Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/QrcO6sVjqvROuC4cESC_dth1mD0.roa
File: QrcO6sVjqvROuC4cESC_dth1mD0.roa (raw, json)
Hash identifier: epF7MjBZW1lbuwoDSnwpqX/y/jshku6LNnEEVcU3wrY=
Subject key identifier: 42:B7:0E:EA:C5:63:AA:F4:4E:B8:2E:1C:11:20:BF:76:D8:75:98:3D
Certificate issuer: /CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Certificate serial: 01914E905DD13E6C2EE9098CD051F326025C
Authority key identifier: 4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/QrcO6sVjqvROuC4cESC_dth1mD0.roa
Signing time: Wed 14 Aug 2024 01:46:09 +0000
ROA not before: Wed 14 Aug 2024 01:46:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54994
IP address blocks: 140.150.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 03:46:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4e:90:5d:d1:3e:6c:2e:e9:09:8c:d0:51:f3:26:02:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Validity
Not Before: Aug 14 01:46:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42b70eeac563aaf44eb82e1c1120bf76d875983d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:96:6e:32:29:89:75:04:e7:bc:31:af:41:aa:
8e:99:70:d6:49:4f:81:00:6e:0b:c2:23:60:b0:12:
ff:b0:de:59:c8:bd:71:26:ec:df:0f:53:87:54:1f:
59:96:98:bb:11:82:79:2e:e1:22:36:8d:b6:34:72:
2d:a3:25:b8:7a:16:69:9a:dc:fd:6d:66:bc:48:16:
d1:57:b5:d2:61:9a:cf:1c:14:78:26:6a:a4:81:09:
1c:63:cc:ce:a6:ce:b8:1e:63:cd:96:ae:3f:20:60:
cf:8a:6e:6a:8e:8b:d8:3d:65:12:14:65:ed:5f:a6:
2a:27:6c:d2:b7:c1:8e:9a:77:82:47:31:de:c1:18:
97:e7:d2:62:41:54:c3:d0:a6:83:4e:5b:89:6d:97:
34:f2:8e:76:12:f8:e1:b2:ac:69:2c:6f:f2:45:3a:
c5:2b:ba:be:0d:4a:77:4f:4b:03:9b:83:c5:40:eb:
aa:96:ad:79:3e:c8:c4:9d:cd:51:4e:e5:5e:98:89:
05:c0:61:3c:ee:be:05:3e:dc:2b:37:10:c0:cb:25:
12:00:ea:e4:73:47:a7:3d:1b:c0:c4:ba:5c:8f:de:
8d:c2:d3:63:1e:77:8d:a2:02:3b:4a:84:d5:51:5e:
ff:b3:6d:3b:ba:b4:75:1d:14:5d:c4:4a:8a:23:9c:
2d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B7:0E:EA:C5:63:AA:F4:4E:B8:2E:1C:11:20:BF:76:D8:75:98:3D
X509v3 Authority Key Identifier:
keyid:4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/QrcO6sVjqvROuC4cESC_dth1mD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/S5Mx-nvkcNwXnhbDBumMbHMaV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.1.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:75:1c:af:ac:69:07:07:6b:22:7e:5f:47:bf:69:c8:d4:6b:
c6:b5:61:f6:e7:c1:ee:07:21:4e:d5:db:01:ee:01:4f:da:98:
cc:2b:c2:b0:bb:60:4c:8a:b8:b5:69:40:da:d4:1f:73:12:1b:
37:3f:90:9a:dc:5c:ce:82:94:c6:27:6e:a4:d0:d2:35:bd:77:
91:bb:cb:99:85:0a:84:ca:dd:73:67:21:e5:57:4e:3d:af:16:
fd:a2:7d:ac:bf:ef:ec:fb:f9:ed:c9:14:8c:d3:68:b3:83:2b:
c4:bd:a8:bf:41:3d:bd:65:a5:d2:51:01:f1:49:6a:b7:9d:a3:
5b:3f:25:5a:59:01:69:af:e1:42:5d:d6:e6:60:50:31:4e:69:
ca:15:1f:00:f6:56:5b:0f:b7:00:5b:18:c6:c9:a3:62:1a:48:
a9:bb:aa:96:bd:f0:72:c5:19:1b:cf:d5:5c:1b:a9:0c:22:6b:
50:be:c4:30:28:70:70:ac:ef:03:19:56:f4:ff:5e:28:56:17:
e0:96:38:dc:9a:77:0a:a7:b1:d7:cc:7d:d7:d4:40:19:e0:e5:
7d:db:77:e3:b0:d3:1b:48:ec:eb:97:29:88:82:96:aa:d9:ae:
a8:87:b9:2e:71:ac:39:44:db:25:4d:10:b3:8e:da:28:ba:a1:
4c:43:12:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 05:16:39 2024 by rpki-client on console-ams.rpki-client.org