Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/0u9ctpOFPiT_Vh46XEruXgm6N_g.roa
File: 0u9ctpOFPiT_Vh46XEruXgm6N_g.roa (raw, json)
Hash identifier: wkSYn7h4yJTT8Yor4XemX1D6m6KEoDzk6qJDrGK5FIs=
Subject key identifier: D2:EF:5C:B6:93:85:3E:24:FF:56:1E:3A:5C:4A:EE:5E:09:BA:37:F8
Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672
Certificate serial: 01856F14D0DDE42E12B89EEA048855C9AD3F
Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/0u9ctpOFPiT_Vh46XEruXgm6N_g.roa
Signing time: Sun 01 Jan 2023 20:45:13 +0000
ROA not before: Sun 01 Jan 2023 20:45:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51327
IP address blocks: 139.45.214.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:d0:dd:e4:2e:12:b8:9e:ea:04:88:55:c9:ad:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672
Validity
Not Before: Jan 1 20:45:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2ef5cb693853e24ff561e3a5c4aee5e09ba37f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:56:82:90:14:a4:e8:d9:b1:7e:50:be:a5:72:
5f:f8:36:23:5c:ef:4b:c8:79:70:b4:65:8a:c4:98:
bf:11:b9:33:33:0b:d0:2b:e3:ba:e1:d3:1a:dd:00:
15:c2:9f:92:65:49:ec:67:7a:cf:c3:31:e9:f6:56:
d0:ba:30:4b:2c:ce:07:f1:ee:56:14:af:34:f6:c6:
c0:16:59:80:b1:01:0b:c2:85:c2:76:a7:99:dd:09:
ca:ac:0e:88:a9:72:d4:52:2e:2c:cf:ee:5e:91:20:
ba:86:1b:8f:f0:f5:58:b2:03:b6:d9:67:13:78:a6:
69:40:b1:1f:e2:ac:78:cd:b3:40:d1:f2:c2:3a:f6:
54:e3:fe:c5:96:61:f2:9a:50:45:82:2e:ca:38:6c:
29:61:20:87:48:92:ef:57:7f:dd:53:26:65:c3:6a:
cd:d5:21:80:92:10:14:00:35:ca:b1:cc:d8:4b:8c:
3e:75:c7:9e:cd:b2:b7:f9:b4:37:1a:82:26:a6:c8:
8e:13:99:c6:83:c2:f2:1a:21:59:de:66:5a:df:67:
e7:9d:83:7c:32:dc:44:26:71:06:80:58:03:09:4a:
d4:ee:36:78:d6:6e:a4:1d:10:65:57:69:d1:ab:7f:
e1:96:81:af:d0:32:a3:d7:30:d5:36:a6:60:74:f5:
7a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:EF:5C:B6:93:85:3E:24:FF:56:1E:3A:5C:4A:EE:5E:09:BA:37:F8
X509v3 Authority Key Identifier:
keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/0u9ctpOFPiT_Vh46XEruXgm6N_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.45.214.0/23
Signature Algorithm: sha256WithRSAEncryption
70:c1:11:a9:76:89:62:98:1a:ac:8f:bd:13:69:d7:16:21:81:
c7:34:70:c8:95:e4:7a:06:75:59:51:b4:28:a2:8d:43:95:48:
68:83:c2:74:c1:67:79:00:cc:2f:3f:2e:92:2d:ad:8e:6f:f3:
b3:b8:fb:3b:84:c1:20:cf:5f:dc:98:23:65:5f:ab:a8:27:74:
97:24:a3:53:31:61:7a:9e:05:35:a6:8a:f4:49:ea:e8:a0:9c:
83:e8:8a:a4:79:24:88:d8:32:7f:e7:e3:da:8c:a2:62:d1:d5:
05:6c:c7:8e:8a:b1:ce:c4:9c:f4:db:2a:11:26:6f:15:65:95:
e2:4c:3a:f7:e8:c5:5d:88:cf:1a:aa:4a:10:58:06:61:84:03:
52:f5:c7:bb:66:2d:0b:9c:48:b4:80:22:92:ce:c4:aa:58:40:
1b:7c:b7:aa:4e:0a:6f:7b:fe:44:ba:cf:42:24:f3:87:e9:e4:
89:03:66:2e:cb:34:ad:cf:d6:df:5e:a9:e2:6d:67:dd:3f:d8:
86:be:c7:aa:ff:2e:4c:e5:09:5a:a9:de:5b:1c:fd:78:a7:7d:
7f:85:70:fb:99:5f:ee:ef:96:04:85:36:67:ca:c9:4c:20:15:
e0:e6:a9:ee:37:cb:65:7a:fe:b4:b9:c2:f0:1b:7a:fe:15:a8:
1a:9b:91:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:09 2024 by rpki-client on console-ams.rpki-client.org