Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/61XAm5LhLB0KZi9fpRPpEQw25aY.roa
File: 61XAm5LhLB0KZi9fpRPpEQw25aY.roa (raw, json)
Hash identifier: IpheVlD+vrW1S8W4xVsL4ACwLTsL2UetcKHNf+iOE5A=
Subject key identifier: EB:55:C0:9B:92:E1:2C:1D:0A:66:2F:5F:A5:13:E9:11:0C:36:E5:A6
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 01856E0AF265BC8AC6365E698563CF463FE6
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/61XAm5LhLB0KZi9fpRPpEQw25aY.roa
Signing time: Sun 01 Jan 2023 15:54:49 +0000
ROA not before: Sun 01 Jan 2023 15:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200598
IP address blocks: 121.127.48.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:f2:65:bc:8a:c6:36:5e:69:85:63:cf:46:3f:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Jan 1 15:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb55c09b92e12c1d0a662f5fa513e9110c36e5a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fe:41:ef:1e:65:7f:7a:12:31:8b:e1:70:b0:
53:de:81:81:26:dd:b8:5c:a8:e0:6f:74:6b:0c:00:
b9:a4:ad:f7:7f:d6:65:2a:2e:94:43:72:a7:8e:63:
69:78:6f:e2:e5:8e:7d:c3:9e:62:b8:18:36:51:d5:
a2:6d:27:3b:84:b5:a0:58:94:b6:38:dd:0e:5e:81:
6f:98:a0:2a:89:65:1a:2d:53:82:00:fa:22:15:b1:
43:a3:7c:19:6a:0f:6b:9f:4f:35:5e:2b:4d:9d:37:
b6:43:7f:10:6c:7a:04:6c:53:18:b0:03:68:54:02:
54:43:57:5b:78:5f:c4:5e:c6:82:2a:74:6c:32:fd:
64:0e:f2:4f:1f:e7:54:73:29:33:fd:23:08:1b:74:
a9:56:43:72:9d:9e:f0:de:92:90:39:d7:6b:52:97:
8e:da:f1:52:d2:fb:0c:b9:cb:c5:86:a5:56:7c:62:
22:23:c0:91:09:ab:be:5a:2e:c6:db:73:4e:d8:b6:
65:90:f9:73:64:19:61:34:ee:1d:94:ee:0c:0d:97:
cf:4c:4c:88:a8:93:65:7a:82:5f:64:dd:0b:87:8b:
9b:60:75:92:6e:f1:06:f0:ff:78:63:82:5e:7d:38:
c5:e9:ae:f1:9f:3d:a5:3c:68:d8:2c:49:10:2e:67:
0f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:55:C0:9B:92:E1:2C:1D:0A:66:2F:5F:A5:13:E9:11:0C:36:E5:A6
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/61XAm5LhLB0KZi9fpRPpEQw25aY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
121.127.48.0/20
Signature Algorithm: sha256WithRSAEncryption
6b:74:c8:52:ad:c9:69:cf:1d:31:29:51:81:9f:09:3f:76:fc:
e0:bf:b2:33:f1:9d:46:d9:4b:dc:a6:61:45:c3:83:3e:d9:b9:
44:bc:9d:d0:df:b9:f1:1a:84:0f:36:df:8b:5e:0f:e9:fe:8e:
51:bc:cd:c9:cf:82:8d:e6:4d:5e:7d:2b:d1:36:3b:08:90:a8:
f4:f1:fc:0b:ef:c3:22:2a:74:ab:96:07:79:82:70:71:36:d5:
ae:85:c6:0a:dc:1a:5e:f0:ba:51:fd:ff:2e:94:60:06:1d:d8:
b3:0b:2d:ca:4f:93:00:f7:4f:a0:ee:84:79:4a:eb:58:ef:56:
bb:eb:f3:b6:9c:f7:00:15:34:e4:86:90:ca:01:bc:3f:f0:cd:
aa:b1:0e:65:b1:6f:19:97:12:75:53:6b:48:e0:3f:e8:6d:1a:
67:17:a3:34:dd:3b:40:01:d1:91:74:af:92:81:77:c1:f8:01:
61:30:64:d0:fd:8f:19:2f:a5:1e:a6:79:41:66:0f:87:4a:46:
2d:57:3f:bb:8d:7a:24:25:11:d4:f3:67:8c:08:31:84:f8:af:
6e:a5:ed:0d:51:78:8a:71:7d:37:49:5f:d0:95:1b:41:ae:15:
d2:2c:07:a3:c6:02:48:1b:bd:93:4d:7d:62:98:18:7b:e2:64:
f3:d8:02:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:47 2023 by rpki-client on console-fra.rpki-client.org