Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/88c204-bc30-4b9d-b9ec-5686279ec96e/1/j4Ak8mNExx4vrQTpgekJpEvwZGs.roa
File: j4Ak8mNExx4vrQTpgekJpEvwZGs.roa (raw, json)
Hash identifier: 3YIbPqnfb+/AnnrdgBbU/nH16J78Qp6DY3/8fo0u4EA=
Subject key identifier: 8F:80:24:F2:63:44:C7:1E:2F:AD:04:E9:81:E9:09:A4:4B:F0:64:6B
Certificate issuer: /CN=b2e391169f0c9f21aa8f2e89e7375c72ec674feb
Certificate serial: 0185730CE1A48EA1C641CE1FE6273265C9C1
Authority key identifier: B2:E3:91:16:9F:0C:9F:21:AA:8F:2E:89:E7:37:5C:72:EC:67:4F:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suORFp8MnyGqjy6J5zdccuxnT-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/88c204-bc30-4b9d-b9ec-5686279ec96e/1/j4Ak8mNExx4vrQTpgekJpEvwZGs.roa
Signing time: Mon 02 Jan 2023 15:15:02 +0000
ROA not before: Mon 02 Jan 2023 15:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 553
IP address blocks: 134.34.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:e1:a4:8e:a1:c6:41:ce:1f:e6:27:32:65:c9:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e391169f0c9f21aa8f2e89e7375c72ec674feb
Validity
Not Before: Jan 2 15:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f8024f26344c71e2fad04e981e909a44bf0646b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:63:01:b4:93:45:b3:bf:31:8c:29:57:36:ce:
35:a3:b5:8c:b6:58:66:b3:5d:3e:81:ce:84:94:fc:
90:78:2c:75:e8:8b:b1:03:17:05:4e:f8:a3:d7:ee:
04:51:fc:1f:6c:61:6b:7b:71:ea:1c:34:5f:0f:d1:
91:5d:54:fb:ab:53:9d:9b:35:d0:e2:d5:ba:38:df:
77:35:b0:35:49:0b:9c:37:4b:4e:97:d5:f0:bb:6c:
4f:9b:d0:15:47:4d:72:65:74:4f:c0:55:d0:80:e6:
fc:fd:ee:dd:c8:29:e0:ed:52:a2:15:8c:c0:f4:55:
65:11:17:7e:89:26:97:83:0c:ea:5c:60:14:62:21:
8f:95:c3:04:68:66:cc:25:03:31:ff:22:7a:db:4a:
e5:6c:e9:20:22:67:8b:d5:14:3d:f4:12:f2:61:0f:
7e:9a:fd:89:98:dd:d4:d4:6f:92:64:d8:7b:06:e6:
d3:f2:19:5a:fc:30:cd:ff:53:84:3e:85:8e:b0:c9:
88:24:d6:e7:a9:c7:99:a5:b4:f3:5b:f9:3a:9e:29:
97:d8:3d:f5:5c:7c:1b:cc:62:ed:1a:a6:e4:34:e4:
df:1b:87:90:8b:bf:d8:5a:c4:8c:93:f4:9b:fe:6b:
9d:98:47:51:56:02:81:ac:80:d3:c2:41:b9:d9:fc:
98:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:80:24:F2:63:44:C7:1E:2F:AD:04:E9:81:E9:09:A4:4B:F0:64:6B
X509v3 Authority Key Identifier:
keyid:B2:E3:91:16:9F:0C:9F:21:AA:8F:2E:89:E7:37:5C:72:EC:67:4F:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suORFp8MnyGqjy6J5zdccuxnT-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/88c204-bc30-4b9d-b9ec-5686279ec96e/1/j4Ak8mNExx4vrQTpgekJpEvwZGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/88c204-bc30-4b9d-b9ec-5686279ec96e/1/suORFp8MnyGqjy6J5zdccuxnT-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0c:10:ff:4f:3c:e7:98:d5:cd:79:83:5d:6c:39:f4:e9:27:36:
19:64:f3:4c:20:d0:c0:a8:4e:4f:51:de:1a:66:75:9f:1c:24:
e1:8b:f9:5f:60:2c:7c:82:c0:33:ae:d7:28:8e:41:1e:af:dc:
a9:ec:dc:81:8d:14:95:c8:83:f7:a5:4b:79:c5:89:b0:52:47:
43:53:1d:4b:c3:e2:b0:7e:1d:e8:ce:9c:fe:4b:93:ca:ba:ef:
ed:7c:c6:66:df:78:fe:74:29:0f:b2:32:2e:cb:0c:6b:62:8e:
ab:b9:dc:06:08:39:9c:91:2b:c3:ca:a5:d6:96:c5:e0:a1:3a:
58:4d:6c:64:cd:ba:2a:05:3a:68:49:8c:2d:64:d3:3f:e7:b8:
6b:e4:ac:0e:8e:e8:fb:25:33:f6:2c:3c:b7:c2:1a:14:04:2a:
25:46:38:de:6a:cd:27:51:6c:be:ea:8b:62:65:17:bd:01:3e:
3f:de:52:ac:82:18:bc:ae:0b:69:64:36:1b:b4:79:39:38:de:
a8:57:54:cb:c5:87:db:c4:14:5f:34:68:7b:7c:2c:fd:53:fd:
51:52:30:3d:de:69:14:11:ea:fd:1a:dd:47:9d:be:f8:c0:90:
40:43:ce:46:93:57:41:af:19:24:09:6f:d5:eb:6a:8e:3b:b4:
cb:79:fa:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org