Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/9J26WAebeBKpMhB2vlHrMM-U0mE.roa
File: 9J26WAebeBKpMhB2vlHrMM-U0mE.roa (raw, json)
Hash identifier: pg2D3Z5gxso+ITze3FrSqQTGezz9N9Xvz7QIoknnWOc=
Subject key identifier: F4:9D:BA:58:07:9B:78:12:A9:32:10:76:BE:51:EB:30:CF:94:D2:61
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 01888320E9CBBEF76FC34B512E8BCDC0CB08
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/9J26WAebeBKpMhB2vlHrMM-U0mE.roa
Signing time: Sat 03 Jun 2023 21:19:12 +0000
ROA not before: Sat 03 Jun 2023 21:19:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 141.226.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 14:49:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:83:20:e9:cb:be:f7:6f:c3:4b:51:2e:8b:cd:c0:cb:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Jun 3 21:19:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f49dba58079b7812a9321076be51eb30cf94d261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ca:ae:c1:c3:24:9a:9a:55:70:ee:6f:4b:9a:
33:05:20:b3:be:b9:68:93:a3:a7:b0:a0:05:ee:28:
89:5f:0f:0b:49:48:de:d8:6c:2a:4d:65:90:ea:65:
2a:a6:06:e7:8f:96:c4:d0:9b:86:52:34:65:0e:3c:
a7:18:92:77:3d:a0:2a:5f:f4:91:e7:9c:72:1f:3b:
f8:20:fc:02:53:7e:ed:8e:d6:92:b1:40:ba:bf:95:
b0:5f:ff:5e:bd:53:45:df:b7:e7:36:2d:6b:f4:51:
d1:d8:18:6b:7c:f9:91:c2:a5:d3:42:18:32:b4:50:
83:0b:cf:9c:b8:df:ae:cc:d4:98:d5:38:4f:c7:06:
8b:02:09:61:cd:89:29:b0:4f:17:be:7f:60:c3:27:
0c:aa:7d:23:fa:72:04:ba:55:0a:90:de:6e:64:57:
70:99:fd:33:c8:9c:20:7d:ee:91:a3:9a:81:c0:e5:
be:c0:8a:bd:85:a8:2d:2b:58:46:8c:99:35:6b:21:
74:d4:a2:69:d4:ff:07:60:62:e2:7a:47:6c:fc:22:
a2:6f:ca:88:8b:2b:85:0d:bd:d7:c3:08:29:5c:d5:
05:9c:27:6c:b0:a6:57:0e:fd:48:e5:aa:e7:ec:90:
44:73:da:b2:6a:12:2e:dd:cd:1c:e5:f5:d7:2c:e6:
6c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9D:BA:58:07:9B:78:12:A9:32:10:76:BE:51:EB:30:CF:94:D2:61
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/9J26WAebeBKpMhB2vlHrMM-U0mE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.247.0/24
Signature Algorithm: sha256WithRSAEncryption
72:45:90:e4:93:61:af:37:f6:e9:17:8b:05:9a:24:09:0f:7e:
fe:27:c5:bf:3e:2d:fd:cd:bd:fb:e8:2b:41:67:50:b8:77:2c:
c4:4f:c2:06:a3:31:59:fe:ae:a6:8b:ab:3e:44:e4:04:28:7d:
b1:d7:1e:dd:a4:13:f2:be:2d:5f:6e:0d:cf:de:7b:9f:a7:84:
a7:1f:d4:b8:06:83:a6:02:a1:1b:59:c3:2c:df:3a:c9:97:ee:
3d:da:e8:d4:6f:6d:a7:fa:41:d2:c0:c5:d4:db:33:c4:97:8f:
07:a7:d0:1c:8e:b5:21:4d:f8:d1:2d:79:15:3f:e6:e8:7a:2d:
ef:84:13:32:d1:c4:8b:a9:99:3f:88:3e:9b:0d:f5:e6:2e:41:
02:aa:49:2c:7c:d4:ac:dc:09:76:2b:64:82:d3:fe:be:83:ee:
ce:b3:0d:70:0b:5d:2d:2e:76:dd:34:86:fc:bd:a9:2f:e2:70:
2a:c7:f2:cf:91:d7:89:b9:46:29:4e:d8:a2:56:5d:24:cd:04:
e7:a4:6c:4c:70:31:c3:20:52:01:99:31:0c:8f:c4:50:41:dd:
00:6d:2d:78:d3:ad:67:36:fb:f6:85:04:60:0c:9f:a7:0a:b8:
fc:be:62:c4:b5:90:c5:a4:a7:fa:be:28:f4:d4:e7:c7:28:97:
85:78:6f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:38 2024 by rpki-client on console-ams.rpki-client.org