Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/0lORq5F4RdrX_1hqNN8_vab_ACU.roa
File: 0lORq5F4RdrX_1hqNN8_vab_ACU.roa (raw, json)
Hash identifier: T+oqt/iekiyEYaqE9P3Za9rQ4m4bY3XJV//oJbvlRHo=
Subject key identifier: D2:53:91:AB:91:78:45:DA:D7:FF:58:6A:34:DF:3F:BD:A6:FF:00:25
Certificate issuer: /CN=0ef47d753d25289fd98794974aa0536010567bd9
Certificate serial: 018C1E67163CC6613B774B0DAF3FDFE5A1F0
Authority key identifier: 0E:F4:7D:75:3D:25:28:9F:D9:87:94:97:4A:A0:53:60:10:56:7B:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/0lORq5F4RdrX_1hqNN8_vab_ACU.roa
Signing time: Thu 30 Nov 2023 04:05:21 +0000
ROA not before: Thu 30 Nov 2023 04:05:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 104.129.174.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1e:67:16:3c:c6:61:3b:77:4b:0d:af:3f:df:e5:a1:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef47d753d25289fd98794974aa0536010567bd9
Validity
Not Before: Nov 30 04:05:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d25391ab917845dad7ff586a34df3fbda6ff0025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5c:99:5d:6e:a2:5c:29:0f:a7:a2:ec:4d:53:
0c:9d:2c:60:7c:5a:31:6a:f1:bb:81:86:e2:46:a2:
7b:48:f4:a6:4c:b9:ad:2d:8c:51:97:17:ec:f0:a1:
67:e5:a6:49:af:10:a6:02:74:10:a9:b2:24:29:b7:
e3:61:70:44:30:10:f3:cc:65:78:c8:30:66:ee:7e:
6b:c0:e3:53:3d:e5:db:bc:11:a5:85:e3:3d:2c:73:
9d:c4:f8:40:63:79:e7:89:63:dd:4e:e2:03:61:c6:
b1:5f:9d:06:5f:68:cb:bb:35:60:ef:0a:5a:7a:6a:
66:8b:ae:94:1d:97:11:e4:8e:ab:e6:11:c2:7b:5e:
af:64:07:4a:d0:fd:35:bd:98:2d:65:07:4b:e6:54:
1a:0d:89:f6:bd:6e:73:3c:1d:e1:22:ea:93:0d:45:
23:7f:94:14:68:89:14:28:f4:ac:5c:89:a3:bf:d5:
56:70:35:89:76:6e:aa:d6:49:37:92:44:fc:f6:f9:
fc:73:24:27:06:f4:1a:86:20:ec:03:0d:43:2e:76:
48:cd:c3:60:b0:c3:42:76:a4:6b:f6:48:30:62:ed:
b0:c4:d8:10:ea:ad:9c:45:0a:5d:e4:e7:31:0c:43:
1b:9c:60:16:83:aa:6b:b3:20:2f:db:dd:84:02:9a:
8c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:53:91:AB:91:78:45:DA:D7:FF:58:6A:34:DF:3F:BD:A6:FF:00:25
X509v3 Authority Key Identifier:
keyid:0E:F4:7D:75:3D:25:28:9F:D9:87:94:97:4A:A0:53:60:10:56:7B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/0lORq5F4RdrX_1hqNN8_vab_ACU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.129.174.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:45:66:e1:17:9a:9f:f9:64:f8:3b:cb:b9:b2:40:6f:02:cf:
4c:53:07:da:1d:e5:6d:c8:c1:78:11:e6:b0:cd:2d:33:54:a8:
24:81:8c:d8:89:18:19:a7:fb:a8:b0:43:3e:25:b4:a1:53:4f:
55:da:ce:91:24:a8:7b:e4:10:27:d3:fa:cf:8f:60:20:96:18:
31:52:ed:d8:ee:1e:c5:0c:74:37:f5:57:aa:68:28:b2:fa:65:
ea:52:d5:d4:ff:c1:83:fc:2f:03:68:f0:48:36:e9:45:36:5f:
84:ed:02:99:ec:fb:9e:22:ed:bb:49:e8:d2:d5:4f:75:d2:12:
a3:f7:9e:77:58:fc:84:c8:64:fb:15:de:2a:f1:83:6d:0c:c1:
cc:a7:17:db:07:82:26:4e:ca:37:6b:4f:38:ad:af:2b:33:ea:
8f:b2:e9:b4:81:88:a9:dd:cb:0c:bd:a9:ad:b3:b2:6c:a4:08:
26:09:80:ce:7c:1a:41:e1:d6:b4:28:0d:63:11:5d:64:48:fd:
18:41:5d:b8:1f:18:57:af:37:90:97:5d:c4:a1:c2:8f:41:66:
2c:07:41:c2:02:66:a7:cd:af:cf:28:fa:3e:09:5b:c2:60:36:
20:f3:ed:14:53:f2:8f:e0:3f:53:d3:56:28:41:50:fe:66:ac:
66:c8:88:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:22 2024 by rpki-client on console-ams.rpki-client.org