Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/sdjKIFCXDlvU3gvC__qsnGjU5Pg.roa
File: sdjKIFCXDlvU3gvC__qsnGjU5Pg.roa (raw, json)
Hash identifier: TQohYynI5bJZSw62pSCKSPt5yQ6uVXa5NbVCb5JT0Pk=
Subject key identifier: B1:D8:CA:20:50:97:0E:5B:D4:DE:0B:C2:FF:FA:AC:9C:68:D4:E4:F8
Certificate issuer: /CN=6693f2b04eb85b6a2a6e21c03cfbb77287a45aff
Certificate serial: 0189EF525978EBE99DD699FB1F2AB1D8C4B7
Authority key identifier: 66:93:F2:B0:4E:B8:5B:6A:2A:6E:21:C0:3C:FB:B7:72:87:A4:5A:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpPysE64W2oqbiHAPPu3coekWv8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/sdjKIFCXDlvU3gvC__qsnGjU5Pg.roa
Signing time: Sun 13 Aug 2023 14:34:58 +0000
ROA not before: Sun 13 Aug 2023 14:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44227
IP address blocks: 156.67.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Aug 2023 15:10:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ef:52:59:78:eb:e9:9d:d6:99:fb:1f:2a:b1:d8:c4:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6693f2b04eb85b6a2a6e21c03cfbb77287a45aff
Validity
Not Before: Aug 13 14:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1d8ca2050970e5bd4de0bc2fffaac9c68d4e4f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:70:af:3d:f5:f8:24:1a:ed:9f:cf:7b:c5:b7:
02:d5:21:38:fd:16:ea:14:70:95:45:26:1f:10:93:
0c:7c:a0:ab:ab:af:c7:16:e3:b3:db:dc:2f:d0:8c:
6c:e8:c1:10:dc:a6:14:84:ea:e2:5a:1e:41:5b:2f:
d5:e8:a7:44:f0:85:54:1c:fc:5a:c3:d8:3e:69:c7:
71:51:ba:06:ac:fe:9b:38:e2:2f:10:cc:89:bf:56:
6c:a8:72:cd:ac:7d:25:d1:c9:66:99:c8:de:03:2c:
5b:c7:9d:4b:e9:8e:8c:ad:48:ad:20:6e:f2:50:cc:
90:ff:9c:cb:bf:c1:f5:51:af:73:82:35:38:47:13:
e4:5a:f7:03:69:77:58:1f:dc:9c:73:9d:32:fa:02:
b0:1c:99:9a:42:f4:a5:d9:99:7f:03:7c:69:fb:65:
aa:ca:f1:1f:f9:99:05:ca:c5:e1:ea:ee:67:89:fa:
41:db:bc:c8:90:a6:0a:41:a1:c0:66:d5:c7:f9:f3:
4e:da:c7:d5:46:4a:8d:d0:62:b5:7c:90:bd:08:03:
cb:6e:5c:fb:39:cc:2c:20:3b:5b:63:f9:41:17:69:
cd:f1:10:8f:11:1c:e6:5c:55:3f:29:67:e4:99:61:
02:c9:93:57:42:eb:95:98:84:b9:5d:42:15:c7:a6:
9a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D8:CA:20:50:97:0E:5B:D4:DE:0B:C2:FF:FA:AC:9C:68:D4:E4:F8
X509v3 Authority Key Identifier:
keyid:66:93:F2:B0:4E:B8:5B:6A:2A:6E:21:C0:3C:FB:B7:72:87:A4:5A:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpPysE64W2oqbiHAPPu3coekWv8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/sdjKIFCXDlvU3gvC__qsnGjU5Pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/ZpPysE64W2oqbiHAPPu3coekWv8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.15.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:48:19:76:9a:1e:63:19:34:19:41:60:aa:98:07:e1:65:62:
ad:be:f4:05:74:e6:17:e9:92:5a:2b:71:89:93:0a:fa:89:09:
5b:eb:4a:9a:86:98:ee:fc:e1:47:52:d4:bc:93:ef:f5:ff:10:
72:45:8a:c4:4f:82:40:9b:b3:c5:6c:e6:4f:53:0e:9d:75:a7:
c1:6f:1d:cb:c2:d3:e4:27:a7:71:02:94:65:e4:49:c3:d2:1e:
1a:13:f3:04:fd:30:a6:3b:f7:80:1a:30:04:69:8a:49:d8:c7:
da:ee:de:10:bb:35:d8:35:6a:cf:d6:7e:6f:86:36:92:13:70:
4a:d3:7a:90:85:07:13:48:b2:24:a7:5e:06:64:9f:84:e7:23:
52:6d:c8:4b:43:5c:e4:7c:93:bc:94:bd:a7:83:74:90:85:58:
5e:3e:a6:1a:b5:55:63:44:f9:50:4d:47:d4:22:54:75:4b:0f:
6c:43:35:f4:6d:19:06:ad:cf:ff:e3:06:91:95:a3:e7:ae:3f:
ef:95:52:61:0e:eb:1b:7d:e6:30:9d:43:9d:4d:7f:65:58:82:
a1:6e:c1:76:05:51:d6:c4:f5:12:a6:38:ed:fb:cd:23:1a:9c:
47:04:81:95:09:6c:20:35:62:a9:c7:ce:73:3b:ba:f9:91:5e:
52:34:ba:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:31 2024 by rpki-client on console-ams.rpki-client.org