Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/rIussw_lIUIdDOLJe-GNxrv9b3Y.roa
File: rIussw_lIUIdDOLJe-GNxrv9b3Y.roa (raw, json)
Hash identifier: 4wWce224LboKr/r1Ixz88rW+6OUNfee3lT7zgKv1AHU=
Subject key identifier: AC:8B:AC:B3:0F:E5:21:42:1D:0C:E2:C9:7B:E1:8D:C6:BB:FD:6F:76
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 018B97119DD58567BE00772FBF28BA7052CC
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/rIussw_lIUIdDOLJe-GNxrv9b3Y.roa
Signing time: Fri 03 Nov 2023 21:23:15 +0000
ROA not before: Fri 03 Nov 2023 21:23:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62976
IP address blocks: 161.8.148.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Nov 2023 19:06:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:97:11:9d:d5:85:67:be:00:77:2f:bf:28:ba:70:52:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Nov 3 21:23:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac8bacb30fe521421d0ce2c97be18dc6bbfd6f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:72:8a:12:93:c9:82:d9:56:5b:88:78:10:e3:
3b:e4:eb:14:09:4a:35:d5:65:b1:e9:32:d0:6a:fb:
2d:b3:c7:06:d1:62:ba:db:52:9b:6f:2c:dd:67:fd:
de:44:78:9d:b9:12:cc:21:3d:64:be:6c:83:f8:b3:
1f:a7:a1:47:93:21:92:f3:b8:32:d6:56:b5:c4:91:
14:07:02:7a:c7:15:15:03:15:37:45:15:30:ed:e6:
76:7d:48:cd:6d:a8:fb:b2:47:ba:cb:34:45:59:39:
0a:c9:63:83:24:f6:4b:a2:6a:89:3d:4c:9f:6f:ce:
8e:1d:88:e1:9e:21:a5:60:1e:80:85:10:ab:78:29:
91:55:cc:ac:f5:d6:63:33:71:03:30:69:13:69:e1:
4c:81:a0:59:ae:03:48:f2:5b:04:4c:a1:e7:8c:86:
ce:1d:de:36:f6:63:d3:48:40:1e:3f:58:b1:fc:5a:
85:b9:7d:b5:aa:73:01:a2:26:f0:bb:ac:ac:60:f1:
e1:4e:9a:5a:db:01:01:45:1c:ac:72:60:9f:79:55:
ef:45:69:12:a9:ae:09:93:5e:20:38:69:7f:81:ff:
d9:66:2e:98:5a:fe:af:2c:65:05:01:d3:fe:a7:67:
2c:2b:9e:8f:af:36:66:a6:47:a9:9a:a1:68:67:61:
3b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8B:AC:B3:0F:E5:21:42:1D:0C:E2:C9:7B:E1:8D:C6:BB:FD:6F:76
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/rIussw_lIUIdDOLJe-GNxrv9b3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.8.148.0/23
Signature Algorithm: sha256WithRSAEncryption
16:1d:dc:89:9a:a0:83:70:d8:04:f3:82:32:18:76:ae:7a:0b:
6e:8b:4f:bf:41:e0:ae:0e:4e:9b:41:63:bc:15:4a:45:e9:2d:
96:3b:48:d5:fa:02:69:84:b6:ef:ed:4f:be:b8:bc:ca:a7:ac:
4e:68:a5:e5:9e:6b:65:6d:96:72:29:91:75:d6:ca:26:92:89:
f1:d0:98:7a:ce:7f:4a:16:3c:99:8c:0b:61:db:e6:46:cd:e0:
93:e7:a6:62:02:50:79:63:2f:a0:96:0d:e5:73:73:c8:66:0c:
aa:26:98:ce:9f:38:04:d1:66:d9:9b:13:e7:78:5c:1c:77:29:
a1:ec:65:4c:3c:51:c3:63:1f:f0:b9:7b:4e:7d:55:ee:2c:dc:
74:99:aa:d8:d4:d9:ca:b7:c5:40:73:8c:94:1a:88:1f:6a:8d:
b2:1a:61:22:8f:50:f0:c0:a2:d9:15:47:df:ab:9b:6e:70:96:
19:a5:f0:21:ea:e1:6b:c0:de:8d:29:45:de:e1:fc:7b:39:29:
aa:70:9a:e3:e4:05:95:9f:2e:ef:80:2e:b5:c5:db:e5:57:fa:
3d:29:61:d7:c6:99:de:b2:7c:18:6c:3b:3a:3c:34:a5:94:c0:
74:7a:f7:36:29:90:f9:02:06:46:3f:b8:36:79:df:99:eb:61:
14:92:82:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:14 2024 by rpki-client on console-ams.rpki-client.org