Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c1d425-de03-4ebe-b652-da34fcb7b942/1/Q8zvxdWn3G02Znagu5vD_eWeTz8.roa
File: Q8zvxdWn3G02Znagu5vD_eWeTz8.roa (raw, json)
Hash identifier: vK0Sc8CZYY1AHnN73zXe2iIIsgP1ebirDMYDJZNnwaU=
Subject key identifier: 43:CC:EF:C5:D5:A7:DC:6D:36:66:76:A0:BB:9B:C3:FD:E5:9E:4F:3F
Certificate issuer: /CN=1306c7878f7b3f5da0901dec7473aa2291556e72
Certificate serial: 01856B2E6E01B3EAFECD9224B86B4ABD104C
Authority key identifier: 13:06:C7:87:8F:7B:3F:5D:A0:90:1D:EC:74:73:AA:22:91:55:6E:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EwbHh497P12gkB3sdHOqIpFVbnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c1d425-de03-4ebe-b652-da34fcb7b942/1/Q8zvxdWn3G02Znagu5vD_eWeTz8.roa
Signing time: Sun 01 Jan 2023 02:34:42 +0000
ROA not before: Sun 01 Jan 2023 02:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 559
IP address blocks: 138.131.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:2e:6e:01:b3:ea:fe:cd:92:24:b8:6b:4a:bd:10:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1306c7878f7b3f5da0901dec7473aa2291556e72
Validity
Not Before: Jan 1 02:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43ccefc5d5a7dc6d366676a0bb9bc3fde59e4f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f9:d7:c2:7d:3a:73:5d:db:c3:0e:8d:ab:c0:
ec:89:b6:36:e5:55:59:9d:24:27:dc:b2:2c:0e:aa:
07:7a:6b:42:84:ed:be:b0:23:ae:e8:5b:77:1a:75:
de:73:8b:52:66:66:b7:3e:c2:49:dc:c4:39:c0:97:
9a:cc:0f:c0:3b:af:e9:04:f2:ae:74:aa:0c:f7:5f:
78:a4:45:7d:7e:b1:56:51:89:67:2c:a2:e1:91:69:
c9:e5:c1:70:11:cc:b7:64:c8:84:46:27:91:b4:cf:
b2:9e:e1:39:3c:04:f5:22:54:e3:8b:1b:13:fd:7a:
bf:97:24:9b:de:50:40:ac:0e:60:73:9d:64:05:d7:
f5:4e:23:ee:1e:f3:59:e3:6c:89:05:8a:0b:e2:1d:
77:7d:ff:93:1d:09:a1:33:07:3d:6c:1b:37:97:28:
2e:b1:f5:ab:76:16:4e:8f:5a:6e:74:cf:2b:46:a1:
8c:e8:30:58:dd:54:6d:84:34:70:a7:14:03:cd:6b:
88:ef:d6:b8:ee:ba:ff:ac:94:42:5d:11:84:20:01:
4d:81:1e:27:37:e0:8b:17:2b:36:35:81:f7:6d:2c:
d5:be:46:24:e0:6d:ff:6b:e6:99:ac:d0:1b:6c:fa:
c4:60:29:43:5c:79:6e:ee:0e:ea:2b:0a:3d:e2:05:
8e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:CC:EF:C5:D5:A7:DC:6D:36:66:76:A0:BB:9B:C3:FD:E5:9E:4F:3F
X509v3 Authority Key Identifier:
keyid:13:06:C7:87:8F:7B:3F:5D:A0:90:1D:EC:74:73:AA:22:91:55:6E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EwbHh497P12gkB3sdHOqIpFVbnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c1d425-de03-4ebe-b652-da34fcb7b942/1/Q8zvxdWn3G02Znagu5vD_eWeTz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c1d425-de03-4ebe-b652-da34fcb7b942/1/EwbHh497P12gkB3sdHOqIpFVbnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.131.0.0/16
Signature Algorithm: sha256WithRSAEncryption
90:9e:87:44:98:c2:f0:a6:f5:e0:40:a7:0f:dd:ff:70:54:0f:
46:f0:c7:21:17:97:ab:51:3e:47:4f:47:2e:5b:1e:17:89:e0:
88:78:61:fe:1c:37:a9:12:3f:df:bc:de:9c:de:86:3a:d4:cc:
66:19:50:4f:8f:e4:08:64:cf:b2:29:13:14:f7:54:bd:dd:d0:
85:8a:65:2b:89:46:af:ca:d7:59:51:b3:18:a8:55:db:ff:a9:
75:48:65:ff:3d:ee:e3:32:c9:1c:c4:94:fc:f9:20:1e:ca:1c:
2c:93:6e:92:ab:5d:34:70:2e:e1:9a:c9:46:8a:d3:94:83:e7:
20:08:12:8a:91:92:ab:8e:16:37:31:e3:b7:d2:9d:af:13:8f:
3c:ed:d8:c9:c1:55:ea:1b:92:fa:ef:75:49:f1:89:cd:9b:46:
a2:d7:b6:78:16:e4:75:21:70:03:52:82:e4:7e:54:8c:68:7c:
ed:a8:c8:5f:81:db:ca:ee:64:48:90:6e:97:8b:b3:b8:b1:4a:
11:3b:33:40:62:81:cd:e6:29:6a:75:97:42:0f:bb:f4:b8:95:
a1:8d:0b:0c:9d:90:2d:04:1a:07:88:93:cb:98:86:cf:c2:6c:
ff:2b:d0:77:db:89:8b:54:07:15:52:76:f4:94:68:5e:8e:55:
fd:1c:6e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:24 2024 by rpki-client on console-ams.rpki-client.org