Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/uO9lmwlPRjzCc4vmelp79VqPrvM.roa
File: uO9lmwlPRjzCc4vmelp79VqPrvM.roa (raw, json)
Hash identifier: uGIf2cdJH89BTE9+MotwW35TnwIepTemETc8iqXz57o=
Subject key identifier: B8:EF:65:9B:09:4F:46:3C:C2:73:8B:E6:7A:5A:7B:F5:5A:8F:AE:F3
Certificate issuer: /CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Certificate serial: 018A655B29F54A9C5C79EE606AFA46144C76
Authority key identifier: 62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/uO9lmwlPRjzCc4vmelp79VqPrvM.roa
Signing time: Tue 05 Sep 2023 12:39:47 +0000
ROA not before: Tue 05 Sep 2023 12:39:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139853
IP address blocks: 149.20.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 08:04:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:5b:29:f5:4a:9c:5c:79:ee:60:6a:fa:46:14:4c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Validity
Not Before: Sep 5 12:39:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8ef659b094f463cc2738be67a5a7bf55a8faef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:36:24:74:d7:7f:4b:d1:7e:39:12:40:56:83:
a7:78:b5:a3:92:03:ee:2e:41:73:24:90:92:fa:9c:
41:de:9d:57:a4:ea:e2:05:a4:73:c2:ac:b4:e9:b3:
4c:93:3d:70:12:63:68:a7:d4:57:6f:15:58:a4:ef:
d6:ac:76:70:50:c3:ac:02:b2:af:6a:df:69:f0:e3:
9d:7e:8a:a4:57:07:b2:ce:d3:41:a1:3d:a5:31:a8:
8f:26:8c:cd:34:29:12:60:92:98:48:51:24:23:b0:
f8:31:67:a3:cc:5c:3e:fe:2a:b1:cd:d9:96:8a:f9:
c9:7c:9b:de:3b:c0:48:e7:d1:7d:93:fc:6e:45:dc:
3e:38:5d:4c:7a:9f:22:41:f8:41:27:f1:6e:f1:63:
a4:d3:81:e6:d9:98:64:13:69:e9:6c:7d:19:01:e2:
bd:b7:25:c8:ae:97:92:61:95:1c:6c:7a:f7:31:ce:
8b:75:13:68:75:e3:d0:d6:7a:3b:dd:f1:a4:a1:b3:
79:95:2c:0a:a1:f8:cc:ba:14:50:ee:71:c7:62:9e:
11:39:8f:5b:e2:fa:2d:da:30:6c:75:10:8e:ff:88:
38:e6:c8:33:08:90:82:0d:5e:37:38:d8:3a:ea:24:
b0:47:df:87:f1:37:8a:55:f9:f6:92:28:04:cc:3f:
2b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:EF:65:9B:09:4F:46:3C:C2:73:8B:E6:7A:5A:7B:F5:5A:8F:AE:F3
X509v3 Authority Key Identifier:
keyid:62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/uO9lmwlPRjzCc4vmelp79VqPrvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.20.127.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:6f:c0:94:48:3f:f8:90:0f:8b:b9:57:4a:f0:b5:76:4f:e8:
fc:41:1a:66:b4:9a:43:49:d7:2f:c5:da:37:56:50:3d:9f:a8:
5c:12:76:e0:67:48:4a:12:df:cf:43:a5:8a:35:e0:a1:b6:ac:
19:5c:49:4a:17:62:2d:f0:95:4a:d0:b0:80:9b:bc:db:87:cf:
ff:f8:fc:df:f8:30:41:43:99:8f:95:92:e4:bd:60:c4:45:0f:
3c:ce:c7:6d:1f:80:d9:4b:8c:82:56:a9:11:8e:1a:22:70:61:
2e:65:23:87:2c:89:94:af:5a:3e:59:b3:dd:13:72:ba:5a:fc:
58:f8:c6:fa:c7:7a:7e:5e:8c:4f:49:8a:b5:b8:40:24:ce:18:
c6:74:5f:fe:c5:d3:7d:91:ba:3e:a9:d8:80:8b:7d:c0:2f:94:
82:d8:2f:87:c7:c3:ea:79:6d:c8:2f:c4:45:6c:3c:b2:5d:43:
ad:5c:a7:2d:7f:43:d2:4e:91:9b:6e:61:b8:7d:1d:96:2e:72:
fd:e3:81:c4:74:bd:13:6a:15:d7:a3:08:c4:83:77:25:e4:f0:
78:d3:d3:cf:3d:9b:a4:b1:d6:a3:cf:71:25:ea:b8:fd:d1:73:
03:d7:82:ba:73:84:db:4b:0b:db:2d:f5:b1:af:2a:76:6f:ef:
01:84:a9:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:56 2024 by rpki-client on console-fra.rpki-client.org