Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/mHAyivxGyiJQZYLlf90LbzUz5x8.roa
File: mHAyivxGyiJQZYLlf90LbzUz5x8.roa (raw, json)
Hash identifier: owEe6uxoEKJ+Cq1L4rfCFOTbuc1qUJqLli33lKj96zs=
Subject key identifier: 98:70:32:8A:FC:46:CA:22:50:65:82:E5:7F:DD:0B:6F:35:33:E7:1F
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 0187E203A780C06924542AA1D940714756EA
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/mHAyivxGyiJQZYLlf90LbzUz5x8.roa
Signing time: Wed 03 May 2023 14:28:22 +0000
ROA not before: Wed 03 May 2023 14:28:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 147.161.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 May 2023 15:42:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e2:03:a7:80:c0:69:24:54:2a:a1:d9:40:71:47:56:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: May 3 14:28:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9870328afc46ca22506582e57fdd0b6f3533e71f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d8:e0:af:3d:39:c3:87:4c:f2:a1:1a:8f:b7:
98:30:d9:b0:c9:ed:4a:74:a8:9b:9d:f0:74:a5:32:
a0:45:7f:fb:4b:75:9a:4e:b2:88:b3:32:77:c5:67:
75:ee:79:ca:15:77:66:06:1a:ba:07:b8:46:7e:f0:
64:c2:f3:7b:57:05:10:b9:07:e3:32:7a:89:03:8a:
62:80:65:07:c5:b6:6b:3c:35:03:ba:c8:dc:76:30:
50:7e:c9:8e:3a:03:a1:8f:f5:1d:93:0a:8f:de:03:
78:79:60:86:85:60:10:3f:66:e6:8d:66:50:1a:27:
11:50:4e:9d:f7:0b:4d:3a:0d:f6:57:28:f5:3b:b8:
69:f0:cf:99:87:75:3d:f0:ce:7f:61:bf:85:ed:52:
f7:54:86:63:fc:68:c9:23:7f:ac:a3:ff:d4:e3:95:
34:99:95:8e:c1:0b:77:5a:a5:06:93:57:16:cc:3e:
3a:98:da:c0:c6:b3:90:e0:1a:bc:8e:da:fa:5d:3f:
87:92:03:3b:96:73:04:13:21:1a:1a:d0:f1:60:0a:
df:e0:89:86:32:03:95:c5:10:a6:2b:3e:5f:d5:7d:
71:fe:18:a2:76:99:df:f4:88:ca:ad:8c:6d:ea:ee:
6c:5a:9e:05:c6:c6:4d:4d:74:d1:2b:0d:e8:f1:4b:
85:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:70:32:8A:FC:46:CA:22:50:65:82:E5:7F:DD:0B:6F:35:33:E7:1F
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/mHAyivxGyiJQZYLlf90LbzUz5x8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.3.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:8a:58:f6:a1:35:11:30:92:36:72:a7:e8:4d:ca:1c:19:48:
38:da:b5:a5:b6:33:f5:11:93:63:0e:93:01:8d:8e:96:f2:63:
64:20:2c:b4:81:06:89:67:ec:ae:cc:8b:a1:dd:7d:8a:5a:20:
e9:2a:76:6c:fc:68:04:e6:8a:7c:8b:b1:15:86:a3:7b:f6:46:
53:2f:23:2f:17:6d:2f:21:e3:ed:5d:34:ee:ab:f0:16:eb:86:
26:7b:bb:a2:9a:b9:e2:ba:15:28:30:db:67:0f:27:7a:c8:aa:
7d:41:d6:42:8b:59:8f:da:3d:33:7a:3a:a9:2f:a8:fc:56:0a:
5e:b9:39:40:2f:b2:da:45:47:58:a3:9e:85:3f:70:b9:49:99:
e3:48:66:90:85:a5:d5:dd:3d:61:1b:2c:96:d5:27:26:e2:89:
5f:1d:68:74:9a:56:e9:88:f1:bd:00:4b:7d:23:0a:94:37:c4:
92:1c:b9:5a:48:db:85:9a:06:37:3d:fe:b9:e4:0e:b2:db:14:
8e:6e:cd:37:fe:d2:a7:6c:e2:d0:0a:20:43:0f:7b:63:1a:27:
9e:85:7f:cd:1f:86:e5:65:83:cb:f2:f6:e9:d6:00:e1:d6:e6:
fc:95:df:db:66:10:36:76:88:c5:98:ca:3b:ad:ec:03:15:5b:
31:ed:8a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:14 2024 by rpki-client on console-ams.rpki-client.org