Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c2df59-9f1e-48df-8466-c6495853cc1a/1/272KW7GtkQGje1cLqGh-KRvHthg.roa
File: 272KW7GtkQGje1cLqGh-KRvHthg.roa (raw, json)
Hash identifier: 5BpY2xk+2zwMEYrsPuHlmVmk+p+U9mO6TgNf6m7xkxc=
Subject key identifier: DB:BD:8A:5B:B1:AD:91:01:A3:7B:57:0B:A8:68:7E:29:1B:C7:B6:18
Certificate issuer: /CN=1d2fefbd168f18661eca15569dc6218f86746942
Certificate serial: 018570C2D88C4ED5E0519D769759DCA174A9
Authority key identifier: 1D:2F:EF:BD:16:8F:18:66:1E:CA:15:56:9D:C6:21:8F:86:74:69:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HS_vvRaPGGYeyhVWncYhj4Z0aUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c2df59-9f1e-48df-8466-c6495853cc1a/1/272KW7GtkQGje1cLqGh-KRvHthg.roa
Signing time: Mon 02 Jan 2023 04:34:55 +0000
ROA not before: Mon 02 Jan 2023 04:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 786
IP address blocks: 140.203.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:d8:8c:4e:d5:e0:51:9d:76:97:59:dc:a1:74:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d2fefbd168f18661eca15569dc6218f86746942
Validity
Not Before: Jan 2 04:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbbd8a5bb1ad9101a37b570ba8687e291bc7b618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:96:41:5b:7f:78:30:c5:0c:6d:97:f1:70:3f:
3e:60:47:ca:58:ff:47:fe:15:ea:ff:54:f0:6f:91:
99:81:b1:e1:23:93:a6:7b:90:6a:1f:f2:09:e0:78:
8a:0b:8f:b5:6e:8c:e3:c1:c7:0b:f8:37:13:b9:60:
41:de:be:9b:57:37:8d:68:a5:0a:0c:24:4d:be:cb:
e9:e9:71:86:91:84:e6:51:88:8f:f9:6c:1b:ff:fe:
79:1e:9b:fa:41:7e:ef:3f:06:5a:a5:02:b7:8a:fe:
cf:d0:ee:79:cd:d3:45:81:05:12:eb:7b:a9:e3:6a:
ed:35:02:08:24:35:ea:41:22:6f:bb:ae:b8:22:41:
c4:d5:0a:1e:7c:5a:38:08:aa:6b:2d:71:23:b9:7f:
4e:3c:d1:86:7f:96:ea:e4:a5:6b:56:3b:93:39:45:
e4:f0:e7:63:b8:1e:7c:63:98:3c:39:c7:01:28:57:
3e:e2:aa:a3:cd:8b:1b:e8:be:0e:be:bd:ba:4c:97:
22:77:d7:19:97:95:5a:67:39:62:10:cc:d8:5b:12:
28:81:90:76:0e:1d:38:4e:a9:12:1e:d5:e6:ee:2f:
e7:4f:ec:92:7d:59:6c:1f:ea:0e:33:4d:25:74:f3:
14:96:03:a7:6c:3d:55:b6:17:79:20:9c:31:8e:73:
39:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BD:8A:5B:B1:AD:91:01:A3:7B:57:0B:A8:68:7E:29:1B:C7:B6:18
X509v3 Authority Key Identifier:
keyid:1D:2F:EF:BD:16:8F:18:66:1E:CA:15:56:9D:C6:21:8F:86:74:69:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HS_vvRaPGGYeyhVWncYhj4Z0aUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c2df59-9f1e-48df-8466-c6495853cc1a/1/272KW7GtkQGje1cLqGh-KRvHthg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c2df59-9f1e-48df-8466-c6495853cc1a/1/HS_vvRaPGGYeyhVWncYhj4Z0aUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.203.0.0/16
Signature Algorithm: sha256WithRSAEncryption
77:d3:28:a2:45:29:91:05:af:af:c9:9d:b3:79:83:ad:f2:8f:
dc:d7:ba:a7:da:9b:82:32:3b:aa:89:9b:78:eb:b6:3c:39:d6:
c8:08:e2:83:ce:ba:ad:ac:47:ca:58:e7:93:c9:fc:3d:99:99:
a1:f8:6f:22:e7:80:b0:0a:89:a1:ec:fc:30:87:91:c5:dd:b7:
33:f0:83:57:fa:28:24:39:76:ee:66:25:43:48:54:4a:42:f8:
93:26:72:6d:ec:e9:4f:fa:74:63:55:b2:0c:fd:11:be:45:df:
73:b9:0f:db:7f:96:d0:e5:7d:1f:e3:3c:ca:80:cc:17:35:8f:
41:3c:db:2e:28:c5:77:57:ff:17:69:c8:06:2f:b1:06:0c:ab:
78:61:98:37:bc:d5:ee:78:b8:20:10:10:af:d4:55:eb:8f:7f:
42:14:c0:8e:d2:23:58:36:f1:95:e0:2d:01:33:6e:29:ad:18:
22:5d:5e:66:38:64:04:4d:03:40:a9:0d:ae:e6:45:39:a9:2b:
d0:89:64:a2:4b:eb:eb:0f:9e:c7:83:3f:7a:b1:20:4c:80:1b:
24:50:11:5b:e4:30:82:e8:a9:62:42:d2:82:2a:0e:99:cf:df:
3d:64:32:5b:1d:2a:99:ce:b2:fb:3e:ad:7f:1b:d9:eb:9a:0a:
50:79:3f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:27 2024 by rpki-client on console-fra.rpki-client.org