Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/ae1f3a-65a8-4794-91c8-a5879b69f126/1/a0kSRTY37xi1686PpzDxggeVi3M.roa
File: a0kSRTY37xi1686PpzDxggeVi3M.roa (raw, json)
Hash identifier: mP52mW2QAu+JpCyc8UC858CvEt43wS/qV8vLGsBW2Y0=
Subject key identifier: 6B:49:12:45:36:37:EF:18:B5:EB:CE:8F:A7:30:F1:82:07:95:8B:73
Certificate issuer: /CN=050365c8af48813a5bab97ede355539f11474dc7
Certificate serial: 0185701EDCD17609AAEB324F489F7A388626
Authority key identifier: 05:03:65:C8:AF:48:81:3A:5B:AB:97:ED:E3:55:53:9F:11:47:4D:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQNlyK9IgTpbq5ft41VTnxFHTcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/ae1f3a-65a8-4794-91c8-a5879b69f126/1/a0kSRTY37xi1686PpzDxggeVi3M.roa
Signing time: Mon 02 Jan 2023 01:35:48 +0000
ROA not before: Mon 02 Jan 2023 01:35:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39587
IP address blocks: 147.78.236.0/23 maxlen: 23
2a0f:2980::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:dc:d1:76:09:aa:eb:32:4f:48:9f:7a:38:86:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=050365c8af48813a5bab97ede355539f11474dc7
Validity
Not Before: Jan 2 01:35:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b4912453637ef18b5ebce8fa730f18207958b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:83:47:c7:2b:92:2f:6e:cc:4c:c4:dd:21:2b:
cb:da:a9:d6:75:df:e4:a5:b2:24:e7:56:fa:80:4b:
e6:42:d7:d3:11:48:a8:ae:d6:b3:2d:94:2e:fd:71:
b1:c9:2f:af:00:30:6e:f8:a1:88:77:ea:11:45:0d:
74:05:81:2a:29:62:22:df:54:82:c8:25:61:b9:fb:
fb:59:97:74:d6:75:4d:12:cf:ed:f9:57:2b:6d:dc:
eb:9f:44:ef:8e:10:2e:b3:3a:d2:78:ff:78:30:b2:
b8:53:7f:b0:09:2d:cb:0f:7b:43:59:8f:35:71:30:
a3:f2:17:17:a3:be:0a:cd:1d:e4:82:96:34:4a:3c:
57:44:3e:63:16:74:88:46:fd:15:a3:0b:6a:b2:3d:
cf:8d:68:1d:c3:d6:d7:3e:8f:ff:34:07:4e:0e:d0:
f1:b2:57:20:43:b4:af:e5:19:85:42:c6:db:41:10:
7f:f6:ea:4c:ab:5b:a6:03:10:46:32:8a:2a:e6:26:
d9:77:a0:44:03:f8:fd:0c:7e:e0:a9:b1:ce:21:71:
44:c4:03:5b:28:38:23:d9:93:04:c4:25:44:15:68:
43:5c:90:38:98:e1:26:77:01:e6:5f:45:e1:2b:e0:
74:2b:cb:f5:da:18:92:ff:54:08:13:52:4c:ad:76:
00:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:49:12:45:36:37:EF:18:B5:EB:CE:8F:A7:30:F1:82:07:95:8B:73
X509v3 Authority Key Identifier:
keyid:05:03:65:C8:AF:48:81:3A:5B:AB:97:ED:E3:55:53:9F:11:47:4D:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQNlyK9IgTpbq5ft41VTnxFHTcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ae1f3a-65a8-4794-91c8-a5879b69f126/1/a0kSRTY37xi1686PpzDxggeVi3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ae1f3a-65a8-4794-91c8-a5879b69f126/1/BQNlyK9IgTpbq5ft41VTnxFHTcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.236.0/23
IPv6:
2a0f:2980::/29
Signature Algorithm: sha256WithRSAEncryption
03:22:bc:9c:88:fc:e8:36:2a:9a:f1:8e:5b:4a:32:05:23:c1:
c3:d6:dd:35:55:90:be:c0:8e:7f:c4:e3:57:c1:46:b5:28:08:
d6:fa:d8:97:78:e3:52:dd:74:85:d0:e1:a7:61:33:c3:8a:18:
9c:59:10:97:dc:7d:d9:69:65:42:bc:1a:83:62:d2:48:3f:7a:
0e:13:ec:13:83:9f:ca:2d:17:e8:31:20:4e:7b:92:19:16:48:
2c:be:5f:4f:86:60:9d:9e:67:42:5c:81:99:2f:41:0b:9a:4f:
85:90:1b:98:6e:37:e9:07:14:d9:ab:c9:a5:99:ce:6b:0e:d2:
6f:35:35:2e:83:6e:6a:7f:16:84:da:57:e8:81:4f:76:47:54:
dc:dd:f6:c3:d4:52:c8:3c:9f:f7:ef:e0:ab:a8:5c:a4:44:77:
a0:73:6d:85:ff:93:15:bb:f1:49:06:14:30:c3:0d:28:84:b7:
25:1a:f3:3b:b1:42:3e:c6:9c:f2:0e:ab:c7:fe:0c:0b:dc:4c:
8b:b9:39:43:06:75:aa:0b:e3:33:f4:81:ee:46:9f:fc:bc:29:
9a:30:b6:7c:15:1f:cc:07:92:cd:79:e4:07:eb:4c:01:ab:aa:
9a:22:58:ca:a4:f1:6c:69:7d:31:77:bb:86:bd:a4:6b:d3:4b:
cb:0a:92:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:30 2024 by rpki-client on console-ams.rpki-client.org