Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/ddAESqtKWWhkCOB2z7t-Mi3q9vM.roa
File: ddAESqtKWWhkCOB2z7t-Mi3q9vM.roa (raw, json)
Hash identifier: fDS7IGkqHAr8vht6v5g8uYONfZGkRpyBpDQNL6MjNhU=
Subject key identifier: 75:D0:04:4A:AB:4A:59:68:64:08:E0:76:CF:BB:7E:32:2D:EA:F6:F3
Certificate issuer: /CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Certificate serial: 018572B444012531867003A83A2B128CBF87
Authority key identifier: CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/ddAESqtKWWhkCOB2z7t-Mi3q9vM.roa
Signing time: Mon 02 Jan 2023 13:38:14 +0000
ROA not before: Mon 02 Jan 2023 13:38:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59630
IP address blocks: 156.114.0.0/20 maxlen: 20
156.114.10.0/24 maxlen: 24
156.114.5.0/24 maxlen: 24
156.114.13.0/24 maxlen: 24
156.114.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:44:01:25:31:86:70:03:a8:3a:2b:12:8c:bf:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Validity
Not Before: Jan 2 13:38:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75d0044aab4a59686408e076cfbb7e322deaf6f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b0:cd:54:62:05:24:29:b3:a4:c1:6f:4e:89:
4b:9f:27:cc:80:d9:7e:34:a0:11:57:e6:84:66:bb:
cd:4b:af:08:3d:83:56:ff:79:34:ce:52:1d:97:e3:
f9:f8:fe:1f:b5:44:bb:86:7c:cf:d7:42:0d:d6:2c:
d1:c5:6f:30:51:6a:8b:17:ea:70:58:ee:1e:56:d0:
11:83:fb:75:9e:b9:18:7e:88:e2:00:a8:f5:ee:80:
e0:36:34:10:d1:c7:7d:d3:4e:4f:4d:20:da:20:6e:
02:03:cc:61:b5:3c:43:7c:a0:ab:bc:60:b4:d7:9e:
30:f2:81:3c:c0:ea:dc:57:1f:a5:7a:70:0e:bd:46:
31:49:a4:f4:4b:c4:4c:e4:e9:f2:53:c0:6c:48:f3:
2a:a7:d1:5a:fa:af:1d:cd:d5:a0:13:53:ef:18:50:
bd:7e:fa:64:86:37:0b:e2:48:81:e6:bc:a6:fa:05:
ad:e8:8c:1c:1a:c0:8b:ad:a8:12:9e:cd:02:cc:ab:
40:f8:a3:d4:41:32:a0:18:a0:88:03:9d:fd:45:10:
63:ab:f3:23:a3:5e:24:f7:61:7e:4e:ec:bc:ce:6c:
e6:09:23:eb:21:01:63:9b:aa:4e:18:82:a2:eb:72:
96:23:11:ee:ec:2e:60:9f:87:3b:33:6c:50:be:22:
e1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D0:04:4A:AB:4A:59:68:64:08:E0:76:CF:BB:7E:32:2D:EA:F6:F3
X509v3 Authority Key Identifier:
keyid:CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/ddAESqtKWWhkCOB2z7t-Mi3q9vM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.114.0.0/20
Signature Algorithm: sha256WithRSAEncryption
8d:d4:b3:83:54:9d:03:e5:a5:d8:e3:fd:80:55:51:ff:74:76:
f3:25:e3:60:0a:ac:e7:ad:a9:2c:58:86:87:32:62:25:15:ee:
69:bb:a4:a2:c2:13:59:27:92:2c:17:f7:e9:f3:59:28:3f:0e:
25:6b:70:ea:57:99:de:53:6a:a3:bf:31:44:6b:88:25:4c:58:
b0:18:60:f4:d5:a4:8d:57:7a:71:0e:63:7f:fd:93:ed:ef:5b:
72:d8:bb:e7:ef:48:df:2d:65:57:21:76:26:41:5f:88:b5:54:
5a:4d:74:f7:5c:1b:5c:1f:f4:a8:e7:ca:4d:4c:7f:e5:18:38:
7f:8a:1d:73:cb:9a:0b:e3:6e:07:e2:e0:89:24:c4:f0:42:a3:
fe:dc:a3:c7:66:e0:ab:a7:b3:21:c8:c0:83:b4:38:27:7d:a6:
ac:56:df:6c:93:cc:32:8a:dd:eb:44:82:98:ea:39:67:3d:18:
05:49:7f:38:a4:8b:13:aa:66:df:d5:fb:5e:c1:ca:e9:94:f0:
1b:44:a3:d4:bf:9f:67:6c:55:86:dd:10:2a:66:82:78:ab:e1:
0b:aa:1d:9d:3f:d7:df:04:c2:16:c7:7a:e0:43:72:e0:f5:7d:
67:a3:c4:59:fd:30:5b:f2:53:8a:fa:82:a7:25:ee:8f:95:18:
9f:1c:31:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:13 2024 by rpki-client on console-ams.rpki-client.org