Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/jAPnAPEWVdp2IF8NVEpjJ4uFAbc.roa
File: jAPnAPEWVdp2IF8NVEpjJ4uFAbc.roa (raw, json)
Hash identifier: KUizsvFWG/9etUxn3DjD/98miMDqBguPAKsQsfTW4B4=
Subject key identifier: 8C:03:E7:00:F1:16:55:DA:76:20:5F:0D:54:4A:63:27:8B:85:01:B7
Certificate issuer: /CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Certificate serial: 01856C53AF421B52B62405A02E5525A972D1
Authority key identifier: 96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/jAPnAPEWVdp2IF8NVEpjJ4uFAbc.roa
Signing time: Sun 01 Jan 2023 07:55:01 +0000
ROA not before: Sun 01 Jan 2023 07:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20773
IP address blocks: 134.97.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:af:42:1b:52:b6:24:05:a0:2e:55:25:a9:72:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Validity
Not Before: Jan 1 07:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c03e700f11655da76205f0d544a63278b8501b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:18:f0:77:69:2d:ef:f1:2b:c7:a4:c2:cb:65:
48:e6:2a:ac:a6:a2:a3:4d:60:04:cb:68:ee:73:6f:
1f:1a:15:1e:9e:1e:b1:7d:71:dd:63:6a:4d:25:18:
48:b0:ad:3f:30:ed:64:a0:a8:fa:6c:00:e9:5a:2a:
3a:1f:86:b1:06:53:49:dc:5d:e3:1a:15:88:da:47:
bc:98:da:06:d9:71:3a:9b:36:56:e7:1c:c2:4c:cf:
a5:67:ba:f7:ec:ca:ec:8b:46:dc:23:fd:18:f1:67:
6e:c4:b9:0e:2e:b8:22:4c:9f:2f:1d:34:fd:61:91:
ac:2c:63:26:2e:84:f8:a2:d9:f0:a7:b9:c0:13:65:
05:1c:72:ac:a9:b9:4f:c1:57:d6:6d:b4:4a:b7:98:
23:81:78:61:5a:9c:d3:30:40:77:bc:78:12:60:7c:
ec:07:3f:52:eb:a7:b9:b0:3f:c0:4f:d8:f2:a6:5b:
f1:88:96:15:66:d6:4b:f5:e0:5e:ee:ca:39:32:1e:
4a:60:64:f4:d6:a5:4f:01:16:94:9f:5d:d7:a9:01:
08:ca:32:3c:10:a5:85:14:9b:fe:b3:df:16:b0:77:
db:84:65:40:c2:ba:b0:93:3c:f3:ef:94:3e:00:cb:
fd:e0:df:92:6c:f8:67:54:71:36:2e:51:1e:40:1f:
be:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:03:E7:00:F1:16:55:DA:76:20:5F:0D:54:4A:63:27:8B:85:01:B7
X509v3 Authority Key Identifier:
keyid:96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/jAPnAPEWVdp2IF8NVEpjJ4uFAbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/lplI0P5Nf5nVS6i__NmaGmCK4NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.97.4.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:d4:f6:6e:ae:97:d2:85:1f:e7:80:86:71:67:b0:d2:ad:8a:
b6:16:e5:da:0a:4f:3c:14:47:3f:98:ee:8b:98:4c:2c:d8:bd:
29:70:1f:84:71:0a:a8:8c:d5:24:68:64:eb:e4:72:06:5c:ab:
27:34:ad:a3:2c:3c:e1:d7:4f:5a:6d:97:88:f6:4a:96:43:8a:
95:18:fd:8f:86:ba:62:9e:87:15:9e:3c:24:57:40:a1:0c:b9:
30:e5:2d:6e:02:c0:af:c2:3f:ab:9b:50:47:3a:3a:d2:82:4e:
19:0d:b8:16:91:22:4e:59:e2:90:7e:70:61:20:86:9f:96:46:
7a:90:3a:b8:a0:3c:b2:6e:65:2d:de:df:2f:3c:1b:71:f7:e7:
7a:9c:93:57:59:7b:c2:c4:02:12:35:79:53:8a:0c:7c:f5:5c:
74:16:96:40:38:cf:2d:3b:80:91:12:19:ea:c6:22:39:cb:13:
5a:c4:02:71:2c:22:f0:de:a4:d6:c8:6d:28:58:49:96:2d:69:
1b:ea:97:1e:76:55:81:fb:fd:ba:96:cf:cf:f6:c2:21:63:50:
ee:7b:38:52:13:74:bd:80:6a:b9:c7:ef:da:fd:84:43:c5:0a:
d3:2a:d9:87:25:2e:ae:fd:01:00:d6:3c:a4:af:cd:a2:2d:2f:
bc:cd:0c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:02 2024 by rpki-client on console-ams.rpki-client.org