Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/6W5QXt5AHGs2LX-ewBN3pWCTIA8.roa
File: 6W5QXt5AHGs2LX-ewBN3pWCTIA8.roa (raw, json)
Hash identifier: dDEHejvRM3a9jKcCjRJgtK15fVjXcVw4H+DvLl8Kzv0=
Subject key identifier: E9:6E:50:5E:DE:40:1C:6B:36:2D:7F:9E:C0:13:77:A5:60:93:20:0F
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018571956165D5440A382BFA16C00EB52C22
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/6W5QXt5AHGs2LX-ewBN3pWCTIA8.roa
Signing time: Mon 02 Jan 2023 08:24:53 +0000
ROA not before: Mon 02 Jan 2023 08:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1147
IP address blocks: 145.127.128.0/17 maxlen: 17
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:61:65:d5:44:0a:38:2b:fa:16:c0:0e:b5:2c:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e96e505ede401c6b362d7f9ec01377a56093200f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a5:2e:b3:ae:a0:b5:ac:14:38:7f:12:2f:58:
16:24:47:0a:60:47:e0:1e:7d:f3:02:67:c7:47:68:
b7:30:a8:8e:6a:db:39:56:93:79:1d:cc:1e:8f:7c:
f8:3e:c7:b0:4f:81:fa:83:75:33:f5:a4:23:6e:ef:
eb:d4:bb:a3:0b:0f:fc:71:36:ca:9a:8f:a2:c3:0d:
6a:51:85:dc:4f:80:ff:9c:72:8b:63:98:15:11:4c:
5b:8d:be:13:e9:9e:62:fc:bc:65:be:47:5c:67:82:
a6:69:e3:6d:fd:2b:4a:67:dd:42:5f:33:ca:6d:00:
d4:b5:8b:ac:2f:d4:35:6a:b3:c6:2d:f5:8a:a5:e7:
1c:27:e1:91:05:08:c9:93:57:9d:f8:aa:30:a3:8f:
32:1a:23:eb:38:dc:32:66:fc:f7:fb:67:8c:cb:4b:
69:8f:fe:d8:98:44:b0:5d:52:86:1e:cb:8a:9b:45:
9c:19:c4:f8:88:32:04:42:c6:68:cd:58:18:cf:df:
99:32:5a:e2:97:81:e4:42:59:91:d3:4d:ad:ec:f4:
5a:90:54:81:8d:0f:f7:b6:d5:af:62:8d:d0:28:94:
7f:08:f9:b6:35:44:d6:92:75:4a:8b:00:54:c3:5a:
53:14:fb:56:68:c5:37:28:94:07:6a:56:38:39:18:
a3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:6E:50:5E:DE:40:1C:6B:36:2D:7F:9E:C0:13:77:A5:60:93:20:0F
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/6W5QXt5AHGs2LX-ewBN3pWCTIA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.127.128.0/17
Signature Algorithm: sha256WithRSAEncryption
9b:28:e2:f3:28:34:c0:f1:83:a0:96:1f:9f:57:f0:ae:3f:37:
30:60:4f:b9:d0:32:81:b8:8a:b5:0e:ad:b0:95:7f:3f:fb:83:
4c:dd:ef:f1:ea:07:c9:13:0e:20:15:99:92:32:c8:70:c7:24:
3f:3b:75:da:50:90:f9:bc:ca:b5:ef:d6:5c:a0:98:b6:7c:eb:
18:c0:8a:ba:a4:90:d5:a0:6b:fd:47:80:8a:b7:dc:0f:d4:5c:
bd:48:e6:03:9a:51:de:c9:30:a2:34:9e:f1:42:dd:f0:db:89:
22:bc:d8:e0:15:93:c4:8a:09:22:28:75:6b:ca:c1:d5:3c:a4:
15:a3:84:1c:5e:38:1b:57:ed:56:f4:b4:74:e1:75:8d:22:2c:
fa:44:f9:80:77:d4:1a:64:ec:6d:c2:fa:8a:fc:73:3d:68:13:
f2:d9:99:77:45:6c:2c:82:67:2e:e1:4f:71:13:f5:56:3d:94:
22:69:cf:4c:ac:30:c6:87:25:2a:a9:81:50:1c:a0:77:f9:c8:
f0:11:23:34:e2:75:bf:a1:1b:16:70:6c:ad:77:70:3c:13:81:
39:65:52:5f:3a:7e:52:cf:37:e8:6b:b3:03:74:c9:e6:c7:62:
c8:42:c3:52:eb:4b:a0:1a:0e:9d:d2:55:0a:f0:c1:c4:d1:e4:
98:7e:a8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org