Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/SRSOrmoTlqJldzWAQZFF-pfqRLw.roa
File: SRSOrmoTlqJldzWAQZFF-pfqRLw.roa (raw, json)
Hash identifier: qGbPKkuG5zZwnBAk047ODVXMwWv0kvkB+BziUFk9l7E=
Subject key identifier: 49:14:8E:AE:6A:13:96:A2:65:77:35:80:41:91:45:FA:97:EA:44:BC
Certificate issuer: /CN=ca3bca8764946932ba2da8bdb7d13cd86895af69
Certificate serial: 0185722800DA90758857C4658C73AF9A3A8D
Authority key identifier: CA:3B:CA:87:64:94:69:32:BA:2D:A8:BD:B7:D1:3C:D8:68:95:AF:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjvKh2SUaTK6Lai9t9E82GiVr2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/SRSOrmoTlqJldzWAQZFF-pfqRLw.roa
Signing time: Mon 02 Jan 2023 11:05:02 +0000
ROA not before: Mon 02 Jan 2023 11:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1103
IP address blocks: 132.229.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:00:da:90:75:88:57:c4:65:8c:73:af:9a:3a:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3bca8764946932ba2da8bdb7d13cd86895af69
Validity
Not Before: Jan 2 11:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49148eae6a1396a265773580419145fa97ea44bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:21:21:91:92:9e:0f:3c:55:66:32:d5:93:fd:
bb:20:b1:d1:f8:22:ff:73:75:07:50:f8:4d:e1:a3:
2c:76:43:da:eb:7c:88:cf:3a:8c:07:d9:5b:42:71:
69:6a:e4:30:51:e9:dc:f5:5e:70:ee:8c:7b:e5:4f:
ea:f0:6b:f1:02:85:2d:e9:5c:28:26:35:46:30:7a:
41:ab:33:3a:a1:f2:96:a2:ef:aa:6b:96:ea:0b:47:
04:ec:db:a4:a4:03:6c:1b:55:b6:e7:42:90:d9:d2:
ff:b3:6b:93:32:eb:f9:55:39:62:47:71:e1:53:7e:
a9:5f:f5:6f:1f:b5:0a:17:4f:65:a0:5a:04:93:73:
14:e0:95:8d:2d:8a:ff:b0:f9:c3:ed:14:4d:f9:d3:
c7:b0:fb:02:ae:0a:7e:48:11:bf:eb:06:9e:47:20:
65:18:f7:52:2a:6c:cf:d5:9e:fe:a0:f9:95:58:96:
2b:a9:4a:24:35:d8:e0:2c:d6:01:2c:76:e9:94:83:
10:4c:79:a5:5a:18:3c:4e:0f:91:85:a9:ae:3b:8d:
4e:46:df:63:bb:54:e8:12:ef:3e:1f:1e:c5:6b:5d:
ba:8d:0a:16:4d:bc:50:21:e6:bc:11:41:b5:d4:ec:
ed:e9:86:a5:c9:00:17:df:6d:74:9f:16:ba:03:ca:
1c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:14:8E:AE:6A:13:96:A2:65:77:35:80:41:91:45:FA:97:EA:44:BC
X509v3 Authority Key Identifier:
keyid:CA:3B:CA:87:64:94:69:32:BA:2D:A8:BD:B7:D1:3C:D8:68:95:AF:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjvKh2SUaTK6Lai9t9E82GiVr2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/SRSOrmoTlqJldzWAQZFF-pfqRLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/yjvKh2SUaTK6Lai9t9E82GiVr2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
16:ce:11:93:f2:88:c6:e3:12:27:11:2a:38:73:cd:95:c5:4e:
dd:5e:89:62:a1:75:6a:da:33:1b:38:d2:2f:e9:14:c5:e1:5b:
cb:01:bc:f6:3e:3f:df:a0:74:aa:be:a9:a7:0f:c0:4b:aa:6c:
7c:f7:22:e1:89:51:b0:5f:9a:70:16:96:bb:d6:e4:ab:4c:82:
e9:b6:f1:cb:65:32:94:62:cb:57:de:fa:ba:d9:7a:46:98:c7:
94:f0:2e:36:23:d7:55:0f:93:d9:50:d0:c1:9e:07:59:32:bd:
86:ac:10:6e:ca:55:8f:9a:7c:ab:2d:c0:61:96:fb:4e:7e:5c:
e6:21:8d:76:65:36:71:61:c3:dd:be:44:64:10:0c:e0:60:63:
28:63:e0:96:af:06:bd:e3:6b:72:93:4e:79:51:ad:b6:16:75:
a3:87:55:99:74:45:02:81:0d:e9:07:d6:dc:8d:1e:e8:58:57:
c9:57:6e:46:d4:07:ae:2b:f1:28:8b:ff:5a:5e:62:8e:c6:44:
77:32:6d:f8:d6:94:22:9c:ca:b6:4f:ef:67:4c:ef:78:3c:47:
db:ee:ce:31:b9:ba:d8:37:83:59:78:32:84:61:e8:e1:84:fe:
37:01:74:90:5f:dd:d3:59:36:cb:a5:30:74:3f:85:f1:be:6a:
63:68:61:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:16 2024 by rpki-client on console-ams.rpki-client.org