Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/r4S07RX1wvSqdTKHMhG-AufpATg.roa
File: r4S07RX1wvSqdTKHMhG-AufpATg.roa (raw, json)
Hash identifier: Y5ei/XPTcHtElYe3HcygL2knIzcu289jZe3TDOSoCrA=
Subject key identifier: AF:84:B4:ED:15:F5:C2:F4:AA:75:32:87:32:11:BE:02:E7:E9:01:38
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A323C151EE754F5CEE01D0792FF51
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/r4S07RX1wvSqdTKHMhG-AufpATg.roa
Signing time: Sun 01 Jan 2023 03:05:02 +0000
ROA not before: Sun 01 Jan 2023 03:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59903
IP address blocks: 141.101.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Feb 2023 15:32:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:32:3c:15:1e:e7:54:f5:ce:e0:1d:07:92:ff:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af84b4ed15f5c2f4aa7532873211be02e7e90138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ad:21:e0:2f:b9:4b:65:77:be:0c:c6:62:fa:
8b:82:8f:1b:c2:ec:2d:dd:5b:fd:e7:98:00:51:20:
4c:87:dd:3f:bb:2e:45:f3:d9:5e:68:79:a0:ba:44:
cb:22:5a:bb:9b:cc:d3:f7:7d:f5:2b:4d:26:3c:4a:
59:a5:2d:38:13:1e:69:d0:e2:34:8e:01:84:01:cf:
d9:08:e5:e2:df:18:94:71:cc:0a:2b:37:1d:b2:56:
2a:55:4f:b2:c7:5e:4f:12:d3:4b:e9:43:00:b1:63:
c3:47:d2:94:d9:d8:df:78:01:18:45:0e:59:b2:fe:
27:88:8c:6d:ae:c9:e1:37:17:8b:7b:a1:47:81:60:
3c:c9:d9:68:11:b2:12:5a:a4:0e:02:b2:a9:69:e7:
57:ce:17:91:c7:26:79:92:73:80:eb:d4:94:d3:16:
ee:72:16:3b:9c:3a:36:d9:c3:20:a7:a1:c9:b1:19:
36:bd:82:48:f9:d2:8e:66:68:f0:a0:9f:53:98:40:
e3:31:1c:9a:0f:b4:d0:7c:5a:4a:d8:2b:59:ab:5d:
61:0a:b4:db:7d:01:f5:39:13:51:64:dd:8b:e9:c9:
4d:aa:7a:e4:10:84:82:01:ef:a3:6e:10:9b:27:d0:
f6:b4:59:25:42:21:f9:7b:e7:da:25:1b:30:35:1f:
63:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:84:B4:ED:15:F5:C2:F4:AA:75:32:87:32:11:BE:02:E7:E9:01:38
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/r4S07RX1wvSqdTKHMhG-AufpATg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.248.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:93:da:05:e2:b3:b7:78:b2:f9:47:ee:44:89:62:fb:3c:5a:
a4:11:e3:4c:bd:42:09:cb:16:11:79:22:f0:08:64:18:ba:73:
ed:e3:c0:88:43:2e:7a:17:f2:ad:0b:df:ad:86:8d:ed:8c:e7:
5f:55:95:d6:d0:7d:02:05:65:38:a6:3b:cd:8e:15:33:a3:83:
3c:27:26:a2:21:7f:c7:74:89:c4:7f:4f:e9:4e:73:f9:ff:b6:
1c:a0:38:ba:d6:40:32:b7:25:66:ae:b3:77:1a:8d:52:2c:97:
85:bd:56:bc:e4:83:31:31:52:31:28:bd:f8:cc:bf:9c:85:76:
2e:16:8e:65:d0:ef:a2:a9:da:7f:6b:67:71:1a:ba:56:94:3f:
b3:c8:5c:86:cb:e3:29:18:9b:22:79:f6:c8:8d:f8:d7:61:c9:
a0:6e:da:9d:6f:4c:b0:e4:d9:98:0a:1d:57:c7:bb:e2:b1:61:
17:15:0b:c4:bf:ab:ed:b0:33:65:13:6d:06:c9:31:2b:1d:c7:
1a:92:d2:ff:df:98:3d:82:e1:ab:99:2a:01:6b:97:c4:51:2f:
ae:4a:6e:a9:76:31:36:07:84:bb:68:27:25:87:4b:ca:cf:ed:
b6:e8:f7:db:d0:89:96:64:a5:52:64:d0:8f:e7:75:73:66:6b:
ea:eb:db:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org