Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/L2-VMzTW7HwJnCgUDihhV9TbUMA.roa
File: L2-VMzTW7HwJnCgUDihhV9TbUMA.roa (raw, json)
Hash identifier: KYkKPkc5sMUrUMmq4ZvsSVk4LYjoiXCjswzL68JZhdA=
Subject key identifier: 2F:6F:95:33:34:D6:EC:7C:09:9C:28:14:0E:28:61:57:D4:DB:50:C0
Certificate issuer: /CN=ab30921d28c78ede81842f712e6cf72bde5a6080
Certificate serial: 01856C4A404262A3DC3DA738AA424365D030
Authority key identifier: AB:30:92:1D:28:C7:8E:DE:81:84:2F:71:2E:6C:F7:2B:DE:5A:60:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qzCSHSjHjt6BhC9xLmz3K95aYIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/L2-VMzTW7HwJnCgUDihhV9TbUMA.roa
Signing time: Sun 01 Jan 2023 07:44:43 +0000
ROA not before: Sun 01 Jan 2023 07:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13335
IP address blocks: 5.149.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:40:42:62:a3:dc:3d:a7:38:aa:42:43:65:d0:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab30921d28c78ede81842f712e6cf72bde5a6080
Validity
Not Before: Jan 1 07:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f6f953334d6ec7c099c28140e286157d4db50c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bf:0d:f2:04:56:e8:05:3a:b3:87:52:7a:21:
a9:33:c3:ee:b2:df:02:78:9f:52:e2:f6:7c:d8:65:
ab:e3:b0:5a:b2:54:af:97:55:5c:72:8f:7d:eb:3e:
7b:7c:6c:92:f3:f1:6f:a7:ea:5f:b4:34:ca:69:93:
3e:ab:ad:87:50:f2:fd:d1:a3:d0:65:2c:8e:17:b8:
5d:99:ec:0f:65:6e:c4:7e:b4:c8:eb:68:f4:f1:5a:
21:09:07:a4:36:5c:d8:fe:c4:cc:f5:53:59:3d:18:
6a:1d:bd:3f:bd:f9:ee:bb:6c:68:2a:0f:6e:c4:19:
ec:c3:33:3d:42:1f:b0:a3:c5:63:3f:ab:29:30:1c:
1f:06:c4:27:34:01:a3:39:95:4b:f4:a5:05:51:96:
9f:ed:91:8d:b0:0b:ef:5f:64:d0:76:5c:37:e7:4f:
73:cb:c6:be:b0:67:67:48:0c:69:5e:9c:eb:c4:07:
ec:e0:3a:bb:5b:03:b5:c8:21:e4:2b:f9:a4:be:62:
df:55:bc:41:c7:1f:0d:25:9c:f6:6f:bb:9a:1e:09:
f6:ad:63:9f:49:73:9b:e3:79:2c:71:6a:2a:64:90:
6e:5a:24:12:ce:c3:6a:a4:b9:70:0b:af:7a:12:73:
37:bd:76:d9:ab:38:a9:7a:84:b0:10:ee:49:9a:5a:
75:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6F:95:33:34:D6:EC:7C:09:9C:28:14:0E:28:61:57:D4:DB:50:C0
X509v3 Authority Key Identifier:
keyid:AB:30:92:1D:28:C7:8E:DE:81:84:2F:71:2E:6C:F7:2B:DE:5A:60:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qzCSHSjHjt6BhC9xLmz3K95aYIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/L2-VMzTW7HwJnCgUDihhV9TbUMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3cd7ff-20d2-4cec-aeca-354399724b1e/1/qzCSHSjHjt6BhC9xLmz3K95aYIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.1.0/24
Signature Algorithm: sha256WithRSAEncryption
36:62:9b:e6:69:79:cc:cd:ce:44:d9:64:c4:7e:87:db:ce:d4:
dc:a7:1e:aa:bb:1a:d0:9a:d0:3f:88:6c:53:2f:8f:e4:6f:48:
53:a2:67:e2:8c:f9:ba:49:f9:77:68:b3:5b:49:ef:3a:fd:e9:
a6:a3:7f:e9:05:e9:05:2d:83:b5:dd:cc:3e:2f:60:eb:af:4e:
5f:16:5d:a8:04:0e:dd:d6:23:d1:2d:e9:43:73:c4:d2:f3:8d:
52:fd:5f:c6:5d:61:55:2c:00:db:57:79:23:bb:54:a3:22:cb:
e3:c5:dc:f3:2e:05:be:03:a9:19:2b:e3:df:26:bf:d3:09:e7:
ad:ea:dd:8b:d6:29:78:68:c0:81:99:0b:34:d9:fa:19:4d:21:
84:b6:66:8b:50:17:1d:30:bb:3b:d1:f7:b6:2a:77:ea:a4:10:
af:7a:63:45:24:24:4d:83:64:5b:77:25:62:a2:d2:0e:6e:1d:
1d:c9:40:28:9a:2b:7d:3e:07:49:fa:24:54:a7:4a:f0:9a:ed:
53:7c:ea:29:08:5a:e6:00:6a:4f:5d:ea:da:1e:43:d7:99:19:
40:c6:cc:d7:15:09:80:1d:df:be:de:50:96:e7:13:f5:34:7d:
b2:d2:bc:a1:e9:98:1a:24:ac:fa:47:d7:27:7a:12:c2:36:1a:
6a:64:94:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:10 2023 by rpki-client on console-ams.rpki-client.org