Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/t32aYrlWqocXI2vwhKxwYiJ-lPc.roa
File: t32aYrlWqocXI2vwhKxwYiJ-lPc.roa (raw, json)
Hash identifier: W3XaV1JZfcijdTItdhi3PCJHqNWbBnnLpLKK2ZO515I=
Subject key identifier: B7:7D:9A:62:B9:56:AA:87:17:23:6B:F0:84:AC:70:62:22:7E:94:F7
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 01856E78F2885317B328FA5086C5245D299E
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/t32aYrlWqocXI2vwhKxwYiJ-lPc.roa
Signing time: Sun 01 Jan 2023 17:54:58 +0000
ROA not before: Sun 01 Jan 2023 17:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137
IP address blocks: 160.80.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:f2:88:53:17:b3:28:fa:50:86:c5:24:5d:29:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Jan 1 17:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b77d9a62b956aa8717236bf084ac7062227e94f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a3:d2:44:d7:8a:3f:32:c1:cd:f3:69:08:70:
d9:da:ff:f6:df:18:37:ec:3a:1a:58:35:40:50:16:
89:4f:69:4c:61:56:cf:d3:59:e4:45:bb:fc:62:44:
1e:71:51:fd:da:b9:10:d1:4c:ac:d4:ff:8b:61:86:
97:91:ae:45:88:ac:38:f1:b3:6f:01:ad:65:24:95:
57:18:00:7f:75:8e:ad:49:ba:4b:4b:a7:f3:a3:3c:
3e:3a:dd:31:62:e1:90:bc:1b:d0:a5:84:ba:54:ec:
6d:5e:37:73:ae:61:4b:35:cc:c0:74:36:2e:12:50:
e0:e1:86:13:fe:69:50:e5:99:55:5f:8d:e8:a3:c2:
ff:4e:56:ac:2b:08:bc:76:c9:fb:b7:c8:52:4d:18:
1c:77:dc:a2:bf:5b:64:d9:35:cb:d0:3b:b6:ad:7d:
ed:4c:b8:77:09:38:2b:78:29:e0:26:9f:47:d8:d0:
02:96:b7:e6:2e:79:af:2f:0b:0c:87:fa:71:c3:78:
fb:17:b1:73:08:be:c9:7c:a0:30:61:34:9b:6f:63:
59:d5:fb:0c:e6:57:e9:5e:eb:6b:75:5f:cf:05:e2:
82:ed:45:ff:f0:b2:22:1e:22:96:df:25:a7:8e:ff:
92:70:b0:7b:4b:32:72:f4:ad:79:ef:67:32:85:aa:
33:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:7D:9A:62:B9:56:AA:87:17:23:6B:F0:84:AC:70:62:22:7E:94:F7
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/t32aYrlWqocXI2vwhKxwYiJ-lPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.80.0.0/16
Signature Algorithm: sha256WithRSAEncryption
56:d3:b0:90:06:01:3c:a0:83:6a:2c:ce:f6:f7:e5:a0:12:c9:
18:9a:2e:c4:9c:49:7b:eb:32:cb:d8:bc:a3:c5:7a:a5:51:c5:
f1:b7:cf:9f:52:62:c2:d2:9a:a4:c5:84:52:67:17:4c:a5:32:
79:2d:98:e9:2a:46:4e:1f:e4:ce:5c:5e:7b:db:2e:7f:0a:43:
d2:3b:ff:9b:15:97:96:7a:6a:b0:a3:8d:a5:d6:86:5c:a4:2f:
9e:56:ee:f5:93:27:7f:f4:fd:f1:bc:23:3a:d6:15:38:58:89:
8e:1e:8e:61:46:da:43:00:ce:d9:89:c2:ff:d1:7f:78:ad:f9:
d4:0a:3e:b0:84:ab:38:59:01:09:25:ff:26:3c:54:db:50:b1:
a0:c7:a2:90:0f:8b:a6:87:40:c9:a6:fc:b3:52:aa:52:2f:38:
9e:3f:65:42:14:24:4d:48:ae:31:66:f2:88:58:51:9c:14:c9:
0a:14:6e:79:21:cc:f9:d2:4d:db:4e:52:89:1f:27:7a:56:79:
ac:6e:3d:b8:85:3a:88:ae:ba:f3:1f:09:90:99:f6:c1:7d:04:
08:64:fc:19:db:98:56:3d:19:19:cd:a7:f0:83:29:42:d2:51:
d9:83:18:b2:81:62:30:19:4a:0f:96:3d:fe:7b:c6:a9:c9:21:
29:78:65:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:17 2024 by rpki-client on console-fra.rpki-client.org