Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/b6lZRSzp2SkNJa7QJq0fOpKHopw.roa
File: b6lZRSzp2SkNJa7QJq0fOpKHopw.roa (raw, json)
Hash identifier: nuEXTlHqNOO4fpsWPsxX7j9MjUAIY8GCWGCR/wciyEE=
Subject key identifier: 6F:A9:59:45:2C:E9:D9:29:0D:25:AE:D0:26:AD:1F:3A:92:87:A2:9C
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018571955D0A576BCBDAEDC8634E64F3D012
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/b6lZRSzp2SkNJa7QJq0fOpKHopw.roa
Signing time: Mon 02 Jan 2023 08:24:52 +0000
ROA not before: Mon 02 Jan 2023 08:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1132
IP address blocks: 145.120.16.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:5d:0a:57:6b:cb:da:ed:c8:63:4e:64:f3:d0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fa959452ce9d9290d25aed026ad1f3a9287a29c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:87:df:58:22:3f:21:25:bd:f4:d7:a5:a1:c8:
3b:18:fd:28:0a:f9:63:51:d5:56:c7:ac:ac:43:e0:
59:ef:66:7c:d9:bc:ba:8d:1f:73:e6:4d:1e:d9:0b:
7e:64:2a:07:af:84:26:61:db:3e:e5:9f:18:b4:93:
67:28:0f:ce:59:2a:84:dc:c8:b0:de:62:dd:05:a2:
9a:2e:c6:b3:17:13:5f:d2:4d:d9:43:36:21:56:fd:
a4:3f:12:ab:75:51:12:3f:e0:3b:f6:35:65:8c:ed:
df:84:13:55:cc:4e:f9:4e:da:6f:45:b9:50:5e:40:
36:ba:b2:e6:38:3a:e7:3d:06:04:e8:de:a7:1c:28:
3b:ed:aa:14:ea:8e:b3:e0:b3:b7:f0:83:f0:1e:c5:
f5:21:9f:24:a1:97:7e:21:09:e6:d7:c5:1b:41:e0:
04:52:47:a0:c5:80:8e:be:db:25:1c:56:fe:1d:ae:
f9:10:fb:3e:44:43:ac:50:b5:bc:c4:89:c8:1c:3c:
95:e9:0c:11:4d:fa:e9:c1:93:47:c7:f5:f9:59:17:
06:b2:9e:89:fd:95:ce:5e:3e:93:f2:d6:c9:75:d8:
73:10:df:3a:eb:4f:85:bf:e0:1c:9f:a9:e5:3f:42:
cf:4a:f0:71:20:a2:a0:00:b2:60:9c:cb:8d:ae:20:
bb:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A9:59:45:2C:E9:D9:29:0D:25:AE:D0:26:AD:1F:3A:92:87:A2:9C
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/b6lZRSzp2SkNJa7QJq0fOpKHopw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.120.16.0/23
Signature Algorithm: sha256WithRSAEncryption
83:34:2f:f8:61:06:9b:df:0b:94:dd:95:fd:bf:84:ee:56:c6:
b2:0b:35:db:5f:c2:94:3f:e0:bc:fe:0b:0e:db:a6:ca:16:b7:
68:9f:76:bb:db:8c:bb:95:f1:d1:fe:bb:4f:e9:6a:42:a5:e0:
ee:46:5f:2f:a7:f6:19:b1:d0:2e:94:58:58:56:e9:d0:c0:da:
92:46:1e:87:ed:a1:ac:99:30:72:7d:3c:61:c2:3e:76:02:df:
5a:98:25:8d:5f:32:c7:38:34:b3:7b:06:15:a3:59:a4:f7:59:
c9:b1:03:3c:99:f0:00:e2:b3:d8:55:d1:a4:87:56:f2:ae:dc:
1b:e5:cd:a0:2c:fa:07:3e:16:22:8d:38:6a:3a:5f:1c:84:96:
50:0c:e6:59:96:89:57:cb:e5:8b:42:29:e3:a2:37:19:89:99:
bf:de:36:18:fc:1d:26:a2:7e:26:f1:b8:68:87:20:00:6c:4d:
9c:00:22:62:bb:dd:43:1e:d2:dc:77:40:07:04:6a:f4:8d:3c:
d9:a0:c7:87:b0:76:bd:2a:7d:c8:9d:99:04:c1:f3:fe:59:e0:
b6:83:cb:94:5d:b8:cf:5d:a9:79:b4:bb:96:32:f9:10:88:c8:
51:0f:7d:93:47:a6:d5:fe:18:33:81:bb:e3:5b:75:1f:31:78:
8b:47:69:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org