Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/vPFSgD-yK0tYmVDeK4VXfekkCGM.roa
File: vPFSgD-yK0tYmVDeK4VXfekkCGM.roa (raw, json)
Hash identifier: P7pG/B3qaMntO77K2p/unvbsz2aQURmbGl/Tpp9DhFg=
Subject key identifier: BC:F1:52:80:3F:B2:2B:4B:58:99:50:DE:2B:85:57:7D:E9:24:08:63
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018CC727582B0E7A8D88EFEBFD82F59ADE60
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/vPFSgD-yK0tYmVDeK4VXfekkCGM.roa
Signing time: Mon 01 Jan 2024 22:31:33 +0000
ROA not before: Mon 01 Jan 2024 22:31:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22653
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 08:10:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:58:2b:0e:7a:8d:88:ef:eb:fd:82:f5:9a:de:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 1 22:31:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcf152803fb22b4b589950de2b85577de9240863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:dd:81:1b:f5:bf:27:da:2b:f5:79:fe:5d:1e:
72:4e:4c:b6:b1:2d:96:0d:14:56:7d:33:51:88:21:
40:88:cf:55:a1:da:81:f9:6b:52:81:e3:7e:ff:60:
52:e1:c7:c0:fe:18:31:61:72:de:3a:63:20:f6:55:
32:70:75:a4:56:c7:ba:73:2e:6f:10:ec:fd:fc:e4:
7c:dd:da:30:87:23:97:99:df:e2:d7:5b:e7:ce:00:
9e:71:61:5b:4c:0c:98:3c:de:49:30:4e:97:b2:51:
b4:96:31:9c:df:b9:78:fb:8b:81:22:95:38:bd:d3:
b8:d8:dd:63:5e:d3:ea:57:51:8e:ce:bd:7c:77:97:
35:48:d3:ed:a8:9e:c2:7b:1a:91:7f:4b:00:bd:b1:
1a:22:48:65:f2:92:30:82:ff:dc:dc:34:56:88:07:
f1:87:1f:59:ab:5b:3e:67:80:12:25:c5:b3:48:23:
14:56:77:db:73:01:42:5d:4a:06:3b:7b:5f:e7:e9:
37:55:f1:ea:24:e4:0d:ea:ea:67:c7:26:88:e7:01:
17:82:57:85:92:2e:29:cf:65:1d:ef:72:e2:bc:26:
1c:0d:56:d1:df:a7:77:2f:c4:1c:3b:92:92:37:1e:
59:9e:e3:7c:e0:f0:b3:ec:e0:8f:24:8f:0c:7e:88:
c8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F1:52:80:3F:B2:2B:4B:58:99:50:DE:2B:85:57:7D:E9:24:08:63
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/vPFSgD-yK0tYmVDeK4VXfekkCGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
94:46:8c:93:6a:83:10:e0:ed:b9:61:77:41:ba:ab:b3:07:ea:
60:58:38:4b:f3:68:e5:6d:5f:5a:59:26:b9:d6:22:2b:c4:51:
0c:18:78:bf:3d:da:63:1d:63:10:e7:d3:1f:94:17:e2:85:3f:
b9:d7:e3:90:34:cd:a9:70:3c:ed:30:ee:24:5d:67:4d:72:5f:
33:56:1e:1a:14:1d:24:1f:fa:82:be:d1:4c:b8:c8:77:21:12:
27:cf:f5:42:58:42:70:24:34:1e:bc:2a:22:2e:0e:81:13:4b:
d6:9e:1a:b9:eb:62:f0:61:91:aa:57:6a:f3:af:f7:d4:c5:c3:
1d:6a:13:2a:b5:58:bd:fd:62:93:be:57:e8:3e:0e:d8:79:65:
ee:e2:5b:a9:f8:01:8d:69:82:45:cd:74:45:90:43:18:b7:80:
2d:4d:29:c5:a2:1f:18:6d:bb:a9:63:10:26:c0:77:f7:68:2b:
8f:72:fe:cc:6f:dc:eb:0a:ea:11:e7:37:3f:d7:50:99:c6:15:
50:95:48:7c:cb:c5:49:d2:fe:ee:e2:30:5a:38:86:c3:2a:c6:
ce:e0:ae:a5:e0:06:9b:ca:4b:de:0d:ea:db:45:41:ce:5a:eb:
56:2d:4a:8d:ac:f4:c3:37:a9:2b:7e:56:91:da:e0:ce:fc:96:
ae:74:90:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:19 2024 by rpki-client on console-ams.rpki-client.org