Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/AzkPHjC02pqYk-ZZTOYfohal05Y.roa
File: AzkPHjC02pqYk-ZZTOYfohal05Y.roa (raw, json)
Hash identifier: dCpNGURP0GO23bdS87yuPzRiDkZc8Xr57U6lgqWM3Cs=
Subject key identifier: 03:39:0F:1E:30:B4:DA:9A:98:93:E6:59:4C:E6:1F:A2:16:A5:D3:96
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0186D0AF95499A906D1A0D59A70F3F7A8C8A
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/AzkPHjC02pqYk-ZZTOYfohal05Y.roa
Signing time: Sat 11 Mar 2023 12:40:13 +0000
ROA not before: Sat 11 Mar 2023 12:40:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52286
IP address blocks: 141.136.58.0/23 maxlen: 23
141.136.58.0/24 maxlen: 24
141.136.60.0/24 maxlen: 24
141.136.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d0:af:95:49:9a:90:6d:1a:0d:59:a7:0f:3f:7a:8c:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Mar 11 12:40:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03390f1e30b4da9a9893e6594ce61fa216a5d396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1a:25:3a:0f:3b:c6:55:bf:25:28:6d:3f:47:
5e:49:50:ac:39:bd:63:9d:41:9b:12:f8:26:23:82:
0d:1e:a2:fa:1b:e4:ba:d1:e7:f2:b2:ac:9d:74:37:
49:d9:b8:dc:c4:4b:b4:c5:6a:f9:06:b9:0f:17:e6:
c1:e4:7c:e4:ba:81:ae:d1:30:66:05:66:5f:cd:5c:
21:ce:c7:da:a4:13:5c:87:f5:8a:c9:6c:5f:a5:61:
dc:3b:51:43:a8:d9:78:a2:0e:20:0d:73:76:df:9a:
c1:23:13:75:29:a1:25:67:ea:c0:cc:e2:8a:7c:aa:
19:98:fb:03:57:e7:68:7f:56:84:00:9b:5f:84:73:
aa:d2:ae:9a:09:ad:b8:09:39:a2:96:b3:03:10:04:
00:69:42:8b:1f:5a:e1:d6:e6:bf:91:b9:d4:40:d7:
61:7a:1c:7b:9b:2d:ad:c2:f4:22:61:5b:d2:55:9b:
d7:3d:01:1b:40:f5:8f:40:2a:51:78:42:03:cc:a4:
af:63:fa:19:5e:28:c6:b9:ae:09:ce:52:93:73:e0:
a5:28:5f:ac:3c:cc:f9:c4:17:f2:b8:e8:e8:74:6b:
f0:40:78:01:7f:62:db:e4:2e:6f:97:18:f9:c7:be:
2a:7d:67:b8:15:f0:67:ac:47:f8:dd:7c:d4:83:09:
57:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:39:0F:1E:30:B4:DA:9A:98:93:E6:59:4C:E6:1F:A2:16:A5:D3:96
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/AzkPHjC02pqYk-ZZTOYfohal05Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.136.58.0-141.136.60.255
Signature Algorithm: sha256WithRSAEncryption
11:cd:6b:95:14:c3:cc:d5:d9:50:5e:f4:7c:87:ba:79:ef:31:
a8:3f:88:5f:d3:1d:8b:6d:cb:99:cd:de:2d:64:76:c2:c6:64:
26:3f:15:97:60:4d:07:3d:dd:0a:f5:8a:ad:6a:ad:c0:46:a2:
23:49:6c:83:49:c6:49:37:3c:71:a7:1a:b8:0d:3b:44:1f:41:
81:17:9a:38:b8:21:8e:78:16:50:cb:8f:c6:2d:7c:42:ad:00:
d8:58:33:52:59:88:ad:bf:62:7b:58:3c:59:af:9d:c8:c8:8c:
f6:67:05:44:5c:26:e0:3a:8f:b7:34:58:28:ff:59:fa:69:8c:
88:09:b0:6b:ee:58:2d:69:ad:f9:64:be:7e:0d:2f:b7:5a:2f:
dd:c4:11:3e:16:7b:3f:79:f6:ea:1f:91:b4:e2:e2:6a:23:78:
44:fb:66:00:e9:da:61:15:ea:43:97:0a:22:88:4a:12:51:4b:
b9:91:4e:c3:4a:04:79:36:2b:fb:86:59:38:39:d6:1c:89:85:
b2:1d:73:b4:d4:89:7b:cf:20:14:60:13:ca:11:43:0c:21:2b:
8c:82:ec:1c:a7:87:11:c9:4d:7c:32:0d:96:06:2f:1e:f8:5a:
d1:3b:bf:58:bc:22:f1:b9:bd:3e:1a:42:b4:7b:7c:44:f7:1e:
c0:be:87:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org