Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/06462d-5aa3-4d6d-b219-80d87fa5eae2/1/4lRMp6haqM8nE8V-GiVPmweWuXs.roa
File: 4lRMp6haqM8nE8V-GiVPmweWuXs.roa (raw, json)
Hash identifier: 2uO55dVZ4vQOBR0BwKDOxGs8MgsVxeireaNYO9VLntE=
Subject key identifier: E2:54:4C:A7:A8:5A:A8:CF:27:13:C5:7E:1A:25:4F:9B:07:96:B9:7B
Certificate issuer: /CN=9e0bba6d2e11171335417caa758189f0cf47a444
Certificate serial: 01856C0111D01169654F4865A88A2DEBDA3B
Authority key identifier: 9E:0B:BA:6D:2E:11:17:13:35:41:7C:AA:75:81:89:F0:CF:47:A4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ngu6bS4RFxM1QXyqdYGJ8M9HpEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/06462d-5aa3-4d6d-b219-80d87fa5eae2/1/4lRMp6haqM8nE8V-GiVPmweWuXs.roa
Signing time: Sun 01 Jan 2023 06:24:47 +0000
ROA not before: Sun 01 Jan 2023 06:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.205.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:11:d0:11:69:65:4f:48:65:a8:8a:2d:eb:da:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e0bba6d2e11171335417caa758189f0cf47a444
Validity
Not Before: Jan 1 06:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2544ca7a85aa8cf2713c57e1a254f9b0796b97b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:26:6e:96:96:32:b4:9a:86:13:c3:06:6f:ab:
97:a3:d6:bf:49:8c:b7:7b:64:7d:02:4d:fe:cc:33:
7a:f8:34:a4:00:d7:a8:e9:a6:e3:48:04:28:00:9a:
83:5f:4e:69:50:4e:cb:ae:f2:e9:de:3e:0c:16:f8:
96:24:16:1e:00:30:fe:f5:79:25:7b:77:d0:96:5d:
a3:8a:7c:bb:e1:60:6a:73:1a:db:bc:55:2a:87:a7:
59:32:74:8b:ee:9a:41:a1:e7:e2:03:e2:38:11:30:
cc:8d:51:e6:51:2e:79:71:f4:ef:71:51:a3:03:74:
44:08:f3:58:99:86:90:0e:ed:b2:78:c3:cc:a6:b6:
9e:2c:d3:b8:95:00:7c:fd:9f:5a:88:58:97:78:7e:
34:de:b5:e5:82:b1:76:b0:84:ab:2b:e4:f5:9c:06:
42:4f:22:1e:56:29:d2:ec:71:ab:93:af:68:df:6b:
1b:b1:f9:3f:1b:b3:77:ff:73:94:dd:a8:1b:8f:3c:
db:79:55:03:5b:c2:1d:57:63:7c:c6:67:a4:f9:17:
a8:fb:b3:d1:b1:fe:55:62:30:a1:3c:e4:5e:5b:66:
64:3e:90:5c:52:d1:55:e5:8f:e9:aa:9f:92:86:85:
18:60:3b:41:d5:1a:e3:9a:c3:f9:c4:29:9f:81:08:
42:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:54:4C:A7:A8:5A:A8:CF:27:13:C5:7E:1A:25:4F:9B:07:96:B9:7B
X509v3 Authority Key Identifier:
keyid:9E:0B:BA:6D:2E:11:17:13:35:41:7C:AA:75:81:89:F0:CF:47:A4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ngu6bS4RFxM1QXyqdYGJ8M9HpEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/06462d-5aa3-4d6d-b219-80d87fa5eae2/1/4lRMp6haqM8nE8V-GiVPmweWuXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/06462d-5aa3-4d6d-b219-80d87fa5eae2/1/ngu6bS4RFxM1QXyqdYGJ8M9HpEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.205.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:36:b5:d1:8b:47:eb:e7:7f:8e:12:17:24:51:99:f1:d8:d8:
89:8e:9b:c0:9e:69:62:ba:49:9c:f6:50:7e:90:0a:e7:ca:e4:
e5:15:df:80:8f:94:99:c3:75:5d:3a:ba:66:b8:1b:7b:9a:8f:
ee:00:dd:a2:6c:29:08:cb:b7:17:e6:49:9f:f7:f5:b4:b8:02:
1c:1d:e2:28:36:1f:f9:8f:18:46:8c:32:86:03:d5:bd:38:7e:
1b:32:00:33:d9:56:05:7b:f2:40:b6:60:d2:be:20:bb:dd:57:
e3:33:9f:f8:52:91:82:87:f3:d9:6e:d1:48:dd:03:fa:15:19:
6c:46:df:9f:5c:74:17:22:4a:31:ba:a7:78:c2:4e:15:d3:89:
dd:7c:d7:d2:77:2f:ea:5a:a3:c9:f6:f8:68:ce:38:8e:7a:ed:
a6:97:03:6f:55:1b:31:d6:8f:50:42:fe:4e:b9:64:78:fd:bc:
b1:30:a7:3e:cb:f1:6d:73:0a:c9:56:3d:86:b9:ad:df:68:5b:
81:1c:65:53:17:a9:99:20:21:86:29:78:c7:9c:44:e3:78:e5:
32:73:57:b5:36:20:58:86:94:1c:24:32:d3:7b:87:7a:dd:42:
09:a3:09:17:20:87:44:7a:39:64:1b:41:43:35:09:90:b9:09:
e5:00:51:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:38 2023 by rpki-client on console-ams.rpki-client.org