Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/8vXmxA_aZvhn3F-FOZN1Lundd7I.roa
File: 8vXmxA_aZvhn3F-FOZN1Lundd7I.roa (raw, json)
Hash identifier: CBFQP/W0goSze6f+1tpjUVqq0jeb6O/g5PrCBwzmhZ0=
Subject key identifier: F2:F5:E6:C4:0F:DA:66:F8:67:DC:5F:85:39:93:75:2E:E9:DD:77:B2
Certificate issuer: /CN=cdfcbde632d106faad98c2c1895a877ca601521a
Certificate serial: 018571C312875473175B4C0928FE0A541CC9
Authority key identifier: CD:FC:BD:E6:32:D1:06:FA:AD:98:C2:C1:89:5A:87:7C:A6:01:52:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/8vXmxA_aZvhn3F-FOZN1Lundd7I.roa
Signing time: Mon 02 Jan 2023 09:14:47 +0000
ROA not before: Mon 02 Jan 2023 09:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1103
IP address blocks: 137.120.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:12:87:54:73:17:5b:4c:09:28:fe:0a:54:1c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdfcbde632d106faad98c2c1895a877ca601521a
Validity
Not Before: Jan 2 09:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2f5e6c40fda66f867dc5f853993752ee9dd77b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:22:ec:64:cc:a0:1d:d5:9c:e8:dc:e7:a2:7c:
17:60:cb:1e:97:2c:0d:82:ce:b6:dd:26:12:cd:16:
2a:c7:90:04:70:93:45:b0:8d:b8:83:7c:12:1e:7b:
4a:ef:e0:66:c7:64:e5:1e:67:2e:c7:8f:fc:d6:a1:
5b:4e:71:c2:50:0c:ff:61:2a:c8:57:ba:bc:97:a0:
df:c2:a1:fa:2f:76:0d:90:6e:e7:b1:d4:01:af:7f:
ef:ba:70:d7:48:6b:7f:ec:6b:20:0b:ca:6d:22:d2:
8f:d8:0a:bc:fd:e5:c8:24:10:87:ca:a3:b1:f0:71:
10:82:de:f4:d9:ac:73:64:16:49:00:d6:0e:52:e4:
7e:50:78:4b:3c:70:b7:b5:eb:af:76:30:3a:82:ed:
7c:a0:be:77:cc:63:2e:89:cb:b9:99:59:5d:02:af:
31:6b:44:8e:e2:49:65:86:b0:84:c2:d6:59:af:c7:
4c:2d:a9:05:e3:76:e4:86:ff:23:a0:44:d5:17:ff:
e6:c9:5c:fc:03:7d:db:e5:11:52:8a:e8:27:e9:87:
15:fa:bb:28:05:52:d1:59:3e:3f:5c:f0:7d:77:c1:
25:9b:1d:44:ba:c2:43:b6:e1:7c:b2:45:13:f6:4f:
53:e6:c0:83:72:82:e1:27:98:2a:73:f4:b9:a7:51:
6b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F5:E6:C4:0F:DA:66:F8:67:DC:5F:85:39:93:75:2E:E9:DD:77:B2
X509v3 Authority Key Identifier:
keyid:CD:FC:BD:E6:32:D1:06:FA:AD:98:C2:C1:89:5A:87:7C:A6:01:52:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfy95jLRBvqtmMLBiVqHfKYBUho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/8vXmxA_aZvhn3F-FOZN1Lundd7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/fe45cf-4ad2-41d9-bbca-203cfa238696/1/zfy95jLRBvqtmMLBiVqHfKYBUho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.120.0.0/16
Signature Algorithm: sha256WithRSAEncryption
58:b2:00:c8:49:5f:b2:de:73:9b:b0:7f:8d:be:3c:9a:c2:ee:
04:32:3e:9c:25:b0:f1:11:72:c2:c7:d7:b7:e8:32:0f:7f:40:
25:c8:cc:12:41:1e:cb:40:35:46:ee:9c:73:55:96:eb:37:f8:
5c:5e:32:1e:9a:51:c9:ca:ae:59:6f:af:dd:3c:ab:ff:23:8e:
16:99:bd:d6:16:b4:1f:bd:29:dd:53:8f:dc:38:9b:2d:44:e6:
5a:f4:fe:1a:16:0b:ff:20:7b:be:ab:69:6d:2e:27:ee:77:1c:
d6:21:3e:04:d2:3c:3d:96:e4:1c:fc:4f:da:c4:9e:8b:3e:9e:
f7:07:cd:5e:ec:6e:88:36:55:58:90:cd:30:99:17:b8:02:62:
50:4b:bd:45:70:e0:3e:99:24:c2:42:cb:7b:21:59:10:d3:f5:
dd:e1:29:73:3a:68:e1:fe:ae:3d:21:8a:e1:21:d1:00:82:e6:
5e:ae:3e:fb:6b:26:26:93:3e:07:c8:88:d7:70:71:95:4b:2e:
ed:73:86:6e:9d:9f:4d:2e:ae:60:bf:04:35:da:2e:e2:9b:6a:
3a:07:ea:82:6e:9e:76:71:28:2e:f8:13:a8:5f:ab:50:5b:fc:
10:d8:6c:99:fc:79:ed:cd:e6:38:2e:55:aa:83:af:38:cb:a9:
47:cd:cb:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:21 2024 by rpki-client on console-ams.rpki-client.org