Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/o01K0FIl9C9DefLkdHrAA-22Iys.roa
File: o01K0FIl9C9DefLkdHrAA-22Iys.roa (raw, json)
Hash identifier: hLkc0LvfKz5TtTxjR3dTCqPB9osRkGL/S/Kdzjn81Qw=
Subject key identifier: A3:4D:4A:D0:52:25:F4:2F:43:79:F2:E4:74:7A:C0:03:ED:B6:23:2B
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018699335CB223F0705D4B8866817F8343C1
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/o01K0FIl9C9DefLkdHrAA-22Iys.roa
Signing time: Tue 28 Feb 2023 18:05:25 +0000
ROA not before: Tue 28 Feb 2023 18:05:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209854
IP address blocks: 146.66.210.0/24 maxlen: 24
178.157.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 May 2023 19:56:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:99:33:5c:b2:23:f0:70:5d:4b:88:66:81:7f:83:43:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Feb 28 18:05:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a34d4ad05225f42f4379f2e4747ac003edb6232b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:06:8f:fb:f8:fd:c2:ee:31:21:35:1a:61:00:
f3:41:47:3c:89:b6:a2:3b:53:4a:d1:c4:f9:a8:cc:
16:b6:26:6a:bd:17:bc:e8:25:c4:f6:7a:01:2e:e0:
70:bf:18:ef:f5:72:a1:26:26:60:87:f1:07:b1:9f:
0c:1c:b1:d2:37:2f:cb:26:16:e9:3c:b6:52:cb:e2:
cb:4d:c0:68:54:04:2c:66:80:66:74:81:9d:88:e1:
a6:3d:fd:c1:5e:d1:5a:47:7e:10:f1:c7:08:dc:fb:
f3:27:e6:93:55:6f:b7:df:c1:f2:18:ee:8e:4a:7b:
43:e5:28:4f:1d:0e:d6:f6:58:e1:1f:2c:68:c7:36:
64:47:19:17:65:60:a5:6c:f5:84:2f:69:8f:2b:0b:
82:cb:88:14:5e:a6:1b:1b:d4:1e:42:17:49:4f:31:
d0:5b:b7:66:d2:d6:21:a5:52:d0:0d:3f:62:07:ce:
7d:bc:6d:50:f0:3d:f0:a4:f5:cc:ab:e4:b0:20:ef:
5a:0a:59:db:09:47:e5:be:93:a3:46:82:30:c3:99:
03:87:eb:4c:66:31:f9:32:f5:25:78:09:d3:b0:dc:
4e:5c:76:dd:ba:29:79:0a:b0:f7:e0:93:8f:24:b3:
5f:54:26:d4:75:00:ae:43:eb:c3:ea:d5:45:b9:a0:
34:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4D:4A:D0:52:25:F4:2F:43:79:F2:E4:74:7A:C0:03:ED:B6:23:2B
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/o01K0FIl9C9DefLkdHrAA-22Iys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.66.210.0/24
178.157.109.0/24
Signature Algorithm: sha256WithRSAEncryption
35:1b:4a:dd:7b:7d:b1:ad:a7:0a:4e:f5:7c:61:31:4d:60:f8:
71:b8:7f:82:c8:89:e9:b7:02:3f:62:1b:2c:1e:2d:92:3c:cc:
43:fe:4a:18:21:2e:9c:c7:10:bb:5c:14:e1:a9:7f:b0:15:fc:
f6:9b:b0:42:fa:5a:14:86:5c:84:f7:a8:35:45:2e:40:8f:65:
6b:89:52:55:cd:1d:7a:ea:71:0a:38:cc:64:d8:8a:27:3e:8c:
0a:78:c0:46:6f:21:22:aa:93:d8:a6:97:9f:64:59:a0:17:32:
97:8b:b4:18:21:e5:2e:4a:7e:cd:62:bf:08:4f:95:0e:bc:de:
89:59:07:b9:87:31:88:a5:c1:10:18:0b:e4:c2:dd:0e:39:53:
c1:18:d9:da:f8:4a:e4:3a:b7:98:f4:9c:a4:11:66:d2:c2:f2:
b3:34:32:e5:a3:ac:6d:c1:1a:72:c3:ea:3c:8a:1d:29:a0:ea:
32:f5:3b:90:55:11:5c:0c:5c:c1:a1:66:e8:64:a9:a9:18:49:
b6:82:d8:3e:e3:c0:4f:a2:ec:8b:4e:c1:46:3e:97:f8:1c:73:
01:31:27:65:85:bb:50:3d:67:85:76:bf:4a:0f:44:24:ed:2c:
04:02:0c:22:44:49:ce:21:5c:10:f9:b1:df:b6:b2:06:a3:49:
04:2a:71:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:16 2024 by rpki-client on console-fra.rpki-client.org