Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/40Rz9l3Xh1MPqSOPYS9l-iAkyf8.roa
File: 40Rz9l3Xh1MPqSOPYS9l-iAkyf8.roa (raw, json)
Hash identifier: ++jOKDq9gJBDku0/AkRXmsCYWr4XeAd90fACseHP4Rg=
Subject key identifier: E3:44:73:F6:5D:D7:87:53:0F:A9:23:8F:61:2F:65:FA:20:24:C9:FF
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 018571B0EB52219950F3C93F102417D0704E
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/40Rz9l3Xh1MPqSOPYS9l-iAkyf8.roa
Signing time: Mon 02 Jan 2023 08:54:57 +0000
ROA not before: Mon 02 Jan 2023 08:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 132892
IP address blocks: 141.101.88.0/24 maxlen: 24
141.101.89.0/24 maxlen: 24
2a06:98c0:3604::/48 maxlen: 48
2a06:98c0:3614::/48 maxlen: 48
2a06:98c0:360f::/48 maxlen: 48
2a06:98c0:360a::/48 maxlen: 48
2a06:98c0:3605::/48 maxlen: 48
2a06:98c0:3615::/48 maxlen: 48
2a06:98c0:3608::/48 maxlen: 48
2a06:98c0:3603::/48 maxlen: 48
2a06:98c0:3613::/48 maxlen: 48
2a06:98c0:3609::/48 maxlen: 48
2a06:98c0:360c::/48 maxlen: 48
2a06:98c0:3607::/48 maxlen: 48
2a06:98c0:3602::/48 maxlen: 48
2a06:98c0:360d::/48 maxlen: 48
2a06:98c0:3610::/48 maxlen: 48
2a06:98c0:3600::/48 maxlen: 48
2a06:98c0:360b::/48 maxlen: 48
2a06:98c0:3606::/48 maxlen: 48
2a06:98c0:3611::/48 maxlen: 48
2a06:98c0:3601::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:eb:52:21:99:50:f3:c9:3f:10:24:17:d0:70:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Jan 2 08:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e34473f65dd787530fa9238f612f65fa2024c9ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d0:e5:a2:87:41:37:8b:17:58:2d:96:cf:56:
4b:6a:b8:3b:00:06:c7:39:91:5a:62:f0:4b:de:85:
72:e7:ea:37:30:54:ac:90:c9:db:3d:b9:72:43:00:
e2:95:8b:d4:18:b1:c5:39:d9:70:52:5b:03:2c:31:
ad:66:e3:cc:32:d0:cc:7d:c8:4b:eb:26:d0:b4:2b:
f8:3d:76:06:74:50:14:19:1a:68:18:bd:ca:8f:35:
e8:4a:cb:3a:9f:a2:b0:cb:3b:49:8a:a7:32:da:ea:
25:f0:8b:53:00:fd:f0:ba:cb:6b:8a:3f:2b:8d:d2:
90:b7:7c:b0:5d:45:ce:52:b4:ac:a1:ec:46:78:dd:
cc:32:77:4b:f3:e9:94:6b:c2:55:08:b1:77:b2:b7:
b0:2a:e3:66:e6:3c:0c:23:05:57:12:52:2d:fc:a1:
f3:89:02:e0:0e:6b:4a:c1:97:db:a7:2e:5c:19:9b:
94:90:f7:51:0b:db:49:32:49:81:44:92:64:d3:a9:
21:67:38:71:d4:0f:4a:fa:3c:10:1b:11:3f:f6:a9:
85:3f:6f:ec:07:24:1f:14:8f:be:ff:5a:86:b7:f2:
e9:db:86:55:ce:7e:f7:9d:bc:19:09:84:41:6d:6b:
49:b3:74:4c:53:5e:32:e2:a5:81:46:e8:f2:2c:eb:
61:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:44:73:F6:5D:D7:87:53:0F:A9:23:8F:61:2F:65:FA:20:24:C9:FF
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/40Rz9l3Xh1MPqSOPYS9l-iAkyf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.88.0/23
IPv6:
2a06:98c0:3600::-2a06:98c0:360d:ffff:ffff:ffff:ffff:ffff
2a06:98c0:360f::-2a06:98c0:3611:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3613::-2a06:98c0:3615:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
86:bf:d6:03:ce:36:89:49:59:c3:86:d6:cb:3f:6b:84:91:af:
7c:8a:b9:3e:8a:5f:b3:31:8f:f4:7f:be:13:55:e5:05:e4:f5:
03:5a:40:cc:e4:ea:df:75:e3:2b:e9:6f:5d:78:d6:0d:13:de:
b3:6b:ae:27:14:60:89:8f:55:32:f0:a3:80:8b:64:55:00:d1:
67:d9:4c:07:3e:c2:88:cb:ee:83:c5:7d:28:35:77:4c:6c:24:
14:3f:1d:9f:6b:43:e5:3a:88:5a:0d:4a:32:40:5c:ee:ff:b5:
97:4a:df:5e:36:21:a7:82:26:c3:57:27:8d:df:b6:01:7a:b9:
13:eb:84:40:83:96:8b:11:40:56:c5:30:0b:7f:f0:81:da:d0:
3c:98:87:2e:d1:60:aa:c1:3e:7d:97:82:3f:85:f1:2d:1e:05:
b1:c8:d0:81:6b:d8:e9:96:af:09:66:e3:a9:36:0e:12:91:a6:
32:b4:51:25:c6:0c:9f:1c:7a:65:06:2e:56:49:86:da:38:5e:
b5:bc:eb:58:02:5b:8e:9a:cd:df:5e:37:78:53:c8:33:97:e9:
46:a2:7f:98:ff:11:2d:7f:d9:3e:bb:23:2e:69:13:e1:4c:e7:
ba:8c:c1:4a:11:32:0d:ff:44:7a:71:aa:75:68:cd:55:d1:a5:
49:f8:2b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org