Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/x9uMW5qrYLi9EyKf4yVdkYFPulw.roa
File: x9uMW5qrYLi9EyKf4yVdkYFPulw.roa (raw, json)
Hash identifier: GyoS5hn6c5vo9C+YZpU8imT7CAZEdBo362ljv54Sd2w=
Subject key identifier: C7:DB:8C:5B:9A:AB:60:B8:BD:13:22:9F:E3:25:5D:91:81:4F:BA:5C
Certificate issuer: /CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Certificate serial: 01856D660DF587A8A1E434CEFECC9260CFF1
Authority key identifier: E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/x9uMW5qrYLi9EyKf4yVdkYFPulw.roa
Signing time: Sun 01 Jan 2023 12:54:42 +0000
ROA not before: Sun 01 Jan 2023 12:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29399
IP address blocks: 159.146.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:0d:f5:87:a8:a1:e4:34:ce:fe:cc:92:60:cf:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Validity
Not Before: Jan 1 12:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7db8c5b9aab60b8bd13229fe3255d91814fba5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:00:89:8c:5c:59:ba:c4:c9:2b:5d:47:85:b1:
f4:ca:a1:1f:ae:69:fa:94:ab:e5:c3:ba:86:65:2b:
2a:82:f1:b0:a7:75:cf:ad:8d:5e:ac:d1:e3:8b:bf:
5e:e6:c5:a8:29:5e:f4:c1:87:84:03:16:ab:31:1c:
b7:e6:ec:19:9c:c4:be:29:ae:1c:18:12:c9:4a:e2:
cd:a1:7c:b6:30:35:48:39:8f:ac:ff:12:4d:06:7b:
fb:a7:54:0d:af:0f:c3:5d:67:af:ef:96:d9:40:d8:
c5:d1:90:d3:4f:4d:16:0c:39:55:48:fc:19:20:d5:
52:57:4b:b3:bd:96:c7:bc:28:c4:86:e8:3c:4b:31:
75:a4:fc:53:fc:e2:6a:af:1d:06:05:d4:5d:2a:ea:
a9:43:e6:02:8d:1a:07:4a:9b:d1:19:ad:45:ef:8f:
f6:c3:c5:a8:89:7c:de:a4:ca:9f:f8:c8:b8:96:3b:
ce:d8:30:65:10:a1:7c:94:fe:8a:5b:ad:16:dc:22:
e8:ac:23:63:de:4c:42:e8:5c:b9:7e:0f:fa:6c:57:
a5:8f:5c:4b:91:08:6a:9a:0e:45:c7:d2:b0:d8:35:
d4:57:b9:17:3e:74:54:ca:b0:26:96:0e:68:b8:67:
90:72:3a:79:85:3c:32:5f:7a:61:b5:c5:58:b6:dc:
77:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:DB:8C:5B:9A:AB:60:B8:BD:13:22:9F:E3:25:5D:91:81:4F:BA:5C
X509v3 Authority Key Identifier:
keyid:E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/x9uMW5qrYLi9EyKf4yVdkYFPulw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.146.59.0/24
Signature Algorithm: sha256WithRSAEncryption
50:a3:b4:9e:8e:78:04:30:7f:08:89:54:a5:8d:5d:56:b2:63:
ee:b8:9f:4c:9b:26:f1:eb:56:aa:a9:07:22:ad:fc:ee:b9:0b:
c2:ee:c9:90:1d:04:65:73:53:d6:c1:81:fe:ee:aa:7e:a0:88:
fd:31:6c:e5:9f:0a:55:95:df:56:94:8a:65:e7:dc:b4:9a:16:
55:47:d8:cb:88:07:33:e4:63:67:a7:41:8c:d6:53:69:ae:e7:
db:f0:2e:fb:34:3e:7a:bf:6c:eb:3a:2d:8a:77:2e:d8:94:de:
96:29:23:c6:ca:83:82:b4:b8:dd:57:3e:49:37:c3:7a:77:15:
75:07:7b:97:84:ef:a1:24:09:06:d7:a9:db:f4:93:87:04:38:
24:ea:22:15:c2:bf:17:d8:59:de:14:39:1e:33:46:70:a8:d2:
90:2c:53:23:91:5d:0c:e7:a4:d9:2a:a9:9c:45:80:92:42:26:
57:51:c2:95:dc:79:3d:59:ce:2b:ab:15:6f:94:98:f5:24:14:
95:5f:ba:fd:29:48:9c:bb:65:52:6b:18:ae:d7:6c:91:2d:ef:
74:43:02:53:63:60:3b:7b:9b:05:b0:d1:52:e4:6c:e4:17:ae:
70:ec:66:45:0a:54:84:0c:56:d7:e4:a1:8b:6e:f2:0b:8e:b5:
32:a3:58:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:50 2024 by rpki-client on console-ams.rpki-client.org