Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/03b404-2f64-4c7c-ac6c-26eb0c6290ba/1/pbP2WB3rQzzbBLyM1_0L6QX5xb4.roa
File: pbP2WB3rQzzbBLyM1_0L6QX5xb4.roa (raw, json)
Hash identifier: 3tNR/Fefswht3ja7JmYGdQvIHGSxLngovADy8Da0SNA=
Subject key identifier: A5:B3:F6:58:1D:EB:43:3C:DB:04:BC:8C:D7:FD:0B:E9:05:F9:C5:BE
Certificate issuer: /CN=b1ee320df0464877d51745e314231b55c83b6845
Certificate serial: 01856C65D2A8216BE219135694462203D631
Authority key identifier: B1:EE:32:0D:F0:46:48:77:D5:17:45:E3:14:23:1B:55:C8:3B:68:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/se4yDfBGSHfVF0XjFCMbVcg7aEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/03b404-2f64-4c7c-ac6c-26eb0c6290ba/1/pbP2WB3rQzzbBLyM1_0L6QX5xb4.roa
Signing time: Sun 01 Jan 2023 08:14:50 +0000
ROA not before: Sun 01 Jan 2023 08:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 129.102.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:d2:a8:21:6b:e2:19:13:56:94:46:22:03:d6:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1ee320df0464877d51745e314231b55c83b6845
Validity
Not Before: Jan 1 08:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5b3f6581deb433cdb04bc8cd7fd0be905f9c5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:19:83:48:80:d3:00:42:08:99:4c:5c:d2:7e:
fc:ca:e7:51:3b:c6:fc:86:5a:7a:3f:01:f2:ab:af:
47:7b:89:e0:f5:58:ab:53:0d:31:bf:66:6a:55:f6:
56:0e:f8:bb:7f:ab:9c:55:13:51:1d:64:a9:1d:b2:
6b:a2:82:ef:5b:5a:83:57:f7:0f:32:29:fc:71:d1:
ba:26:bc:15:9f:8e:2e:72:16:35:9a:e3:b3:4c:be:
15:5d:ac:a3:0b:ab:6b:1e:6e:e7:49:0f:c4:2a:56:
3c:9f:05:34:fe:4e:ee:e3:05:fb:01:53:d4:4f:cc:
6e:22:cd:1e:24:d4:a0:af:bf:33:44:04:4b:35:90:
04:ed:4e:09:31:67:29:53:06:6d:a0:1c:e2:76:b5:
de:93:63:3d:06:f7:d3:59:13:b5:c2:eb:87:ff:76:
2d:4e:c0:3e:7f:05:28:b1:76:52:75:e9:e8:b7:99:
b9:c3:4d:f5:e7:6b:58:b6:e9:95:04:b1:52:1d:a9:
b2:48:11:01:93:1e:3b:18:85:5f:3d:3d:50:f5:53:
2a:f7:9e:98:7c:18:7f:24:ba:e4:90:e6:6c:54:79:
76:27:55:59:d1:bd:30:11:79:be:7b:70:13:9d:d6:
8a:8c:8d:59:a0:6b:98:5b:b0:1d:53:45:d4:9a:91:
e3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B3:F6:58:1D:EB:43:3C:DB:04:BC:8C:D7:FD:0B:E9:05:F9:C5:BE
X509v3 Authority Key Identifier:
keyid:B1:EE:32:0D:F0:46:48:77:D5:17:45:E3:14:23:1B:55:C8:3B:68:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/se4yDfBGSHfVF0XjFCMbVcg7aEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/03b404-2f64-4c7c-ac6c-26eb0c6290ba/1/pbP2WB3rQzzbBLyM1_0L6QX5xb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/03b404-2f64-4c7c-ac6c-26eb0c6290ba/1/se4yDfBGSHfVF0XjFCMbVcg7aEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.102.0.0/16
Signature Algorithm: sha256WithRSAEncryption
87:fb:00:9c:2f:fa:58:4b:59:58:a0:29:e8:14:15:b1:13:d3:
4d:53:16:2e:c3:dc:d2:6d:59:7c:90:57:17:a9:88:da:f9:5a:
3c:57:16:4f:e2:6b:eb:d6:4d:0d:f3:fd:45:72:f6:89:c5:5b:
99:67:f0:62:15:f5:69:ea:eb:ae:a1:bf:d5:70:e3:e4:15:fb:
bb:9b:3a:d5:2e:eb:63:05:fe:30:c4:8c:78:34:cd:99:99:85:
52:b4:ae:9b:7d:83:fe:f8:1a:86:44:cd:17:5c:77:e2:83:f5:
c8:80:e4:b2:bf:a2:59:5e:91:5f:11:0b:7d:a4:18:2a:27:ad:
b0:68:8b:d1:18:ef:cd:d7:65:09:ba:8c:98:47:68:3e:d8:f3:
89:2b:7e:6c:37:bd:2a:f2:ec:a1:89:ba:bd:6f:76:45:a0:14:
2e:68:7f:4f:61:5a:11:0f:a9:e9:bc:e0:74:ad:f0:a3:6c:aa:
30:72:74:59:17:0f:ff:1d:a9:71:9f:eb:7c:dd:c2:b3:56:d2:
70:0c:7e:b9:bf:3e:30:d0:6f:f8:59:a5:c0:81:6b:a9:15:50:
25:ab:20:17:12:35:97:30:8c:bc:5c:6c:72:5e:5c:f4:2a:b5:
e3:47:8b:6f:b5:9f:fa:31:3e:e2:24:e5:ef:99:ef:a9:f5:1b:
cd:de:e7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:53 2024 by rpki-client on console-fra.rpki-client.org