Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/AZwrGVF9FDPmVeHPLpmof2CsltI.roa
File: AZwrGVF9FDPmVeHPLpmof2CsltI.roa (raw, json)
Hash identifier: mh6oddwgi8FKGc/CyrEcV7uJatkHpDi1EJIRkRdPyBU=
Subject key identifier: 01:9C:2B:19:51:7D:14:33:E6:55:E1:CF:2E:99:A8:7F:60:AC:96:D2
Certificate issuer: /CN=b19e1b7e810d6492abdb807fc8dde8675bd6bf2c
Certificate serial: 01856BA56F59C6F2BAFC4109150C2F4F4D91
Authority key identifier: B1:9E:1B:7E:81:0D:64:92:AB:DB:80:7F:C8:DD:E8:67:5B:D6:BF:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZ4bfoENZJKr24B_yN3oZ1vWvyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/AZwrGVF9FDPmVeHPLpmof2CsltI.roa
Signing time: Sun 01 Jan 2023 04:44:41 +0000
ROA not before: Sun 01 Jan 2023 04:44:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8339
IP address blocks: 176.120.160.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:a5:6f:59:c6:f2:ba:fc:41:09:15:0c:2f:4f:4d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b19e1b7e810d6492abdb807fc8dde8675bd6bf2c
Validity
Not Before: Jan 1 04:44:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=019c2b19517d1433e655e1cf2e99a87f60ac96d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b8:18:72:70:7a:f5:40:b2:49:4b:41:f8:96:
3e:81:e1:53:43:ef:db:28:e7:ca:c9:c5:8d:70:58:
43:9b:39:84:97:5f:f0:81:6d:09:c5:43:7e:bf:03:
62:01:2f:57:8e:c0:fd:68:b6:05:1a:49:83:f3:a7:
69:66:17:d0:ad:68:19:dc:99:a0:45:73:86:70:90:
c9:ef:ef:ca:bf:c7:6f:3d:a5:2f:dc:fa:ef:0e:f7:
dd:1e:dd:7a:9e:62:4b:e5:c2:b7:ae:c7:10:bf:60:
ea:4f:95:c4:09:2a:f2:5a:9b:d7:06:5b:e1:10:ce:
33:30:a9:bf:94:13:70:46:25:b7:c8:5f:38:f1:e4:
ec:28:c2:e8:6b:d9:50:10:04:ce:e0:22:7f:08:f9:
f8:61:4d:f7:cf:d4:22:22:74:f7:37:80:5d:09:3d:
d3:1f:bd:12:02:81:58:03:16:d8:d3:9b:d3:fb:f2:
87:79:58:55:b8:e8:c8:23:12:6a:96:10:4c:56:d2:
f0:00:43:87:c7:8c:be:68:0c:d1:38:ff:8d:7b:5e:
e7:b6:e2:c4:f7:6b:58:ae:d5:3a:f8:88:2f:4b:95:
5f:00:34:5f:17:16:23:05:39:ec:72:26:a2:67:82:
e8:cb:55:07:60:64:c4:5d:41:5a:ae:d8:41:f6:93:
65:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:9C:2B:19:51:7D:14:33:E6:55:E1:CF:2E:99:A8:7F:60:AC:96:D2
X509v3 Authority Key Identifier:
keyid:B1:9E:1B:7E:81:0D:64:92:AB:DB:80:7F:C8:DD:E8:67:5B:D6:BF:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZ4bfoENZJKr24B_yN3oZ1vWvyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/AZwrGVF9FDPmVeHPLpmof2CsltI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.120.160.0/21
Signature Algorithm: sha256WithRSAEncryption
87:70:00:01:ce:8f:92:24:6e:d2:6d:34:01:4e:0e:fc:6e:e3:
a8:28:e9:87:c7:58:db:e4:e7:33:c4:c1:c3:32:5f:e8:b5:3a:
e0:c2:09:c4:bf:20:fa:80:2a:5a:e9:cb:c5:a2:1c:60:d0:4d:
ae:75:eb:d5:27:fb:e1:cf:7c:f2:f8:4b:9f:62:13:fc:ca:ee:
14:bd:1c:4c:64:45:cc:74:2c:52:6a:e1:79:b5:98:8c:60:e8:
a0:f7:55:9f:37:9d:e2:39:08:28:c7:8b:70:04:f5:30:7f:19:
82:c1:3b:8c:15:78:45:b5:25:99:12:ae:90:f7:f5:bb:a6:d1:
4f:5d:8b:92:a6:67:08:ae:e8:fb:f9:05:f8:bc:69:13:c8:bd:
bf:78:87:a3:36:7c:53:de:7d:63:7f:33:80:dc:6f:6f:93:65:
f5:24:7e:24:aa:4e:5c:d8:2e:5e:84:03:38:51:55:a1:34:d5:
13:9c:78:70:97:1c:1f:ed:58:d3:8f:75:14:eb:2f:54:3e:12:
39:72:8c:63:cf:40:aa:6d:6c:c8:79:be:0d:4d:3c:89:e0:8c:
34:8f:a3:a0:27:58:fa:49:64:43:bc:5a:d4:69:32:df:9c:1d:
e8:4b:b1:95:22:49:8a:80:44:78:e0:45:6a:68:17:8a:14:ed:
f9:0d:ea:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:54 2024 by rpki-client on console-ams.rpki-client.org