Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/34LMMSm-wW44Jej02b2mHJG8SaY.roa
File: 34LMMSm-wW44Jej02b2mHJG8SaY.roa (raw, json)
Hash identifier: ZQKfQBSiSx/YY2j91ooXCBdpWdZ+7kw/W9OsCMdKjHE=
Subject key identifier: DF:82:CC:31:29:BE:C1:6E:38:25:E8:F4:D9:BD:A6:1C:91:BC:49:A6
Certificate issuer: /CN=159ba29a75ae1325c0382fb484b321d68d154384
Certificate serial: 018CC8715DDFCA89EDB1ECE534BC4083FD60
Authority key identifier: 15:9B:A2:9A:75:AE:13:25:C0:38:2F:B4:84:B3:21:D6:8D:15:43:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZuimnWuEyXAOC-0hLMh1o0VQ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/34LMMSm-wW44Jej02b2mHJG8SaY.roa
Signing time: Tue 02 Jan 2024 04:32:01 +0000
ROA not before: Tue 02 Jan 2024 04:32:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199334
IP address blocks: 159.255.146.0/24 maxlen: 24
2a13:c680::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 13 Jan 2024 03:22:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:5d:df:ca:89:ed:b1:ec:e5:34:bc:40:83:fd:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=159ba29a75ae1325c0382fb484b321d68d154384
Validity
Not Before: Jan 2 04:32:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df82cc3129bec16e3825e8f4d9bda61c91bc49a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6e:70:41:e0:29:17:e0:fb:96:b4:a0:30:d0:
4e:56:d7:f7:9d:6d:7c:11:0b:e6:07:73:a0:fc:80:
ac:06:98:44:5d:d5:35:fc:1e:e3:fc:74:ae:11:20:
cc:27:01:1f:b4:6d:2c:91:b9:d5:a2:36:00:ea:97:
eb:67:ad:b9:40:2c:37:f4:9d:3c:6e:df:51:91:73:
a3:96:a3:6f:42:c9:a4:dc:ca:93:ef:6a:4c:e8:15:
71:22:53:a3:9d:80:71:35:c7:8e:88:84:81:5a:ea:
9a:9d:05:b7:64:70:33:63:88:8f:ca:bf:69:a8:6c:
38:78:cb:ad:89:d5:63:0d:a1:f4:b1:d3:b8:62:19:
41:2d:a3:89:97:3c:e9:4a:33:16:47:84:0a:96:74:
ab:6c:92:4d:4c:ca:70:de:f7:2d:34:67:52:4d:4c:
58:d7:43:ca:fa:eb:fb:b7:8c:e2:88:33:90:29:ff:
4c:3d:91:2f:9e:29:01:7f:b0:a3:5b:6e:95:86:5c:
0e:7f:66:1e:2f:15:5d:52:0e:91:56:ac:aa:2c:4f:
65:a6:f4:ac:dc:33:c8:7b:18:68:5d:c9:38:62:61:
f1:ee:1e:1c:26:1a:8e:a4:a6:17:fe:fc:68:c5:0b:
96:2e:7d:d2:5e:98:56:e8:40:ea:6a:c8:ca:e9:90:
3c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:82:CC:31:29:BE:C1:6E:38:25:E8:F4:D9:BD:A6:1C:91:BC:49:A6
X509v3 Authority Key Identifier:
keyid:15:9B:A2:9A:75:AE:13:25:C0:38:2F:B4:84:B3:21:D6:8D:15:43:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZuimnWuEyXAOC-0hLMh1o0VQ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/34LMMSm-wW44Jej02b2mHJG8SaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/300195-7e7b-4e99-a52d-caf4fa072682/1/FZuimnWuEyXAOC-0hLMh1o0VQ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.255.146.0/24
IPv6:
2a13:c680::/29
Signature Algorithm: sha256WithRSAEncryption
80:8b:61:52:40:74:92:39:73:df:95:f3:df:c7:94:26:6c:60:
29:5f:0e:cc:bf:0f:80:e3:1f:e9:03:58:c9:44:95:d7:2c:7a:
ec:40:0e:01:80:fa:ae:c7:fa:3c:cd:9f:60:b6:49:6d:ca:a6:
23:35:ca:27:b0:ed:8b:a4:30:6e:09:03:0d:88:93:6a:b5:51:
bd:f5:bd:d2:b0:ba:43:d2:be:d1:d9:ad:6d:8f:50:d3:82:9a:
be:18:d4:4b:da:13:db:6c:a3:e3:a2:f4:b7:ae:ba:76:70:76:
c4:a2:5b:d9:1e:69:89:de:57:26:ab:c7:39:5d:e0:ee:c5:91:
a6:13:45:89:8a:34:f7:31:32:59:89:4c:94:05:10:44:82:36:
79:df:88:d7:67:0d:f2:e8:6e:69:d6:0d:24:94:3b:11:7e:a4:
e7:a5:cf:fa:d2:42:d3:97:aa:25:e4:ec:42:da:fb:42:26:5b:
5d:b4:2a:53:fb:93:8d:16:3b:38:3c:79:35:d9:cc:f0:6b:30:
8a:1f:74:c2:5f:68:ba:57:1a:90:ac:af:3c:29:a4:cc:00:e6:
92:b8:5a:2e:15:8f:d4:2b:00:20:c1:66:89:23:84:6c:58:7b:
f7:f4:57:e1:25:52:96:ab:47:01:d8:10:76:98:25:ea:10:0e:
63:68:79:d5
-----BEGIN CERTIFICATE-----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 at Sat Jan 13 04:13:49 2024 by rpki-client on console-fra.rpki-client.org