Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/5CbTT7nLtAoiMeMwbQe3RxIR6zk.roa
File: 5CbTT7nLtAoiMeMwbQe3RxIR6zk.roa (raw, json)
Hash identifier: m6My/JQahdH73hPDc+wG0JNA0tcrI1a01daEYVd7odo=
Subject key identifier: E4:26:D3:4F:B9:CB:B4:0A:22:31:E3:30:6D:07:B7:47:12:11:EB:39
Certificate issuer: /CN=3b09d41126077279143c180b9115384174aba70a
Certificate serial: 0185714C4AEC465C76478DBF1B958090B0EE
Authority key identifier: 3B:09:D4:11:26:07:72:79:14:3C:18:0B:91:15:38:41:74:AB:A7:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwnUESYHcnkUPBgLkRU4QXSrpwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/5CbTT7nLtAoiMeMwbQe3RxIR6zk.roa
Signing time: Mon 02 Jan 2023 07:05:03 +0000
ROA not before: Mon 02 Jan 2023 07:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.123.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:4a:ec:46:5c:76:47:8d:bf:1b:95:80:90:b0:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b09d41126077279143c180b9115384174aba70a
Validity
Not Before: Jan 2 07:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e426d34fb9cbb40a2231e3306d07b7471211eb39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ce:3c:3b:a3:9f:01:0c:19:ec:d3:f4:0d:14:
4c:95:a0:55:38:6d:da:c1:14:ff:75:f1:44:58:08:
45:df:16:0f:46:ee:99:2d:e4:24:07:9b:33:1c:97:
a6:62:c6:b4:c8:67:6a:20:24:2c:51:9f:8d:ef:b7:
47:8d:fc:4b:e5:d9:09:0a:66:3f:8e:f5:19:17:41:
53:42:75:17:27:72:5a:f7:b5:8f:b8:6f:9b:2e:12:
0b:5c:41:42:f5:9b:62:42:e2:1e:a3:eb:cd:59:ab:
f9:db:78:97:db:dd:2e:0b:09:90:69:7c:da:e5:f8:
6f:7b:7c:c5:d5:bb:12:75:4e:70:61:27:ef:0c:af:
2b:88:3f:4e:c4:06:52:dc:87:ce:4b:80:93:8e:6e:
ea:db:b9:c3:76:81:d5:3b:92:1a:2f:f0:3b:1c:15:
3a:9a:88:ca:51:22:c4:d2:b1:60:58:e6:89:8e:97:
45:8f:a4:b6:47:7a:77:91:93:e9:3e:ab:96:3d:4e:
22:fc:e0:88:91:50:ea:b6:7d:b9:36:32:bb:4f:14:
15:30:9d:27:94:67:e5:d3:a6:06:30:32:cc:99:9f:
f0:92:43:e3:ab:28:c6:6f:cd:a5:4d:f3:a4:f9:7b:
a9:bc:4f:92:8f:24:c3:34:9a:ed:b2:69:2a:77:b9:
41:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:26:D3:4F:B9:CB:B4:0A:22:31:E3:30:6D:07:B7:47:12:11:EB:39
X509v3 Authority Key Identifier:
keyid:3B:09:D4:11:26:07:72:79:14:3C:18:0B:91:15:38:41:74:AB:A7:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwnUESYHcnkUPBgLkRU4QXSrpwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/5CbTT7nLtAoiMeMwbQe3RxIR6zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/OwnUESYHcnkUPBgLkRU4QXSrpwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:e1:af:1b:b5:85:95:e1:a2:17:6f:2c:40:d2:47:9b:32:68:
fe:c4:6b:9a:7a:2b:d4:a7:24:17:2b:86:00:ec:f8:0f:b2:11:
fd:9d:2b:70:ca:da:09:36:c1:2a:31:0d:e6:b5:3f:c4:aa:e4:
49:0e:84:b0:f7:d8:80:b1:9d:8b:74:d0:f5:b4:2e:40:dd:14:
ff:30:f0:2d:53:33:84:d1:54:c0:d1:d1:c5:0e:6b:2f:77:67:
d3:fc:98:d4:4e:05:1b:c6:07:2a:82:0c:28:00:8b:f8:96:90:
99:da:cf:65:dd:a2:7a:2f:18:c9:83:e4:04:29:f7:4f:27:c7:
cb:a9:19:6b:6c:b7:a2:11:4b:87:38:0c:05:64:cd:4e:f0:bf:
0d:fa:06:dd:a0:86:c9:59:f7:e0:ab:8e:ed:4a:85:a2:d3:ab:
5a:66:81:7f:d8:90:dc:08:7d:95:54:9c:f2:d0:66:32:19:4c:
1b:08:ad:bf:ca:f4:a0:6c:f6:9c:32:45:c2:e5:ca:fe:27:b3:
16:5c:c1:e5:23:21:dc:5b:5d:c9:66:c3:99:ff:8e:96:71:1f:
ca:fc:81:2f:bf:a0:73:a0:d4:43:b8:f3:50:df:4e:8f:65:df:
d3:e8:73:85:b4:e7:6c:f4:61:5f:cf:82:99:cb:70:89:69:3d:
71:fa:6f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:27 2023 by rpki-client on console-ams.rpki-client.org