Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/7f765d-d07e-4a66-92a5-7a94c7c36217/1/uM_1PhkKtnX2MYvCLOxBN2EKqyM.roa
File: uM_1PhkKtnX2MYvCLOxBN2EKqyM.roa (raw, json)
Hash identifier: HulG8j9HLA02fPJ9ifnixdwhoQ43/VJD0eGSqE/bqqg=
Subject key identifier: B8:CF:F5:3E:19:0A:B6:75:F6:31:8B:C2:2C:EC:41:37:61:0A:AB:23
Certificate issuer: /CN=b3e60d38bb37794e72e87e6870d071f2a7dd3e57
Certificate serial: 018774807696F3C3093276E485143F621BD8
Authority key identifier: B3:E6:0D:38:BB:37:79:4E:72:E8:7E:68:70:D0:71:F2:A7:DD:3E:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s-YNOLs3eU5y6H5ocNBx8qfdPlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/7f765d-d07e-4a66-92a5-7a94c7c36217/1/uM_1PhkKtnX2MYvCLOxBN2EKqyM.roa
Signing time: Wed 12 Apr 2023 08:06:28 +0000
ROA not before: Wed 12 Apr 2023 08:06:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 158.146.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:74:80:76:96:f3:c3:09:32:76:e4:85:14:3f:62:1b:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3e60d38bb37794e72e87e6870d071f2a7dd3e57
Validity
Not Before: Apr 12 08:06:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8cff53e190ab675f6318bc22cec4137610aab23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:73:91:23:41:20:91:fc:b8:07:d2:62:6f:eb:
4a:4c:82:6d:d9:1d:39:c2:19:44:f7:0f:26:ab:5e:
21:77:4a:03:38:57:67:93:4c:d9:c0:7d:fa:94:a3:
2b:92:b5:90:ac:61:1d:10:00:0d:82:23:73:73:7a:
72:1e:df:7d:7d:99:ee:f4:1f:a4:61:1b:25:b8:8b:
94:53:e8:4a:1f:96:56:5e:08:2f:4b:4a:c6:b3:0a:
31:2c:2f:06:30:50:1c:6b:10:9d:79:fd:9e:73:90:
3b:c2:55:f1:73:bf:10:48:13:61:42:98:87:a8:f3:
bc:39:f4:ec:c9:2b:b6:58:11:4b:91:26:b1:cf:17:
f5:2b:14:1e:e0:70:8a:f6:18:b6:af:34:05:2f:21:
17:05:75:34:30:ee:29:ae:a9:4a:71:f4:e0:5e:48:
1e:b5:06:71:7f:cb:45:67:6a:32:a6:1a:89:0c:ca:
35:9a:ff:15:05:c4:41:32:a4:29:c5:cb:e3:4f:10:
21:8e:83:8b:b2:1a:db:b6:5c:12:82:83:78:4a:5b:
73:12:da:51:ad:13:76:b8:08:e9:3c:27:d6:24:a7:
4f:23:82:77:5a:ac:c6:fb:36:ad:fc:0b:7f:fc:ec:
16:7b:de:16:1b:91:e5:5f:b3:fc:23:40:0d:fa:6e:
e7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CF:F5:3E:19:0A:B6:75:F6:31:8B:C2:2C:EC:41:37:61:0A:AB:23
X509v3 Authority Key Identifier:
keyid:B3:E6:0D:38:BB:37:79:4E:72:E8:7E:68:70:D0:71:F2:A7:DD:3E:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s-YNOLs3eU5y6H5ocNBx8qfdPlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/7f765d-d07e-4a66-92a5-7a94c7c36217/1/uM_1PhkKtnX2MYvCLOxBN2EKqyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/7f765d-d07e-4a66-92a5-7a94c7c36217/1/s-YNOLs3eU5y6H5ocNBx8qfdPlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.146.137.0/24
Signature Algorithm: sha256WithRSAEncryption
31:7a:a4:2e:56:27:c0:3c:90:96:05:33:ec:61:6f:e3:bf:e6:
b0:b8:7d:11:f8:23:07:65:81:b2:1f:80:6e:94:7f:20:9c:1f:
cd:4b:a5:04:6b:fd:5e:b3:75:92:7f:51:e0:26:0b:67:0a:2e:
41:b1:d2:c9:75:fd:85:7f:2e:aa:2a:c7:a4:10:40:58:ce:91:
0d:27:79:6a:b1:a2:37:cf:16:aa:66:96:46:fc:cf:f4:14:fa:
fc:6c:3e:a0:7d:50:b5:da:a8:84:d5:ff:85:d3:9e:b3:58:fd:
a6:89:f6:5a:67:61:ec:6c:b9:5d:d4:b7:79:da:37:ff:a4:ea:
72:e2:db:e5:be:46:2e:5c:5e:24:e0:ee:15:85:6e:63:73:80:
88:73:50:b6:70:30:49:3a:13:54:6f:f5:f4:67:c9:34:19:4b:
da:e1:36:48:87:23:97:7c:44:57:43:07:53:49:16:b9:d3:35:
0c:fd:11:04:56:46:5d:b6:1b:0a:7d:b5:a8:5e:e2:23:b4:a0:
ad:09:e6:3e:d3:b8:90:37:d0:60:24:7d:29:15:75:fa:14:39:
89:49:58:32:81:ae:0d:c4:16:60:57:c0:e6:e4:8b:9d:cb:b7:
37:91:8d:28:51:8b:f2:69:17:6f:bf:81:62:07:9b:5b:fe:c8:
c7:db:7f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:03 2024 by rpki-client on console-ams.rpki-client.org