Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/D7VsTanXIXkVfnBZqb5OelgUOB4.roa
File: D7VsTanXIXkVfnBZqb5OelgUOB4.roa (raw, json)
Hash identifier: lqdP/YQ/dmDPQS1pdoAFKXN+vCVYF5y+WEBwN+bkIDU=
Subject key identifier: 0F:B5:6C:4D:A9:D7:21:79:15:7E:70:59:A9:BE:4E:7A:58:14:38:1E
Certificate issuer: /CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Certificate serial: 018A4B36EA13A56809EF2F769BAE332A7BB7
Authority key identifier: 86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/D7VsTanXIXkVfnBZqb5OelgUOB4.roa
Signing time: Thu 31 Aug 2023 10:50:04 +0000
ROA not before: Thu 31 Aug 2023 10:50:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39047
IP address blocks: 185.140.134.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 27 Sep 2023 12:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:36:ea:13:a5:68:09:ef:2f:76:9b:ae:33:2a:7b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Validity
Not Before: Aug 31 10:50:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fb56c4da9d72179157e7059a9be4e7a5814381e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d0:33:f7:15:53:15:78:60:6c:94:8e:f3:de:
8b:04:0f:1b:b3:ee:79:78:80:36:3f:23:38:4e:e9:
4a:81:29:a5:92:62:80:10:91:46:b7:2a:36:59:99:
96:d2:06:22:93:bc:7b:91:8c:e3:e1:2c:e0:9c:69:
93:be:75:9b:eb:7d:5f:f6:ed:ea:a4:eb:b0:f2:a4:
8f:f5:0f:ca:c3:8c:40:5b:fa:ec:ad:d7:da:d6:4e:
1f:93:5a:2b:0c:3a:22:9c:eb:5a:a4:04:4f:fb:64:
b1:08:02:3f:cb:c7:d9:47:31:88:73:24:aa:ec:f2:
75:fa:20:71:7c:94:af:76:98:65:f4:8b:d8:45:bf:
42:32:5f:14:fc:9c:4e:6b:fa:78:06:42:59:bb:07:
21:9c:2d:19:6c:f6:1d:9a:2b:62:05:73:67:65:53:
b4:b2:2a:3d:3b:73:81:73:75:0b:8c:f2:d4:ca:7b:
78:95:04:1b:49:da:ed:cd:54:d8:94:69:11:a2:90:
50:b2:77:11:c8:72:f4:59:dd:ea:c8:a3:a4:23:f6:
7c:c0:c4:45:f6:30:f8:ec:d1:0f:ac:f5:a3:9c:a1:
03:33:4a:44:e7:c1:2e:32:48:4d:44:a7:0f:c9:af:
6e:15:12:28:27:95:21:92:2b:f6:37:0e:aa:b4:61:
d1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B5:6C:4D:A9:D7:21:79:15:7E:70:59:A9:BE:4E:7A:58:14:38:1E
X509v3 Authority Key Identifier:
keyid:86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/D7VsTanXIXkVfnBZqb5OelgUOB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.134.0/23
Signature Algorithm: sha256WithRSAEncryption
13:98:6b:57:c2:6d:10:fa:1c:59:97:21:38:37:c2:bf:5e:bc:
13:44:b4:3e:34:72:ca:d5:75:13:f3:cd:d5:23:a4:2a:3c:8d:
b4:46:a8:22:0d:8c:31:0f:48:48:18:e2:75:a4:af:0b:d8:0c:
3d:e9:78:14:86:ee:9a:ed:ed:7d:db:c3:72:f7:f2:bf:57:ce:
f6:3d:04:a4:26:b9:16:04:83:7a:3b:b5:24:5c:68:d2:19:5a:
fd:81:9f:70:dc:6c:a5:fb:bf:90:50:84:26:74:24:65:fc:bb:
53:f2:88:41:ed:76:28:d3:10:02:37:9a:e1:dd:21:96:02:90:
19:e3:79:29:ff:ac:16:e6:6f:58:e8:cc:c6:35:94:7b:1a:2d:
fc:27:a5:2a:3b:58:5d:29:ee:3f:48:3e:e7:8d:a5:49:72:74:
9d:06:bf:e2:31:f0:fe:6d:bc:af:6f:5a:d2:66:88:45:f1:2a:
a8:60:a2:f7:0d:ca:ee:1b:99:a3:ac:b7:f2:e7:01:58:0f:46:
05:d9:4c:f7:81:96:13:1e:84:67:b8:ee:c4:1a:ab:5d:0f:d0:
c5:34:09:72:2d:19:c6:99:4e:4d:2f:7f:2d:58:15:23:8d:b5:
12:23:50:6b:d5:bf:bb:c1:c7:5f:1c:f2:8c:22:78:41:13:04:
fc:68:9e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:16 2024 by rpki-client on console-ams.rpki-client.org