Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/cMI0II2r8mncP6MvWosACEJ_WDs.roa
File: cMI0II2r8mncP6MvWosACEJ_WDs.roa (raw, json)
Hash identifier: gZClpRI3dt+fMM0YXASZp9L+npVP6uyxir3jDWFshHc=
Subject key identifier: 70:C2:34:20:8D:AB:F2:69:DC:3F:A3:2F:5A:8B:00:08:42:7F:58:3B
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0186E674A213CAD1D317523B146189953714
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/cMI0II2r8mncP6MvWosACEJ_WDs.roa
Signing time: Wed 15 Mar 2023 18:07:28 +0000
ROA not before: Wed 15 Mar 2023 18:07:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52286
IP address blocks: 141.136.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e6:74:a2:13:ca:d1:d3:17:52:3b:14:61:89:95:37:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Mar 15 18:07:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70c234208dabf269dc3fa32f5a8b0008427f583b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:49:bc:e9:cf:3a:a7:33:4d:90:2e:6b:f5:58:
f3:2c:62:7b:90:b4:94:5b:da:eb:1a:c3:ff:11:a5:
31:5e:c2:16:dd:c1:48:26:5f:79:7b:36:2f:5b:ed:
ca:b3:4f:5d:83:ba:22:53:30:cd:92:81:3f:be:ad:
07:4c:e9:9d:a1:8f:17:37:d7:b2:fa:a0:8f:0a:1c:
78:de:b5:b5:ad:3c:c1:ec:e0:f9:03:b2:dc:cd:42:
d0:37:e5:7e:49:2a:92:d7:a3:56:a3:23:a4:6a:aa:
02:05:f5:58:9d:44:d5:b8:c6:06:1e:14:cc:69:78:
91:05:6c:23:57:0e:41:b1:79:f2:d5:6f:00:50:e6:
6a:df:0e:bc:a0:24:1c:89:ae:ae:05:26:60:68:4e:
57:d4:9e:25:d7:2d:0b:51:8f:c0:9b:e9:00:a1:f6:
01:c1:35:91:c9:0e:df:72:c3:91:e5:d3:36:85:8b:
4a:b0:e4:60:a2:2d:97:0a:36:a0:71:8a:fb:90:a5:
15:1a:1b:3a:0f:26:5c:fd:5c:39:07:0e:8b:13:42:
f5:b2:3a:0b:80:7c:55:b5:b1:36:2e:a4:08:77:b7:
26:a3:77:c6:94:d4:0f:d6:55:24:80:5b:c2:5d:4a:
c4:03:99:27:a6:3b:79:ba:a7:c4:8a:a1:42:43:bc:
9a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C2:34:20:8D:AB:F2:69:DC:3F:A3:2F:5A:8B:00:08:42:7F:58:3B
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/cMI0II2r8mncP6MvWosACEJ_WDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.136.59.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:ac:a1:dc:26:a5:5f:7c:f3:5a:f3:f0:10:33:2a:65:b4:00:
c2:8b:ba:28:c6:fa:7b:3f:5c:2d:f7:44:95:98:52:e5:c9:c8:
71:a8:54:ff:14:e5:96:ce:4e:b8:ce:f2:d5:18:1c:86:69:b6:
b3:78:c8:15:bf:ba:34:10:35:4e:c0:3b:da:2f:39:18:1e:81:
03:d2:5a:bd:ad:17:b3:d5:39:38:4f:79:ae:0a:23:a6:8c:61:
cc:b9:a0:d3:86:8c:95:b7:3e:53:3c:a2:4f:01:7e:b0:d1:d2:
91:a5:e4:82:c3:ba:51:99:5f:40:97:8b:52:9f:70:03:f4:74:
fe:ac:8c:84:45:c6:9a:a2:09:ab:60:c5:f0:12:71:79:82:2a:
49:43:98:54:9a:c8:15:9d:40:a0:79:71:af:54:84:14:95:80:
d5:49:5b:83:2d:64:7c:bb:79:20:71:41:8f:f1:88:64:7d:86:
09:32:85:29:f1:1a:81:12:68:f4:13:03:78:57:c3:0f:bc:59:
d6:c6:5c:a7:9f:4a:3e:ee:54:f4:77:03:82:4d:00:1c:51:77:
7d:b0:bb:c4:9f:f7:96:29:8b:da:39:b0:de:d3:04:28:3c:bc:
e7:bc:7b:2b:13:1b:69:61:6d:7e:20:d9:ea:c5:de:29:f2:b4:
82:cd:d3:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:47 2024 by rpki-client on console-fra.rpki-client.org