Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/cjc746IvC0dBJv9SmHv9uvlm4Oc.roa
File: cjc746IvC0dBJv9SmHv9uvlm4Oc.roa (raw, json)
Hash identifier: pUjaLd7XTWnB/AH9Hq2bSNzYd/KlaMctiFuR4etHS98=
Subject key identifier: 72:37:3B:E3:A2:2F:0B:47:41:26:FF:52:98:7B:FD:BA:F9:66:E0:E7
Certificate issuer: /CN=e3ac635fd45f5471c6c2c3fe45ef1bb4338bc279
Certificate serial: 01856E6678289274D8865B4524AB0047D483
Authority key identifier: E3:AC:63:5F:D4:5F:54:71:C6:C2:C3:FE:45:EF:1B:B4:33:8B:C2:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/46xjX9RfVHHGwsP-Re8btDOLwnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/cjc746IvC0dBJv9SmHv9uvlm4Oc.roa
Signing time: Sun 01 Jan 2023 17:34:47 +0000
ROA not before: Sun 01 Jan 2023 17:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 553
IP address blocks: 141.69.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:78:28:92:74:d8:86:5b:45:24:ab:00:47:d4:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3ac635fd45f5471c6c2c3fe45ef1bb4338bc279
Validity
Not Before: Jan 1 17:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72373be3a22f0b474126ff52987bfdbaf966e0e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:c2:19:cf:03:65:34:78:e3:80:d9:c9:bb:
ee:50:46:87:86:22:b2:ea:d4:c2:8e:1d:65:e8:a5:
03:cb:d5:46:6f:65:76:e7:c3:a3:62:35:19:ac:6e:
de:bd:33:e7:b7:1c:7a:bc:a3:22:e8:d0:a3:73:e7:
d2:58:3d:e3:92:8d:31:69:19:77:a1:17:45:d7:0a:
d3:0a:56:27:da:28:bb:95:c5:e8:13:f1:60:b9:21:
86:59:1c:b9:9e:84:5b:f1:74:fc:a2:9a:0c:66:8e:
90:02:bd:3e:ec:ab:f9:64:a9:57:5f:83:57:aa:48:
81:b5:5b:b2:37:92:69:5c:65:96:75:02:dd:f0:cf:
8b:10:23:a5:c3:23:0e:4a:87:f4:00:b1:96:08:fa:
33:0f:43:34:ce:45:b1:ac:61:83:35:8a:32:35:91:
a8:a9:02:d0:6b:69:f6:68:dd:37:90:a7:5c:d3:e5:
82:01:e7:42:42:1f:d9:9d:4a:59:e1:8b:65:20:6f:
cf:8f:f4:5f:e8:ea:cd:8c:49:de:02:94:93:cf:43:
71:ab:fd:17:58:36:9a:6b:72:45:13:37:b5:e1:f1:
c6:89:50:8d:f7:7a:94:1f:84:53:1d:d4:5b:2e:1f:
32:8d:a3:dc:4a:8a:46:56:ca:bb:ea:01:38:95:a1:
14:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:37:3B:E3:A2:2F:0B:47:41:26:FF:52:98:7B:FD:BA:F9:66:E0:E7
X509v3 Authority Key Identifier:
keyid:E3:AC:63:5F:D4:5F:54:71:C6:C2:C3:FE:45:EF:1B:B4:33:8B:C2:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/46xjX9RfVHHGwsP-Re8btDOLwnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/cjc746IvC0dBJv9SmHv9uvlm4Oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2f870e-2ba5-4b88-91a0-1d2348dbd036/1/46xjX9RfVHHGwsP-Re8btDOLwnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
36:8f:84:1c:13:8e:c7:ef:88:5c:97:43:80:82:6e:fa:fb:0b:
94:8e:2e:df:f6:b0:f7:23:46:89:58:91:11:03:8e:8d:08:c2:
79:42:e0:90:77:1d:8e:27:79:ac:31:b9:ec:ed:99:53:34:c4:
b3:13:e4:e9:97:61:03:0b:56:7a:46:b7:17:1c:a9:85:83:ca:
a7:ff:d8:16:a0:32:18:bf:ec:b2:88:4c:30:5f:22:24:5a:61:
1b:de:81:83:e7:91:ea:c0:9e:5a:23:d7:dd:67:12:7c:7e:4d:
ba:f9:48:9b:99:97:6b:1e:f3:00:91:12:94:e7:a3:6e:93:02:
3a:63:78:f9:5e:56:d1:ed:6d:1c:36:76:f2:0c:68:0a:64:df:
6b:a9:4c:37:c8:04:b1:f8:a9:c4:22:18:16:e1:39:a3:d9:81:
f8:aa:47:d0:ca:bb:ad:e8:22:4b:c2:71:45:23:6e:b8:eb:9d:
d6:50:ba:58:c8:be:f2:f8:af:1e:b9:42:6e:1c:dd:41:68:69:
c6:01:6c:e0:80:f0:9b:c1:0f:e9:5d:9b:57:56:5e:c1:1b:86:
b5:72:d5:c8:63:25:a5:ba:49:f1:8a:ed:8d:92:01:96:f1:53:
92:02:da:52:ff:a5:c8:4a:81:d9:d8:a7:7d:8a:a7:ac:9d:fd:
38:c1:80:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:07 2024 by rpki-client on console-ams.rpki-client.org