Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/87702a-3af6-46c7-a123-a2e24f980b3f/1/4jE8w3AapHFIA4ssR1eVkhPmjAU.roa
File: 4jE8w3AapHFIA4ssR1eVkhPmjAU.roa (raw, json)
Hash identifier: MB6ou4if1sxRkzKCzuF8pgEivDSTn+fLjJFg6allCpA=
Subject key identifier: E2:31:3C:C3:70:1A:A4:71:48:03:8B:2C:47:57:95:92:13:E6:8C:05
Certificate issuer: /CN=0b1870c96ef09723811fb89250eea6eba963c0df
Certificate serial: 018751BED836443221DFB795DAD1210E2A44
Authority key identifier: 0B:18:70:C9:6E:F0:97:23:81:1F:B8:92:50:EE:A6:EB:A9:63:C0:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CxhwyW7wlyOBH7iSUO6m66ljwN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/87702a-3af6-46c7-a123-a2e24f980b3f/1/4jE8w3AapHFIA4ssR1eVkhPmjAU.roa
Signing time: Wed 05 Apr 2023 14:07:54 +0000
ROA not before: Wed 05 Apr 2023 14:07:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 132.64.0.0/16 maxlen: 16
132.65.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:be:d8:36:44:32:21:df:b7:95:da:d1:21:0e:2a:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b1870c96ef09723811fb89250eea6eba963c0df
Validity
Not Before: Apr 5 14:07:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2313cc3701aa47148038b2c4757959213e68c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:95:93:be:d2:1c:02:36:a5:02:dd:d1:ec:c7:
bf:88:3c:09:65:c2:25:85:cc:d8:a8:a0:9e:99:55:
38:45:fb:ea:0d:00:2b:62:6f:1d:11:f6:b3:ba:ec:
29:98:33:fb:21:2b:61:58:2f:a5:58:79:f7:b0:ea:
d2:95:6e:35:c9:f4:a8:e5:77:d4:a5:9e:4e:cd:ef:
7b:ae:95:52:6a:68:a2:82:16:cb:e4:a6:21:cd:84:
25:82:b7:2b:0a:42:7b:36:8a:80:b4:8f:62:84:17:
bf:01:22:43:de:f8:f2:81:ed:32:05:02:b7:6d:52:
ce:a7:04:18:d6:39:d0:9a:19:6c:9f:1f:6a:16:46:
02:05:93:93:93:cc:ca:95:58:60:e0:49:81:a5:46:
9b:69:ac:57:be:f5:41:70:f7:02:2a:ee:72:4c:bd:
a1:41:13:4d:64:b2:eb:8e:35:db:12:1b:99:60:9d:
2d:ef:1b:d5:cf:d5:4e:c3:75:74:82:18:b0:3b:6d:
70:eb:e8:1f:0d:1f:3c:27:24:bb:7a:27:81:4b:20:
a1:67:4f:15:3d:c7:01:8d:91:fd:36:75:ad:9e:c0:
37:81:60:ad:82:88:64:2e:ec:e5:82:4e:90:58:9f:
b6:be:11:4c:9b:a9:25:51:1f:a8:cb:f2:ca:ef:fc:
20:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:31:3C:C3:70:1A:A4:71:48:03:8B:2C:47:57:95:92:13:E6:8C:05
X509v3 Authority Key Identifier:
keyid:0B:18:70:C9:6E:F0:97:23:81:1F:B8:92:50:EE:A6:EB:A9:63:C0:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CxhwyW7wlyOBH7iSUO6m66ljwN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/87702a-3af6-46c7-a123-a2e24f980b3f/1/4jE8w3AapHFIA4ssR1eVkhPmjAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/87702a-3af6-46c7-a123-a2e24f980b3f/1/CxhwyW7wlyOBH7iSUO6m66ljwN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.64.0.0/15
Signature Algorithm: sha256WithRSAEncryption
6a:91:c8:d7:27:6b:6a:a9:50:ce:1c:f6:b8:2a:18:48:5d:71:
a1:8e:f1:a9:6e:f7:6e:52:b1:9e:61:23:c5:ef:8b:d7:7f:1a:
8b:b0:0e:a8:38:97:f6:9d:88:ca:8d:fc:32:82:44:12:db:ac:
fc:a0:ed:50:fb:67:fb:3a:d1:af:e1:cc:e9:01:ca:b9:56:5e:
49:10:4d:a7:0b:02:81:ab:b6:17:73:a8:0e:7e:98:05:f6:c1:
94:77:9b:ae:00:a2:cc:3e:b7:9c:b4:12:51:28:e4:06:0a:ee:
5f:15:8b:f6:75:0e:1e:a5:5a:99:17:5a:77:de:5a:a1:10:e1:
b3:ed:bb:86:2b:39:e2:e1:35:65:e1:05:9d:39:47:89:9b:04:
48:1a:0d:1f:87:be:5a:1d:4a:58:b8:16:9c:d4:b1:41:41:08:
d9:90:dc:21:3a:6b:30:55:66:7e:26:b4:24:12:87:d5:b0:e4:
03:10:3b:93:d7:0c:8d:6c:44:d0:3b:b0:a0:93:78:00:3d:e6:
b6:2c:73:01:a4:f6:24:67:20:a1:ba:8d:04:ce:e5:19:bd:86:
e7:75:da:b2:7a:dd:d0:71:6e:09:ce:98:29:cd:62:18:f4:15:
27:11:ba:99:d8:90:c2:03:fb:34:cb:e3:5b:7a:d9:bf:d6:2a:
26:aa:12:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:07 2024 by rpki-client on console-ams.rpki-client.org