Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/YCz83dId57yLR_FJXIzt63AuXxU.roa
File: YCz83dId57yLR_FJXIzt63AuXxU.roa (raw, json)
Hash identifier: G+1L9av/4guuZP3D42XTi+pVZ3/ExA+GjegmLfim8wM=
Subject key identifier: 60:2C:FC:DD:D2:1D:E7:BC:8B:47:F1:49:5C:8C:ED:EB:70:2E:5F:15
Certificate issuer: /CN=3a178048d127af3433f17bccda5d07d657eca688
Certificate serial: 018570F09BFBDE3390349F7B098800825152
Authority key identifier: 3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/YCz83dId57yLR_FJXIzt63AuXxU.roa
Signing time: Mon 02 Jan 2023 05:24:54 +0000
ROA not before: Mon 02 Jan 2023 05:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41171
IP address blocks: 146.19.142.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:9b:fb:de:33:90:34:9f:7b:09:88:00:82:51:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a178048d127af3433f17bccda5d07d657eca688
Validity
Not Before: Jan 2 05:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=602cfcddd21de7bc8b47f1495c8cedeb702e5f15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:57:f4:34:1a:56:2a:c7:4b:fa:78:d7:69:fb:
ff:c2:a6:43:c6:3d:e6:71:54:ff:5c:38:3e:11:ab:
45:78:7e:97:27:8b:00:18:a8:02:c7:c1:7a:cd:bd:
4f:8f:31:2b:27:e8:dc:c4:83:84:1d:99:5a:f2:65:
62:a3:f2:d4:cd:a7:6b:1f:c9:1d:42:ab:43:68:77:
d1:90:a9:08:c1:94:b6:b3:ba:ce:04:85:ac:fb:96:
c8:15:15:c0:6e:62:5f:1a:c3:b6:52:1c:dc:02:c6:
10:12:4c:12:61:63:3f:2b:11:fe:20:66:5c:f2:9c:
11:be:81:ef:1f:2e:cb:1f:83:15:fd:fd:d3:6c:54:
90:4d:9b:c8:60:a1:6c:70:c6:f8:8f:3e:80:dc:ea:
c2:74:d5:0c:10:bd:f2:9c:f1:aa:b7:44:64:92:19:
93:00:42:d8:8d:68:42:6a:cc:e3:64:44:21:20:61:
6c:95:f2:92:c9:0d:1e:5a:e4:06:0d:55:b5:cd:96:
d6:62:e0:ec:67:bb:b1:c3:2f:29:7a:cf:cb:4d:88:
79:9e:17:aa:36:0e:1f:e0:62:bc:f4:a8:8d:e2:b3:
98:70:d4:78:04:cd:ae:94:c1:e9:17:8f:f6:4c:02:
c9:68:2d:e9:68:cf:6c:0c:8c:c8:5f:af:3c:31:11:
81:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2C:FC:DD:D2:1D:E7:BC:8B:47:F1:49:5C:8C:ED:EB:70:2E:5F:15
X509v3 Authority Key Identifier:
keyid:3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/YCz83dId57yLR_FJXIzt63AuXxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/OheASNEnrzQz8XvM2l0H1lfspog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.142.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:26:74:40:8d:d0:7c:07:19:11:e2:3d:ec:36:90:f5:5e:46:
4d:21:1c:73:51:b7:e5:a3:cb:6e:e7:e3:13:dd:34:29:d2:91:
4f:ac:d8:96:e7:d1:d5:ca:f3:c0:a0:77:ae:ae:97:f9:d0:17:
15:f4:ea:83:12:6f:1d:15:76:eb:a6:8b:d1:7e:65:91:e7:ed:
15:39:25:e0:27:7d:61:dd:3d:f3:c4:65:fe:06:2d:50:7b:c2:
8b:e6:21:b5:ab:f8:f2:88:ec:2a:1f:f9:cb:49:c3:d0:1e:0a:
24:1e:9f:08:6f:80:c5:aa:24:ab:b7:46:bd:a6:c3:7e:bc:79:
ee:06:71:3b:2f:28:2b:b3:d4:4e:b4:94:7e:64:20:7d:f3:9d:
cb:d6:43:f8:03:d7:c4:3d:ea:5f:aa:d9:52:21:2d:b8:45:19:
97:10:1f:79:52:94:ac:b4:16:66:2c:53:06:65:a7:0e:7a:85:
6d:2c:57:fd:20:5a:22:1d:d7:e9:b9:80:62:9a:83:d5:da:84:
fe:2e:13:6e:dd:27:6c:f9:12:fc:9e:c2:e6:fa:b9:66:e3:4f:
9b:00:79:ac:fa:35:0b:a6:be:c8:5b:ba:e2:a3:fe:22:55:9f:
c3:f3:bd:d3:ce:1c:af:43:3f:95:7a:b9:fa:08:f8:c6:e2:d0:
e2:c7:9a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:49 2024 by rpki-client on console-ams.rpki-client.org