Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/18b690-c5ae-4fb4-8bf8-63a0be6a8e5f/1/c-zqYoZjYPDgkXmkkL2B44mtZqc.roa
File: c-zqYoZjYPDgkXmkkL2B44mtZqc.roa (raw, json)
Hash identifier: vaSn1v4dC+P2WzrATvdi2um1P98He19BU2aEEWtl0Tk=
Subject key identifier: 73:EC:EA:62:86:63:60:F0:E0:91:79:A4:90:BD:81:E3:89:AD:66:A7
Certificate issuer: /CN=aee8e5dfec683ae5f1a0ebe0fb96fa256b304762
Certificate serial: 01856C13732125FB0F20D3DF798F3A96E8BB
Authority key identifier: AE:E8:E5:DF:EC:68:3A:E5:F1:A0:EB:E0:FB:96:FA:25:6B:30:47:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rujl3-xoOuXxoOvg-5b6JWswR2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/18b690-c5ae-4fb4-8bf8-63a0be6a8e5f/1/c-zqYoZjYPDgkXmkkL2B44mtZqc.roa
Signing time: Sun 01 Jan 2023 06:44:52 +0000
ROA not before: Sun 01 Jan 2023 06:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210458
IP address blocks: 146.19.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:73:21:25:fb:0f:20:d3:df:79:8f:3a:96:e8:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee8e5dfec683ae5f1a0ebe0fb96fa256b304762
Validity
Not Before: Jan 1 06:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73ecea62866360f0e09179a490bd81e389ad66a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:66:35:6a:bc:e2:02:36:5b:62:6b:f6:97:f8:
e1:ab:e4:e2:f0:27:85:d4:2e:a1:95:3d:89:b4:ae:
46:a1:29:e9:84:ff:61:f9:b8:62:3e:ed:dd:3a:f8:
02:16:9d:24:e5:28:8e:ca:5d:b4:b8:e0:7d:9d:a6:
a4:3b:00:41:c3:33:9b:ce:6c:4b:21:8e:2e:ae:da:
c9:f9:ca:d1:0f:21:c7:d2:e9:fc:e5:0a:c1:ca:81:
7f:8d:e3:42:9c:bc:38:22:44:ad:9a:8a:55:28:62:
80:65:6b:3d:c1:fc:2e:b6:f2:46:d6:a4:4f:54:d9:
5b:45:75:23:2d:13:5b:3d:b7:76:38:ec:be:6c:98:
82:73:3a:cd:fc:3a:fc:43:d5:60:a5:54:ca:41:48:
d1:4f:39:3c:a3:d9:ca:97:f5:43:b3:2b:bd:54:18:
3d:28:c1:7c:3d:2c:ba:04:d4:f4:08:8b:83:9a:fb:
8e:36:92:b3:41:5b:a0:0a:e3:6a:a3:cd:52:c3:c0:
d9:57:f8:30:31:99:4b:09:c1:2e:76:99:ec:71:3f:
f8:c0:74:4e:9f:4f:21:28:63:4a:fc:bd:02:2a:62:
7b:cf:ed:db:49:d0:d2:46:10:53:53:0c:05:7d:e1:
48:e0:d7:86:14:eb:fe:a7:26:19:ce:b5:9d:11:01:
3a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:EC:EA:62:86:63:60:F0:E0:91:79:A4:90:BD:81:E3:89:AD:66:A7
X509v3 Authority Key Identifier:
keyid:AE:E8:E5:DF:EC:68:3A:E5:F1:A0:EB:E0:FB:96:FA:25:6B:30:47:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rujl3-xoOuXxoOvg-5b6JWswR2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/18b690-c5ae-4fb4-8bf8-63a0be6a8e5f/1/c-zqYoZjYPDgkXmkkL2B44mtZqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/18b690-c5ae-4fb4-8bf8-63a0be6a8e5f/1/rujl3-xoOuXxoOvg-5b6JWswR2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.141.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:04:40:2d:4b:4c:e2:02:23:2d:d1:54:ba:30:16:32:a6:e4:
51:6e:8b:20:5f:88:d3:99:64:a5:5a:51:db:dc:60:35:c1:ab:
5d:94:92:cf:7c:66:c6:56:61:0c:e6:5b:dc:71:13:5a:dc:7f:
d4:6a:bd:ec:54:43:90:fd:c6:83:43:82:2e:36:7b:cf:52:da:
0b:57:82:ea:11:69:0d:61:a0:0d:23:45:4f:34:c7:39:f7:0b:
ee:6e:92:30:19:a8:aa:62:a0:55:05:4f:41:e3:c7:fa:66:fa:
ce:f3:9c:6e:cf:38:c1:29:ae:9c:08:d2:ba:e0:4c:bd:95:22:
80:8f:37:18:50:ad:17:bf:27:d6:05:80:ce:4d:d5:f8:8e:9c:
98:c5:ed:df:8a:ba:65:69:d1:9e:78:a9:16:b3:81:8f:da:ca:
f1:4d:1a:1d:d4:16:df:0a:27:22:89:d0:00:d5:38:33:f8:b2:
49:b4:02:9f:37:2e:32:0c:0c:2c:0e:b3:c0:a9:d5:09:a3:e8:
5d:2a:8b:fd:62:c0:47:88:d4:6d:b8:42:91:5d:dc:c4:8c:ee:
52:ed:e3:ab:5c:52:7c:e2:f1:e7:0c:dd:f8:60:0e:45:22:e2:
2b:0d:00:1c:4c:1d:a5:46:00:a1:a2:7d:8a:d8:2c:7d:03:7d:
1e:f3:4d:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:08 2024 by rpki-client on console-fra.rpki-client.org