Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rHNKWfHxuQVCFIqN1E326MN6inU.roa
File: rHNKWfHxuQVCFIqN1E326MN6inU.roa (raw, json)
Hash identifier: n3qpUBILOWiQqLzFyYLqbTspexHC69sZy3VEkM1PQ6I=
Subject key identifier: AC:73:4A:59:F1:F1:B9:05:42:14:8A:8D:D4:4D:F6:E8:C3:7A:8A:75
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095933E845B053A7A64DF9EDA4116C8
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rHNKWfHxuQVCFIqN1E326MN6inU.roa
Signing time: Mon 02 Jan 2023 03:45:28 +0000
ROA not before: Mon 02 Jan 2023 03:45:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202668
IP address blocks: 146.158.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:93:3e:84:5b:05:3a:7a:64:df:9e:da:41:16:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac734a59f1f1b90542148a8dd44df6e8c37a8a75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:97:32:8a:4b:87:f6:72:26:93:23:17:0c:1f:
be:47:f5:1b:39:34:54:40:10:14:30:76:80:38:a9:
29:ec:63:8b:ac:3f:37:2f:a8:cb:ad:62:f4:6c:65:
93:2b:9d:0b:9b:40:eb:36:2c:0c:6d:dd:95:00:77:
28:80:f3:21:9c:2c:35:31:ef:d8:6b:50:b2:d2:c2:
fd:ff:a3:c0:c5:68:65:aa:47:69:52:cc:dc:7f:c7:
7d:70:d0:19:4c:fe:3e:bc:ba:07:34:c2:a4:51:ac:
28:9c:5e:ff:1f:55:1b:92:5c:29:c4:2e:f7:87:5c:
8c:2d:69:15:98:36:de:56:25:89:8b:07:71:ef:ce:
28:d3:21:af:53:ec:5d:01:25:f7:eb:1f:80:7d:ce:
03:62:c3:b4:63:8e:84:cd:02:66:4b:8e:42:e6:e1:
78:ab:8a:25:ac:99:80:15:41:b8:94:98:69:f5:e4:
a3:47:f5:8b:0e:b3:a2:55:74:bf:72:1b:80:82:d7:
82:4e:3a:ad:f1:89:ff:a6:bb:69:fb:99:64:a5:cd:
d7:f9:52:f6:00:57:ee:9d:f5:a7:b4:39:0e:76:2f:
e7:7e:bb:2d:83:fd:51:a5:ba:82:7b:b5:68:92:f3:
70:81:b6:14:54:a6:5e:15:a5:cd:47:b6:9a:77:4e:
18:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:73:4A:59:F1:F1:B9:05:42:14:8A:8D:D4:4D:F6:E8:C3:7A:8A:75
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rHNKWfHxuQVCFIqN1E326MN6inU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.158.30.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:cb:fe:70:b4:73:79:e6:a1:d1:63:ec:ce:80:30:90:26:4a:
a4:48:22:2a:51:6e:a0:45:b6:3f:71:a8:c0:5c:cb:c4:77:0a:
ba:af:89:ea:fe:38:57:3f:66:ac:42:c9:4c:d6:b5:cb:e3:bd:
1a:85:c9:cb:31:ab:2e:7c:9b:b7:88:42:82:d1:d3:68:7a:bf:
fd:b8:7f:22:af:7b:54:f8:a3:2c:68:5b:b2:70:f1:8c:ad:f2:
3f:82:f5:97:b7:21:2c:5c:c6:6d:34:c9:93:17:d2:4f:f2:b2:
e7:ff:0d:bc:01:98:44:22:2a:8c:07:0f:b4:21:73:ec:9c:a0:
05:2a:aa:e7:dc:53:b5:c4:f3:f4:fd:b1:4b:cb:53:52:05:42:
55:88:3a:f5:bb:21:dc:94:d2:e4:fc:f5:db:b8:13:f9:70:eb:
5f:b0:c4:d0:3c:09:4f:8c:a2:07:8d:84:f7:98:48:2c:a3:7b:
bf:f4:84:de:5d:9c:9f:30:e6:3b:8d:32:a4:60:76:b1:15:fa:
3c:e5:cd:9b:90:8b:f1:7c:b3:2d:fd:27:c4:db:61:9a:09:3a:
94:d9:6b:48:86:89:97:66:ea:38:5a:98:33:c6:f1:b4:74:5b:
00:d2:1c:3e:90:8e:ff:5d:c1:b2:b6:87:fb:16:1c:b0:14:4c:
e9:e3:4c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:52 2024 by rpki-client on console-ams.rpki-client.org