Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/luzDOczA6CCHCJWcvtRGWt6UgMQ.roa
File: luzDOczA6CCHCJWcvtRGWt6UgMQ.roa (raw, json)
Hash identifier: QpgRScHQnh0Zv5Ct32jSAR04qBlRnqAEX1c5+adCrg8=
Subject key identifier: 96:EC:C3:39:CC:C0:E8:20:87:08:95:9C:BE:D4:46:5A:DE:94:80:C4
Certificate issuer: /CN=5a376c8008d6abd962341563dd2a4dccaf153cba
Certificate serial: 0185701EE1CA246DCE2384910A27181ECCF3
Authority key identifier: 5A:37:6C:80:08:D6:AB:D9:62:34:15:63:DD:2A:4D:CC:AF:15:3C:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WjdsgAjWq9liNBVj3SpNzK8VPLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/luzDOczA6CCHCJWcvtRGWt6UgMQ.roa
Signing time: Mon 02 Jan 2023 01:35:50 +0000
ROA not before: Mon 02 Jan 2023 01:35:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213250
IP address blocks: 134.255.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:e1:ca:24:6d:ce:23:84:91:0a:27:18:1e:cc:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a376c8008d6abd962341563dd2a4dccaf153cba
Validity
Not Before: Jan 2 01:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96ecc339ccc0e8208708959cbed4465ade9480c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a2:ac:a7:d6:b4:a7:d0:9e:79:67:53:82:e0:
40:ba:c4:e4:80:2b:5f:f9:e8:84:44:3b:21:11:0a:
8e:c7:ba:c7:40:1b:55:41:82:1b:eb:e2:11:8d:da:
3b:90:a6:0d:ee:18:c3:3b:a8:16:f0:a2:91:64:1d:
0d:56:20:cd:d4:06:74:5d:b6:75:99:d7:0b:a3:ff:
31:43:21:7e:00:03:46:90:60:e3:71:3d:06:c3:df:
1b:bb:20:b3:1d:e2:47:55:ab:10:e4:a9:bb:b5:3c:
b5:1f:0a:b1:95:17:5d:10:4d:c7:9e:b8:80:19:d0:
f7:3d:cc:03:cd:f2:b2:c8:7b:81:cf:88:88:93:bd:
7a:58:03:41:e3:64:8e:43:0c:03:47:10:52:0f:57:
12:d0:ba:38:a7:ec:1b:5e:0f:10:55:1f:7d:19:d3:
62:6c:b8:35:4c:96:b4:ae:57:c6:96:59:f2:26:c2:
b1:66:6e:0d:d6:79:11:6a:9e:57:94:a3:f7:e2:40:
ce:f5:68:91:40:bd:af:f2:e6:cc:f7:a7:8c:b4:c9:
d4:d4:29:e1:0b:18:64:59:bd:40:81:b2:79:42:12:
47:23:71:51:23:32:d7:02:77:b0:03:42:89:da:63:
b4:59:c7:4f:ec:34:1c:b2:51:9b:d8:b9:9d:12:3b:
68:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EC:C3:39:CC:C0:E8:20:87:08:95:9C:BE:D4:46:5A:DE:94:80:C4
X509v3 Authority Key Identifier:
keyid:5A:37:6C:80:08:D6:AB:D9:62:34:15:63:DD:2A:4D:CC:AF:15:3C:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WjdsgAjWq9liNBVj3SpNzK8VPLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/luzDOczA6CCHCJWcvtRGWt6UgMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/WjdsgAjWq9liNBVj3SpNzK8VPLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.255.235.0/24
Signature Algorithm: sha256WithRSAEncryption
92:44:f9:15:dc:b4:de:64:56:3d:0c:86:f8:66:7e:3c:27:b6:
59:c2:9f:14:c0:ec:cb:c5:12:15:ac:87:16:c7:06:cd:0e:35:
6f:63:17:98:36:e5:47:79:1e:4f:16:3f:6c:21:7d:85:93:20:
54:de:b6:be:52:12:e1:8f:bc:bc:cf:2e:1c:5a:7b:da:d7:27:
ea:be:cf:89:19:dd:af:92:01:8c:1b:c6:df:60:d9:f5:88:aa:
ee:e0:f3:61:08:c0:5f:1d:00:96:06:20:25:50:6b:66:95:fd:
69:6b:0f:ac:eb:f0:ee:0f:9b:34:33:a8:1b:06:b8:83:02:4d:
4d:7c:12:35:3f:c1:73:7f:91:02:0d:de:f9:09:2b:19:2a:c9:
f9:b4:72:4d:66:10:21:1d:46:38:a1:40:0d:ec:d5:1a:1a:04:
2d:65:f9:c1:e6:e1:dd:21:5c:2e:9e:49:23:8e:3e:c5:49:6a:
9d:9d:88:24:10:f5:3b:87:51:03:b8:61:00:f0:b2:89:e5:b5:
f9:27:d5:70:fe:64:e8:8e:11:dd:d2:79:da:22:25:69:8b:b2:
76:f6:88:4b:dd:63:40:bb:77:ba:20:b3:b4:43:f6:eb:3f:11:
96:11:ae:56:f9:26:b8:65:53:8f:09:86:9a:62:35:68:84:57:
5f:61:37:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:07 2024 by rpki-client on console-fra.rpki-client.org