Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/ba8790-ef43-40ea-becf-bb0e0cc26c49/1/1-DKpk_R3WA5YvysMmfb9wNfhLew.roa
File: 1-DKpk_R3WA5YvysMmfb9wNfhLew.roa (raw, json)
Hash identifier: BZMMPIwsaO1p3w+EK2Jg5VPo8FIHH/UFHDSJV9k5fpo=
Subject key identifier: F8:32:A9:93:F4:77:58:0E:58:BF:2B:0C:99:F6:FD:C0:D7:E1:2D:EC
Certificate issuer: /CN=ce65471b94a3260c2d9f658dced2f87f40b5424b
Certificate serial: 01856F42B3C7C7518EB323E8F090F75B3021
Authority key identifier: CE:65:47:1B:94:A3:26:0C:2D:9F:65:8D:CE:D2:F8:7F:40:B5:42:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmVHG5SjJgwtn2WNztL4f0C1Qks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/ba8790-ef43-40ea-becf-bb0e0cc26c49/1/1-DKpk_R3WA5YvysMmfb9wNfhLew.roa
Signing time: Sun 01 Jan 2023 21:35:20 +0000
ROA not before: Sun 01 Jan 2023 21:35:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 192.124.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:b3:c7:c7:51:8e:b3:23:e8:f0:90:f7:5b:30:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce65471b94a3260c2d9f658dced2f87f40b5424b
Validity
Not Before: Jan 1 21:35:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f832a993f477580e58bf2b0c99f6fdc0d7e12dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:51:a3:00:f5:c9:90:17:d5:6f:03:bb:92:d1:
52:7b:57:6c:bb:2a:c5:cf:57:f6:45:25:9f:e7:ae:
9c:6e:6a:7e:f3:8a:5e:c8:e9:01:5a:cf:d3:8a:be:
25:be:60:c7:e6:78:51:20:76:5e:1a:de:b2:1b:ad:
b1:10:59:98:88:31:ef:c9:01:9f:05:46:86:a5:45:
b6:c4:da:b6:9c:08:3a:98:27:39:80:26:16:a3:e8:
25:cb:60:66:1a:67:8a:31:5a:d2:79:fe:1e:34:62:
90:c9:7b:0c:ba:99:6d:f8:46:31:c7:14:0f:9f:87:
cd:42:ac:83:09:92:76:89:af:95:f1:1a:66:f9:2c:
a9:5d:68:6d:c3:90:c0:7c:d9:3e:18:c4:d0:82:1f:
ee:60:29:43:fe:89:79:74:f4:da:a3:51:c6:06:e0:
28:76:a7:72:ad:99:99:87:6b:54:ac:6f:0d:ee:48:
ed:c9:01:d7:28:48:94:db:78:ca:6c:4c:ef:7e:58:
6b:d6:cd:46:50:cb:72:2a:93:76:76:04:37:1d:46:
17:fc:16:57:ec:fc:02:50:cf:ac:0b:37:c3:ca:b3:
45:92:67:85:ea:14:68:31:79:f2:ae:47:73:6c:fb:
16:33:cd:55:14:5a:cf:98:8d:fe:db:40:57:c8:eb:
bc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:32:A9:93:F4:77:58:0E:58:BF:2B:0C:99:F6:FD:C0:D7:E1:2D:EC
X509v3 Authority Key Identifier:
keyid:CE:65:47:1B:94:A3:26:0C:2D:9F:65:8D:CE:D2:F8:7F:40:B5:42:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmVHG5SjJgwtn2WNztL4f0C1Qks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/ba8790-ef43-40ea-becf-bb0e0cc26c49/1/1-DKpk_R3WA5YvysMmfb9wNfhLew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/ba8790-ef43-40ea-becf-bb0e0cc26c49/1/zmVHG5SjJgwtn2WNztL4f0C1Qks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.254.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:32:4d:09:d7:f0:fa:ca:5a:f5:21:2d:87:83:af:49:a0:c7:
e5:28:76:3d:d7:41:54:bf:89:37:43:1e:22:ab:b9:a0:bd:ac:
4a:5a:51:63:f1:fe:de:46:c2:c6:45:ee:13:0c:61:56:97:26:
ee:da:1a:a8:dc:9f:8a:e6:2e:05:da:ea:4c:6d:8e:19:f5:10:
c6:70:7b:ab:be:37:87:3c:0b:c2:d0:43:88:83:aa:fd:2b:8d:
1c:1a:2b:5a:11:e0:9d:20:68:e9:6f:dd:e0:73:65:86:9e:e5:
4c:22:ce:c3:09:48:69:b3:f1:c0:48:f8:cf:14:f1:a6:57:3e:
d8:ea:31:ce:9d:1a:90:87:2a:58:79:ad:92:47:e4:d7:9d:5d:
1f:bd:48:36:1b:e3:54:06:a8:32:47:d6:e0:d8:d2:cf:f4:e9:
99:f8:e7:4e:ab:6f:70:7f:d7:b9:40:bb:93:39:ae:88:a0:25:
3d:18:80:49:38:f8:50:1b:90:0f:d2:37:79:15:ab:fc:61:65:
b4:c1:90:64:49:a6:9e:d9:6b:99:0c:69:ed:45:60:f4:48:cd:
ed:d2:b5:6e:97:f6:f5:a3:1f:c0:51:e7:a2:11:d9:be:dc:cb:
b8:e2:f0:45:b1:1c:95:e8:c9:64:f4:f6:e7:47:b6:0d:30:b8:
cf:05:68:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:44 2024 by rpki-client on console-ams.rpki-client.org