Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/N86h5hRqDOdt_h58uuFO2Q7lPn4.roa
File: N86h5hRqDOdt_h58uuFO2Q7lPn4.roa (raw, json)
Hash identifier: IMpxub/IaJQSidGMpNcTAHxjUv7uW6Bxy3ox6bFo0oE=
Subject key identifier: 37:CE:A1:E6:14:6A:0C:E7:6D:FE:1E:7C:BA:E1:4E:D9:0E:E5:3E:7E
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 01857195623C7BBF9B34CC25DD69A0DDD8EB
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/N86h5hRqDOdt_h58uuFO2Q7lPn4.roa
Signing time: Mon 02 Jan 2023 08:24:53 +0000
ROA not before: Mon 02 Jan 2023 08:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1161
IP address blocks: 145.116.32.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:62:3c:7b:bf:9b:34:cc:25:dd:69:a0:dd:d8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37cea1e6146a0ce76dfe1e7cbae14ed90ee53e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:72:72:d2:3a:eb:1a:fa:82:c4:ba:ac:68:fa:
10:41:66:3a:8e:ea:14:db:f7:6a:12:ff:c0:b7:60:
ec:bc:af:e8:56:ac:32:39:78:38:56:35:a6:da:26:
78:3c:47:1e:9c:1a:9c:27:b4:a8:3b:d8:b9:04:b4:
6c:57:0a:cb:33:7c:93:b8:0d:d4:aa:bb:71:83:c7:
88:af:33:40:ad:85:be:a0:98:d5:4b:23:aa:8d:e2:
9c:55:49:56:cb:71:9d:04:c1:cf:77:6c:df:42:6c:
44:65:59:28:5d:f8:8d:c8:10:e1:5c:dd:e2:24:49:
46:a7:45:8a:94:98:80:3b:dc:1a:a0:5f:43:72:71:
dd:a4:2d:e2:51:9e:9f:98:3f:6b:61:a4:5a:5d:c5:
ad:dc:50:ef:07:35:72:cd:d0:ce:9c:ef:97:85:75:
f8:79:0b:07:43:41:25:f4:20:9c:ee:4c:75:ed:3f:
2b:f5:00:7d:a5:2e:a4:05:02:07:33:a2:07:b3:92:
61:3a:e6:70:2e:d8:b4:c0:bc:99:e7:4c:99:d3:76:
1c:d7:75:53:1d:b6:13:64:9f:b1:8a:42:be:8a:cc:
5c:da:e0:b0:4d:38:61:51:a5:19:0c:bf:d2:35:dc:
50:c5:b1:ec:42:bf:d9:25:b5:54:aa:61:cb:cd:80:
b6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:CE:A1:E6:14:6A:0C:E7:6D:FE:1E:7C:BA:E1:4E:D9:0E:E5:3E:7E
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/N86h5hRqDOdt_h58uuFO2Q7lPn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.116.32.0/20
Signature Algorithm: sha256WithRSAEncryption
34:26:d9:f4:a8:c2:a6:4a:b7:ad:67:bf:44:9b:46:51:f0:63:
90:42:26:aa:55:71:86:30:0f:54:7f:b9:d4:d4:8e:4e:08:70:
58:32:fc:68:49:ca:3e:58:05:b8:4a:32:72:12:48:e1:d6:32:
f2:29:b8:11:17:3e:fd:37:93:a8:ce:44:bf:8e:bc:76:91:df:
e7:49:f2:3c:75:08:22:5a:7e:75:7b:16:cb:8f:be:09:f2:23:
56:63:bf:87:04:f8:80:70:d2:e5:e9:db:98:af:85:11:01:21:
2a:61:be:4d:84:9d:28:be:f0:bd:31:ee:3c:7b:a0:a7:c0:dd:
d3:8f:cc:e9:ee:4d:ee:ca:67:39:24:16:12:1c:29:48:5f:d7:
86:e5:4e:98:f0:52:0c:a9:8a:16:49:f1:42:8a:8d:dc:bc:17:
94:49:45:19:aa:13:96:a3:a6:1b:c2:4e:ac:2e:c8:63:51:0b:
91:2b:80:89:02:41:c8:15:72:e3:e3:b9:0e:69:a9:df:29:f0:
5c:db:e4:cc:28:cc:c5:76:48:6d:2f:a4:91:5f:e6:c3:2d:35:
fc:10:13:0c:cb:c6:46:97:fc:1b:27:bd:31:45:f9:55:86:c2:
91:21:0f:55:e5:89:15:e6:e8:59:09:10:f4:ce:f7:c7:90:54:
c2:96:36:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org