier: 29:ED:F2:A4:F2:0A:C0:82:35:C4:01:80:DE:74:EB:C3:93:5C:FC:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ke3ypPIKwII1xAGA3nTrw5Nc_CI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/9q0NcUM3RB1RuR7e4LBfy5tJkv0.roa
Signing time: Mon 02 Jan 2023 03:04:51 +0000
ROA not before: Mon 02 Jan 2023 03:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 786
IP address blocks: 134.226.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:63:c8:de:fc:24:cf:bd:07:5a:b7:57:06:e4:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29edf2a4f20ac08235c40180de74ebc3935cfc22
Validity
Not Before: Jan 2 03:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6ad0d714337441d51b91edee0b05fcb9b4992fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d1:8b:26:23:2e:13:42:a2:4d:f8:0c:77:08:
c8:0e:5c:06:3f:6a:ad:fc:ec:2e:b4:69:16:89:8e:
5a:b4:bf:b8:8c:72:f4:4c:27:12:94:1d:c3:f8:b7:
4b:1f:11:ed:8f:d3:c2:b6:6d:4d:20:da:68:49:7c:
44:39:b4:e0:fc:a2:17:73:57:92:ad:22:b3:f5:5b:
8b:3f:86:db:4e:ba:a1:c6:9a:79:47:a8:b1:4f:d9:
94:0d:84:87:6e:38:e5:5e:88:22:41:98:e6:81:a2:
be:9c:9a:e9:b7:f1:d4:44:b3:cc:5f:32:ac:e2:3e:
76:25:99:0c:d5:f2:e7:8b:65:cd:39:9c:d6:36:50:
4a:79:c4:b1:df:e8:4f:fc:c5:25:41:39:97:b9:c8:
86:dc:52:b0:7d:e3:ef:87:20:05:97:89:d4:1c:0d:
a6:2d:62:aa:9e:ba:eb:59:a1:38:24:ba:b4:81:ce:
c4:49:74:3b:15:e8:77:14:42:80:4d:b0:08:1b:f5:
7e:92:0e:29:19:b4:cb:5c:6c:68:02:1e:5f:63:9a:
62:03:38:8f:62:6d:f0:31:e0:6b:ac:55:66:04:4a:
63:f6:67:09:b4:cc:a5:7c:20:d1:e8:be:bd:94:0b:
12:8c:1c:37:fd:dc:ce:fa:49:75:19:29:c2:03:b9:
4c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AD:0D:71:43:37:44:1D:51:B9:1E:DE:E0:B0:5F:CB:9B:49:92:FD
X509v3 Authority Key Identifier:
keyid:29:ED:F2:A4:F2:0A:C0:82:35:C4:01:80:DE:74:EB:C3:93:5C:FC:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ke3ypPIKwII1xAGA3nTrw5Nc_CI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/9q0NcUM3RB1RuR7e4LBfy5tJkv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/Ke3ypPIKwII1xAGA3nTrw5Nc_CI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.226.0.0/16
Signature Algorithm: sha256WithRSAEncryption
61:41:05:09:77:53:d1:3c:90:5b:8f:10:38:1d:2d:17:41:ee:
cf:84:07:9f:07:f0:5b:73:55:b5:d4:10:3e:c4:b3:65:7a:b4:
b5:31:7a:31:9e:59:07:40:31:5e:20:93:88:14:41:a4:ea:68:
a8:10:cd:d0:06:1b:01:31:c3:3f:43:2f:f9:ea:a0:33:43:47:
a4:49:89:ce:d5:53:71:f0:6f:68:07:76:8b:64:8b:2d:05:53:
9d:1b:6a:c7:26:bf:60:f0:80:f6:7c:15:8a:9d:d2:ef:67:af:
d7:a1:f5:3e:08:ab:b4:62:96:9f:7c:49:0c:77:7e:d4:5c:e1:
46:be:86:55:c0:df:a9:7d:eb:75:15:3d:e2:20:16:24:9d:8f:
fe:ca:16:12:bf:42:6c:8f:4f:a1:d0:84:16:da:79:29:71:e5:
ac:72:9d:18:3d:07:da:3d:1f:50:93:1a:0a:0d:54:f5:95:a5:
4a:90:37:8c:61:f4:f2:6e:b7:9f:ea:0c:11:9e:4e:8c:fa:45:
79:29:47:6f:1e:9e:f6:10:c5:9a:2c:eb:12:38:17:94:24:f0:
3f:78:f1:98:4d:b7:dd:3e:48:0b:b4:78:45:eb:b7:52:a4:01:
06:11:d0:d9:67:0a:47:fa:15:88:fe:8b:8c:08:de:73:18:ce:
e9:47:28:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:22 2024 by rpki-client on console-ams.rpki-client.org