Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/ijbl1gQh21Aax9RtamzxpI-v5WM.roa
File: ijbl1gQh21Aax9RtamzxpI-v5WM.roa (raw, json)
Hash identifier: OghKWNARXhdxyBD1u0IEo+LrKzaXY2Xp3Ni+i84EnjM=
Subject key identifier: 8A:36:E5:D6:04:21:DB:50:1A:C7:D4:6D:6A:6C:F1:A4:8F:AF:E5:63
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 01856C2EC61CF5BC3379D939F522C4221C46
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/ijbl1gQh21Aax9RtamzxpI-v5WM.roa
Signing time: Sun 01 Jan 2023 07:14:42 +0000
ROA not before: Sun 01 Jan 2023 07:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12312
IP address blocks: 141.98.44.0/24 maxlen: 24
2a07:6f46:4400::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:2e:c6:1c:f5:bc:33:79:d9:39:f5:22:c4:22:1c:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 07:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a36e5d60421db501ac7d46d6a6cf1a48fafe563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0c:48:bb:e9:79:00:cc:a3:e5:ee:27:66:7a:
82:6f:26:a5:d5:bb:fa:bc:98:1a:3f:cc:d5:c9:d9:
7e:ba:78:03:68:69:89:70:75:16:bb:ea:7a:36:18:
f3:2c:c1:b0:5a:65:e8:e6:c4:02:ab:ad:2b:3d:43:
b1:dc:48:fb:bd:14:df:69:c8:ad:2b:b4:17:48:1b:
af:cc:3e:0b:56:31:13:c1:d9:ea:55:3c:4d:7b:77:
c2:3f:88:b2:8c:3f:48:ac:82:bf:34:d1:9e:05:e1:
4f:a8:a9:d1:d8:46:a9:2e:93:31:c6:e8:f1:86:4d:
e1:47:f7:2a:5f:b6:72:e6:e5:84:3a:c6:32:fb:ba:
2b:aa:85:ff:1a:91:e0:b8:20:a2:e9:64:1d:d3:d5:
d5:56:d7:83:e7:31:ae:87:2e:23:f4:52:b1:d5:b8:
e9:5f:6c:2b:0b:0c:a7:ac:1d:a6:2c:d6:9f:16:c7:
ed:f1:d3:0b:1b:65:ce:94:cc:e5:bf:1d:9c:96:49:
da:95:75:ca:80:d4:c8:4a:8a:ad:5e:32:1c:bb:9e:
50:68:b8:87:42:92:30:a1:2c:0f:76:25:17:29:1a:
50:26:38:08:46:a1:f6:f0:28:7e:5e:22:74:fb:ce:
66:a1:99:38:83:c9:4a:f5:ef:15:89:52:31:bc:7c:
d1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:36:E5:D6:04:21:DB:50:1A:C7:D4:6D:6A:6C:F1:A4:8F:AF:E5:63
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/ijbl1gQh21Aax9RtamzxpI-v5WM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.44.0/24
IPv6:
2a07:6f46:4400::/40
Signature Algorithm: sha256WithRSAEncryption
25:fd:1a:a3:6e:aa:63:27:c5:af:44:f4:16:75:f2:62:38:df:
8c:0f:e4:84:f6:6d:b3:e3:85:2c:e9:de:aa:3a:2e:1b:f5:58:
1f:77:ea:95:cc:71:1e:29:53:5a:ec:e8:8b:59:59:31:07:dd:
de:2f:95:0f:4b:1c:ee:4f:99:64:26:aa:89:8f:c2:e1:29:95:
86:a4:02:5f:50:13:4e:a0:8d:32:89:13:f8:db:ca:de:11:31:
21:c7:0b:08:4e:73:ee:74:dc:cf:c5:87:40:91:46:bb:4e:e8:
66:36:71:d3:c2:ca:af:b9:70:bc:54:06:be:2f:2c:b4:59:fe:
9c:a4:d6:30:5a:39:64:ac:88:76:b5:12:25:7e:e3:45:25:8c:
4d:84:bf:6e:3c:89:c2:9b:98:d6:5b:f1:de:3b:c3:0a:a3:fe:
ab:a6:2c:c2:2e:03:f3:26:13:cc:3e:96:12:4c:24:d2:48:44:
dd:d1:6c:ae:d4:1e:34:a4:81:2c:51:69:07:bb:8a:df:96:cc:
06:54:41:96:f5:86:a6:c7:6e:3f:6e:aa:b9:62:d8:89:13:45:
42:e9:05:8d:81:e1:a3:73:26:fe:74:9d:fa:f4:f4:59:3a:33:
44:0a:6c:5f:88:3a:5a:8a:6b:27:cd:54:d1:a0:be:04:f4:58:
c0:d8:c4:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org