Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e23d30-76e3-4491-8d75-2fda4c273a48/1/kxrSqug3LDCNVw8g6GFHIBtocQM.roa
File: kxrSqug3LDCNVw8g6GFHIBtocQM.roa (raw, json)
Hash identifier: BYuFeWu282btPrt2cUOQgO20f/oqBQbP7vB3JxIjnis=
Subject key identifier: 93:1A:D2:AA:E8:37:2C:30:8D:57:0F:20:E8:61:47:20:1B:68:71:03
Certificate issuer: /CN=556a5fa0dcfb34433f9b860d95e2c442547c5f9c
Certificate serial: 018987AA38E86B9D5BB3A1D9FAEC41458C4F
Authority key identifier: 55:6A:5F:A0:DC:FB:34:43:3F:9B:86:0D:95:E2:C4:42:54:7C:5F:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VWpfoNz7NEM_m4YNleLEQlR8X5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e23d30-76e3-4491-8d75-2fda4c273a48/1/kxrSqug3LDCNVw8g6GFHIBtocQM.roa
Signing time: Mon 24 Jul 2023 11:30:27 +0000
ROA not before: Mon 24 Jul 2023 11:30:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49037
IP address blocks: 151.0.48.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:87:aa:38:e8:6b:9d:5b:b3:a1:d9:fa:ec:41:45:8c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=556a5fa0dcfb34433f9b860d95e2c442547c5f9c
Validity
Not Before: Jul 24 11:30:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=931ad2aae8372c308d570f20e86147201b687103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8a:11:27:be:ea:2d:29:ac:f5:fe:2c:52:cf:
df:13:de:b2:94:95:db:21:b6:72:34:fc:6e:77:24:
bb:2f:5c:7e:74:03:fc:8a:3b:fd:4e:67:f9:43:df:
94:5a:be:0f:1f:09:47:50:f3:dd:da:71:64:e2:d0:
58:01:1a:ef:24:26:61:27:7c:89:57:17:cf:24:24:
0f:5e:3d:f8:f7:60:ee:aa:47:e2:61:07:65:24:70:
37:de:5e:e8:a3:97:76:b1:ae:f7:6e:b4:e4:64:e8:
5c:d8:25:63:03:eb:14:d7:dd:07:1d:01:8d:6a:c5:
5c:0a:16:e4:b1:2d:14:95:d1:6b:21:95:37:49:ea:
78:f4:f9:50:94:f3:07:97:54:d1:28:ba:b5:75:68:
6a:34:7d:65:df:14:10:00:4c:74:31:e9:e1:d0:f0:
9b:db:23:e2:b9:52:94:d9:2e:2f:3d:af:96:4d:86:
eb:56:34:5a:23:9f:4f:1c:11:e3:8c:66:42:d8:50:
c3:90:ed:5d:ff:79:69:a9:3b:c6:c5:36:2a:5b:ab:
86:96:99:7c:00:9d:34:b0:dd:30:b7:04:84:71:fc:
f3:93:40:69:8d:aa:b7:95:d3:50:4f:1b:24:ec:e8:
76:4f:94:4f:f8:33:9f:85:74:7d:58:9b:ba:2d:79:
dc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:1A:D2:AA:E8:37:2C:30:8D:57:0F:20:E8:61:47:20:1B:68:71:03
X509v3 Authority Key Identifier:
keyid:55:6A:5F:A0:DC:FB:34:43:3F:9B:86:0D:95:E2:C4:42:54:7C:5F:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VWpfoNz7NEM_m4YNleLEQlR8X5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e23d30-76e3-4491-8d75-2fda4c273a48/1/kxrSqug3LDCNVw8g6GFHIBtocQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e23d30-76e3-4491-8d75-2fda4c273a48/1/VWpfoNz7NEM_m4YNleLEQlR8X5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.0.48.0/22
Signature Algorithm: sha256WithRSAEncryption
57:32:5f:22:f8:e6:c9:af:3f:c5:5c:a4:11:d7:79:06:93:ff:
aa:62:5c:04:fb:6b:08:9e:ab:52:61:98:41:32:52:63:1e:2a:
5d:ba:12:80:74:52:82:c8:83:68:27:68:d0:8b:5c:62:69:e3:
57:bc:75:d2:2b:93:b6:14:de:f2:f2:a9:ff:27:ef:7e:0c:ce:
24:e5:d7:0e:f6:36:73:1e:0c:89:27:a5:53:3f:d8:78:48:6a:
6d:29:0f:08:0b:ae:d2:69:1a:c7:b6:b9:ff:ed:78:b3:16:10:
b2:ab:49:77:22:09:5b:5f:d6:9c:c9:6c:25:aa:d7:d1:55:7d:
3b:c5:6a:8d:f7:94:3e:d3:0b:6b:81:ca:d4:2f:36:9e:25:57:
6f:02:5c:8c:3d:74:f8:7d:aa:43:f7:9a:7a:17:7e:43:b9:85:
87:ac:e9:53:17:c1:16:83:39:30:75:cc:6c:9e:18:07:60:61:
32:10:3b:34:f6:f5:ce:ab:5b:7c:c9:92:8c:ca:31:40:b7:4c:
b4:91:88:8d:6c:39:49:b9:c5:49:3d:a8:f6:23:1f:9e:46:8a:
7e:f5:6d:79:aa:ae:62:a7:cc:e9:2e:b2:57:86:26:c8:08:5d:
01:8b:33:d3:85:4f:25:d5:f5:20:4e:63:79:18:93:84:7b:89:
df:f0:26:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:14 2024 by rpki-client on console-ams.rpki-client.org