Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/a5f931-6fa8-4cf0-8f97-23b28f39a602/1/7SUwPgPI7clLoAeyNYFBLx5JiME.roa
File: 7SUwPgPI7clLoAeyNYFBLx5JiME.roa (raw, json)
Hash identifier: 0Mk0g1C4ydoGdoB9FVDIFUdlk9RKICyKG6WlIvr8GsY=
Subject key identifier: ED:25:30:3E:03:C8:ED:C9:4B:A0:07:B2:35:81:41:2F:1E:49:88:C1
Certificate issuer: /CN=da27113db55b63b67a4a627a7008a8afc2bcc42c
Certificate serial: 0185709513E207E25E45D280AE22287AD7BC
Authority key identifier: DA:27:11:3D:B5:5B:63:B6:7A:4A:62:7A:70:08:A8:AF:C2:BC:C4:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2icRPbVbY7Z6SmJ6cAior8K8xCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/a5f931-6fa8-4cf0-8f97-23b28f39a602/1/7SUwPgPI7clLoAeyNYFBLx5JiME.roa
Signing time: Mon 02 Jan 2023 03:44:56 +0000
ROA not before: Mon 02 Jan 2023 03:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 146.66.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:13:e2:07:e2:5e:45:d2:80:ae:22:28:7a:d7:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da27113db55b63b67a4a627a7008a8afc2bcc42c
Validity
Not Before: Jan 2 03:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed25303e03c8edc94ba007b23581412f1e4988c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:14:1d:41:6d:cb:90:e1:c6:72:3f:05:2a:91:
c7:05:3d:26:e8:82:88:2d:10:2c:8e:71:1c:17:7a:
01:f7:56:1b:d5:1c:5a:46:33:05:a9:45:29:fa:4f:
d7:45:4a:b1:ae:f9:e6:5e:69:1e:9c:a3:2c:08:95:
d5:c2:54:d7:d8:cc:cf:48:45:21:d7:b3:d2:8b:c5:
99:4f:c0:bd:95:c0:db:27:80:5e:44:3c:38:09:55:
f7:e3:cf:64:4a:2f:32:ea:99:af:e1:d9:6a:51:0d:
e5:03:6b:c5:b8:66:89:50:c0:11:fe:31:c3:88:c8:
03:49:23:a1:ef:2a:77:c1:c2:a7:99:28:33:c7:2b:
45:f6:8e:43:e4:b5:1c:08:bc:08:39:2d:13:76:38:
98:de:ad:0a:19:4c:66:29:96:0d:e5:76:1e:9b:3d:
a8:b3:07:1e:25:11:b8:bd:09:25:be:b2:d8:f4:83:
eb:90:93:d7:b3:e7:ea:98:32:7b:74:42:06:aa:a1:
6a:a9:07:14:21:83:b5:f9:66:5d:39:99:a0:fb:14:
4e:1d:58:35:ee:34:76:a9:b4:86:12:b1:1b:5f:a6:
fb:b1:b2:c5:9c:2d:7d:e8:4d:48:5d:3c:01:75:65:
03:11:e5:95:84:41:98:00:76:fd:d0:f1:10:e3:24:
7a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:25:30:3E:03:C8:ED:C9:4B:A0:07:B2:35:81:41:2F:1E:49:88:C1
X509v3 Authority Key Identifier:
keyid:DA:27:11:3D:B5:5B:63:B6:7A:4A:62:7A:70:08:A8:AF:C2:BC:C4:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2icRPbVbY7Z6SmJ6cAior8K8xCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a5f931-6fa8-4cf0-8f97-23b28f39a602/1/7SUwPgPI7clLoAeyNYFBLx5JiME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a5f931-6fa8-4cf0-8f97-23b28f39a602/1/2icRPbVbY7Z6SmJ6cAior8K8xCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.66.3.0/24
Signature Algorithm: sha256WithRSAEncryption
31:51:92:12:e3:17:a0:c8:4e:5f:b3:87:5e:ac:de:79:35:03:
71:26:9d:ad:b9:f2:77:29:82:a5:1c:5f:3b:93:95:20:13:b4:
3f:19:02:e6:d4:c9:df:69:57:f2:e0:bf:fb:58:2b:4d:9c:14:
74:9b:0f:28:a9:92:fe:08:5f:1d:d3:0f:fa:ff:1a:7b:90:28:
44:03:80:46:81:fd:dd:ad:f1:48:fe:28:36:98:d1:1c:18:06:
52:d8:b1:7e:68:cf:a4:9f:66:f3:55:43:ab:d4:84:9a:d0:11:
30:2b:bf:1c:b5:45:97:14:96:4f:43:45:16:ae:fe:b0:f0:cb:
4b:20:20:e4:e2:a3:39:ac:27:0e:14:31:a8:36:5b:0f:60:2e:
f4:02:27:74:b4:d5:42:a6:54:5b:0b:10:ed:2c:4a:2e:5a:de:
16:c1:62:e0:f9:45:9a:db:a4:d2:b9:29:2c:be:97:83:cc:c6:
6b:6d:27:19:56:d2:69:73:73:0b:f3:a7:34:08:e6:ce:bb:46:
e3:31:0d:28:e2:f2:32:26:bf:5d:28:1b:50:7b:3b:75:85:72:
0d:db:84:15:14:e4:66:a1:5a:ee:7c:ef:24:e5:72:e7:04:7d:
6c:fb:95:03:64:68:45:28:af:ae:c0:4b:c6:f2:ed:ac:c5:1d:
b6:db:c1:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:16:17 2024 by rpki-client on console-ams.rpki-client.org