Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/LzLAFlhOthDfH1hyjsMA7nMpY70.roa
File: LzLAFlhOthDfH1hyjsMA7nMpY70.roa (raw, json)
Hash identifier: VnvgEOixZqk/O1GyhHcF18W3e5kz+kr2AtLWB0HnzUY=
Subject key identifier: 2F:32:C0:16:58:4E:B6:10:DF:1F:58:72:8E:C3:00:EE:73:29:63:BD
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 0190BB30EF6B9179DD10F0CE1B2260C320E6
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/LzLAFlhOthDfH1hyjsMA7nMpY70.roa
Signing time: Tue 16 Jul 2024 10:57:44 +0000
ROA not before: Tue 16 Jul 2024 10:57:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.126.134.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 06:56:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bb:30:ef:6b:91:79:dd:10:f0:ce:1b:22:60:c3:20:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jul 16 10:57:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f32c016584eb610df1f58728ec300ee732963bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ba:a7:98:e5:f7:d2:34:7c:61:b0:76:c6:eb:
aa:5e:a6:8f:d8:65:af:05:d7:dd:2c:88:af:15:58:
80:93:e3:2d:ad:99:a3:de:8a:6d:2c:3f:94:94:d3:
24:e9:d6:04:5f:6d:7e:66:f6:3c:81:a6:17:a0:fd:
fd:e0:46:7f:bb:b2:6d:f2:61:85:a5:d5:67:e2:5a:
8c:38:85:44:d0:6a:eb:c6:f7:c8:64:41:3a:a2:a8:
b9:3e:be:a5:77:f9:8e:26:0f:9e:a7:a2:94:4f:d6:
c6:ad:4b:2f:56:9f:aa:56:77:a0:fa:db:0b:e1:5c:
69:d3:a9:4e:ba:24:23:a6:35:c3:05:70:e0:02:be:
53:e8:76:06:1d:7b:e3:b9:da:ce:92:ed:4a:48:31:
23:a3:c1:39:df:01:bf:c4:63:c6:ca:d8:0d:70:23:
22:d1:00:54:30:92:80:68:85:51:e6:9b:5e:e9:e5:
d2:5a:d6:a9:22:b3:9d:46:47:8f:fe:15:4f:f0:b5:
86:9f:e8:68:a0:4d:04:89:0b:51:52:51:6e:1b:b7:
54:28:da:4b:64:33:72:b5:ca:3c:b0:d0:ad:f6:64:
34:10:44:bd:16:57:7d:74:e9:b0:32:df:b5:5f:1f:
38:ce:81:49:ea:16:f0:09:08:f1:c1:94:b5:15:93:
5f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:32:C0:16:58:4E:B6:10:DF:1F:58:72:8E:C3:00:EE:73:29:63:BD
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/LzLAFlhOthDfH1hyjsMA7nMpY70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.134.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:00:23:0e:3a:db:26:4c:f9:b3:56:9d:60:fd:63:db:4c:f0:
48:74:f4:3e:a1:63:fa:ec:2f:99:13:d7:2f:21:7e:42:bc:55:
86:fb:44:3e:3d:ab:bb:63:f5:9c:67:00:db:c1:ab:71:bf:73:
f5:e2:d2:12:4b:88:55:ca:f9:b8:34:9f:41:78:fc:65:96:17:
37:df:06:52:05:47:9b:58:11:40:12:88:7d:1b:bf:c4:33:da:
d5:bc:18:b3:00:a7:d1:34:c2:fa:e3:40:b7:b0:8c:e7:dd:d2:
5a:04:f0:9c:c2:9c:dd:7b:3c:64:d1:6f:6f:30:da:84:ef:e4:
70:0b:b1:11:58:2a:09:11:83:06:ca:de:bf:65:d2:e0:da:14:
f4:61:b6:3d:b7:5b:7a:13:7d:fa:d2:c4:97:c1:fb:58:b8:4c:
4d:07:36:28:26:34:89:d2:40:07:0d:6c:c3:3d:56:b1:17:46:
35:ce:3c:9a:99:7a:81:ec:31:6c:46:ca:f4:cd:8e:d5:aa:20:
fd:2a:69:73:8b:c0:c1:86:5a:f0:48:9c:44:aa:09:8c:d9:fe:
7f:3f:c9:a6:69:7e:71:1b:22:90:3b:86:a8:77:e4:cd:b2:bb:
7c:21:75:09:43:67:76:63:63:b8:eb:b4:27:aa:85:32:2b:49:
63:cd:a5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 09:20:39 2024 by rpki-client on console-ams.rpki-client.org