Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/2J-fwLkJThpZD1LRsNUy2yW8ZRw.roa
File: 2J-fwLkJThpZD1LRsNUy2yW8ZRw.roa (raw, json)
Hash identifier: zmZiRlqmgaUgF4fSlA0iaMAPK5G8+Qv9Fn3OlmzJ5zM=
Subject key identifier: D8:9F:9F:C0:B9:09:4E:1A:59:0F:52:D1:B0:D5:32:DB:25:BC:65:1C
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01864F1194EB865C591C48E21A3FFE92B596
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/2J-fwLkJThpZD1LRsNUy2yW8ZRw.roa
Signing time: Tue 14 Feb 2023 08:36:37 +0000
ROA not before: Tue 14 Feb 2023 08:36:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210240
IP address blocks: 141.101.188.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4f:11:94:eb:86:5c:59:1c:48:e2:1a:3f:fe:92:b5:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Feb 14 08:36:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d89f9fc0b9094e1a590f52d1b0d532db25bc651c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e9:59:bd:18:0a:30:83:c6:72:79:a0:f8:6c:
37:09:cb:fe:7c:2e:d1:9e:0d:7d:41:3e:b6:81:3a:
fe:a6:66:f6:f3:fd:9d:07:64:17:2d:f3:d7:3b:c1:
79:87:ef:fd:e3:44:7d:fd:a8:36:80:db:65:6b:4c:
6a:68:24:31:5d:ed:df:4b:88:c5:35:c8:e9:62:c8:
b1:ce:81:68:c9:03:bc:6f:42:47:47:ef:3e:c7:0c:
25:8a:99:ba:df:d9:4b:0c:82:02:3c:2d:40:e9:af:
d7:90:9c:12:56:14:13:3f:cd:c4:1f:ab:30:e1:cc:
64:eb:90:1f:31:37:73:61:d3:91:4e:09:b1:58:b2:
58:2d:cd:09:d7:46:1d:5f:c5:5b:17:e1:df:12:98:
fb:fe:5e:8b:ef:2e:6e:3a:8d:67:52:63:86:dc:9b:
ad:4b:fe:ff:fe:93:f8:97:5f:73:61:fb:c0:bc:48:
9d:0b:7f:78:40:f0:2f:dd:dd:d7:9b:bf:d7:e6:c7:
a9:1a:cd:e7:b6:5f:8f:6b:c5:1c:77:5e:8e:78:b1:
48:f7:3e:1e:ca:b4:8f:f8:9f:e9:42:df:f5:97:5b:
ba:46:35:90:c8:a3:53:bf:c9:c4:8b:f7:77:eb:d6:
70:91:7e:ce:81:66:97:10:e2:98:03:50:f5:c9:d3:
49:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9F:9F:C0:B9:09:4E:1A:59:0F:52:D1:B0:D5:32:DB:25:BC:65:1C
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/2J-fwLkJThpZD1LRsNUy2yW8ZRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.188.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:c9:7b:e0:61:ef:c1:6e:c4:4d:ec:e2:13:9c:16:b5:15:52:
36:06:4b:84:b4:cb:14:30:8b:f7:6a:c2:9d:8e:d6:b2:f1:67:
3b:55:49:02:31:3a:9b:55:07:15:a1:6e:88:0a:8b:3d:62:97:
47:e1:36:c0:4c:df:bf:9e:b5:aa:41:19:45:bf:bd:96:19:ea:
88:df:97:46:1f:62:c4:0c:0d:16:79:72:1f:ce:f2:9d:5f:4f:
26:8d:0b:38:2b:75:c4:2c:d7:e3:97:63:cd:43:61:6d:ad:70:
82:fa:78:05:d2:36:7d:0d:c1:42:c5:b1:4b:9e:04:4b:9f:f7:
fe:23:25:b3:73:98:fe:3c:ed:57:88:8c:20:a9:16:c9:52:e4:
6a:65:16:f0:94:3a:84:0c:f7:d5:11:40:e6:48:aa:c0:43:5e:
5f:49:e5:5c:16:ca:18:0f:64:88:77:f6:81:38:b1:9b:d0:b2:
f5:8a:de:92:f9:10:80:07:ae:97:51:d0:c1:9b:bd:b0:f6:a5:
ac:0a:23:e1:f9:a4:0f:98:b4:f8:b7:9f:2a:b0:5c:17:81:50:
ff:44:c5:f9:44:9e:0e:a1:f4:06:24:d5:60:5d:56:f2:72:87:
da:5c:86:cf:9a:2a:55:29:d3:5f:52:6e:de:dd:ac:b2:ca:57:
32:8f:22:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:29 2024 by rpki-client on console-ams.rpki-client.org