Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/eadafe-6c9d-4ae0-8733-819a253225cc/1/SL7RIwzincplyWjCvTvyxo4txkA.roa
File: SL7RIwzincplyWjCvTvyxo4txkA.roa (raw, json)
Hash identifier: lK9nsgxFLnXQKzcq1a8ecdwhQrn7snBptp46KoYOvmI=
Subject key identifier: 48:BE:D1:23:0C:E2:9D:CA:65:C9:68:C2:BD:3B:F2:C6:8E:2D:C6:40
Certificate issuer: /CN=1bf14e8d0b3defb0304270130d1147ae0dd92d8b
Certificate serial: 01875202989FAE2B4E9A93EAB48A81F957AA
Authority key identifier: 1B:F1:4E:8D:0B:3D:EF:B0:30:42:70:13:0D:11:47:AE:0D:D9:2D:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_FOjQs977AwQnATDRFHrg3ZLYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/eadafe-6c9d-4ae0-8733-819a253225cc/1/SL7RIwzincplyWjCvTvyxo4txkA.roa
Signing time: Wed 05 Apr 2023 15:21:54 +0000
ROA not before: Wed 05 Apr 2023 15:21:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13101
IP address blocks: 141.91.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:52:02:98:9f:ae:2b:4e:9a:93:ea:b4:8a:81:f9:57:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bf14e8d0b3defb0304270130d1147ae0dd92d8b
Validity
Not Before: Apr 5 15:21:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48bed1230ce29dca65c968c2bd3bf2c68e2dc640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:25:ac:5e:de:18:f9:60:52:f1:0b:a2:08:df:
5d:70:93:a2:94:5b:c6:5a:f2:8f:a0:3a:06:38:e2:
90:4d:c3:72:a2:f2:49:6d:9f:07:b0:88:3f:b7:47:
71:32:44:5b:56:b9:93:be:a9:e9:22:40:ad:ef:82:
c0:71:b5:10:e7:fb:7e:62:3b:f1:ca:9a:71:67:c5:
0c:f1:22:e8:48:b7:01:46:6d:b6:65:bd:e6:bf:0d:
44:63:75:5a:66:40:ad:f4:be:0e:3b:e2:08:c9:c8:
13:4c:10:d9:39:6e:be:8c:96:12:48:e0:6b:8e:b0:
e9:7a:f5:d0:6f:37:e6:e8:ad:fe:3f:b0:03:9f:d7:
f6:ec:25:cc:02:ed:63:99:c1:be:47:d1:76:0d:b6:
ae:b4:66:f6:90:49:eb:02:4e:5a:24:8e:55:db:a9:
21:4e:b4:66:d2:ad:57:0a:fc:b2:77:d3:1e:4f:67:
be:a7:17:1b:7d:b6:b7:3f:e1:c6:f3:57:10:0f:88:
b5:be:1f:a5:a3:bd:ed:81:30:02:a0:e1:d9:07:e9:
d0:6c:32:ac:89:dc:77:ec:41:53:20:ea:8a:2b:54:
fa:7a:d5:c7:b6:64:c9:ed:d1:0d:7e:23:2c:c4:5a:
bd:67:6f:0d:2b:c0:83:eb:a1:87:e8:87:17:80:59:
59:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:BE:D1:23:0C:E2:9D:CA:65:C9:68:C2:BD:3B:F2:C6:8E:2D:C6:40
X509v3 Authority Key Identifier:
keyid:1B:F1:4E:8D:0B:3D:EF:B0:30:42:70:13:0D:11:47:AE:0D:D9:2D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_FOjQs977AwQnATDRFHrg3ZLYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/eadafe-6c9d-4ae0-8733-819a253225cc/1/SL7RIwzincplyWjCvTvyxo4txkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/eadafe-6c9d-4ae0-8733-819a253225cc/1/G_FOjQs977AwQnATDRFHrg3ZLYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.91.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6e:23:3e:ed:90:0b:1d:b3:e0:81:20:5b:3c:7a:e7:25:13:1e:
bb:db:d1:a4:3b:03:55:02:0e:18:f2:e3:88:f0:13:b7:de:e0:
c3:9d:c3:28:2e:ff:1c:08:66:d0:6b:21:96:3e:9f:e0:67:08:
fe:53:a2:fc:db:2e:35:51:ac:d9:cd:a4:fd:a9:6d:5f:cb:8d:
4d:e5:fd:b9:aa:36:8b:02:41:0c:5e:92:66:e5:61:7f:44:66:
50:1f:29:40:ed:94:94:df:c0:c8:47:90:69:37:9e:52:f1:74:
51:5c:29:6f:26:55:3b:2e:44:e5:4a:fc:42:e8:3a:ec:97:bc:
5a:1f:82:fa:f3:a0:e4:8e:d0:e3:44:3c:9f:cf:76:3e:05:54:
5d:60:ce:3c:b1:37:93:7a:62:dc:95:56:a6:70:ff:ea:64:ad:
9e:76:e1:39:d0:32:84:27:54:80:da:b2:e9:88:78:ea:82:b9:
d6:8f:ec:67:3d:49:9e:db:bc:15:c3:e7:46:f0:ca:40:97:91:
08:17:14:17:70:61:90:2f:7a:48:3a:8c:29:fd:50:9d:5a:d0:
22:8b:d1:c0:0c:f0:45:ea:a9:b4:88:09:60:56:92:0a:63:d5:
17:07:1b:e9:4f:25:d0:bb:5b:10:63:a8:79:12:68:37:2b:2e:
f5:c9:6b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:16 2024 by rpki-client on console-ams.rpki-client.org