Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/4WdfrZtiV-EVAIqCJO52et6iyYk.roa
File: 4WdfrZtiV-EVAIqCJO52et6iyYk.roa (raw, json)
Hash identifier: EvBAIlm+quP7ZLt0uo/ko0EAo7L+kMpGqJkdMyuQ1a8=
Subject key identifier: E1:67:5F:AD:9B:62:57:E1:15:00:8A:82:24:EE:76:7A:DE:A2:C9:89
Certificate issuer: /CN=016454ca099eb52e55560f5d09e87e73161ae738
Certificate serial: 018C867B71A8D128BB5FC1DB77DC359520DD
Authority key identifier: 01:64:54:CA:09:9E:B5:2E:55:56:0F:5D:09:E8:7E:73:16:1A:E7:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWRUygmetS5VVg9dCeh-cxYa5zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/4WdfrZtiV-EVAIqCJO52et6iyYk.roa
Signing time: Wed 20 Dec 2023 09:08:06 +0000
ROA not before: Wed 20 Dec 2023 09:08:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1759
IP address blocks: 143.51.0.0/17 maxlen: 26
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:7b:71:a8:d1:28:bb:5f:c1:db:77:dc:35:95:20:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=016454ca099eb52e55560f5d09e87e73161ae738
Validity
Not Before: Dec 20 09:08:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1675fad9b6257e115008a8224ee767adea2c989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:21:46:ef:07:70:4d:04:3c:e9:cf:af:ac:b6:
a9:42:a0:a4:bc:11:14:bb:e8:72:60:28:b2:2b:a7:
97:d0:ba:57:cc:42:5f:72:44:df:07:7b:24:5c:0f:
06:00:04:c0:91:0d:5d:58:4d:31:af:17:d5:e7:d7:
a3:79:4f:86:56:be:87:40:50:ff:30:6a:bf:a9:21:
97:5f:56:05:af:38:3f:ce:cb:d1:25:3f:7f:a9:14:
0b:02:9e:91:d5:66:d5:2a:6e:8d:54:42:b4:ef:1d:
f9:74:92:69:d5:4c:6f:e9:24:c8:da:25:98:5e:5f:
ee:76:f2:b9:f6:2e:85:00:cc:de:93:41:3c:0f:6f:
42:7f:24:3e:c1:9f:34:fb:a1:7a:7c:76:4a:50:b0:
56:30:d4:a4:3c:64:ff:3a:d7:bb:4e:ee:6c:e3:f2:
06:03:f6:51:20:d6:44:3c:ba:c2:b6:25:97:92:04:
83:48:89:4d:9d:de:0a:f9:e0:0d:2b:26:09:62:9c:
3b:71:e7:1f:2c:b1:17:cb:59:3a:db:14:56:81:88:
88:f3:a0:22:23:6e:f9:82:fb:6e:0b:3b:29:f2:7d:
31:0e:4c:be:ff:6c:d8:27:da:91:7d:69:38:53:b5:
2d:c5:73:c9:7c:c2:c2:5e:9e:ab:1a:bb:77:59:cc:
cf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:67:5F:AD:9B:62:57:E1:15:00:8A:82:24:EE:76:7A:DE:A2:C9:89
X509v3 Authority Key Identifier:
keyid:01:64:54:CA:09:9E:B5:2E:55:56:0F:5D:09:E8:7E:73:16:1A:E7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWRUygmetS5VVg9dCeh-cxYa5zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/4WdfrZtiV-EVAIqCJO52et6iyYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/AWRUygmetS5VVg9dCeh-cxYa5zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.51.0.0/17
Signature Algorithm: sha256WithRSAEncryption
68:77:b7:cc:61:0d:93:ce:7f:0c:a6:52:13:d6:f9:04:98:32:
6b:36:08:18:69:27:ef:36:ae:a1:c2:e8:49:83:55:36:25:45:
19:34:ad:5c:eb:47:9c:be:c0:5d:e3:28:09:65:84:2c:72:93:
ee:1b:4d:40:01:2a:9d:8d:7e:9b:a2:15:cf:88:40:44:61:67:
ac:50:a3:ec:f0:91:db:a0:26:fe:1e:72:18:b0:34:0c:81:e9:
f4:91:97:8d:7c:e4:f1:e8:12:70:b4:3a:bc:25:f6:87:e2:4b:
df:7b:77:a5:1c:7e:3e:f4:4f:37:63:2c:cc:88:ad:02:48:ec:
fd:a4:db:8e:03:0c:e3:bf:45:74:fb:6e:80:a7:4a:ee:c7:d2:
c1:fe:c8:06:12:9e:42:15:dd:8d:3c:56:5d:68:21:67:69:9d:
dd:70:73:8b:83:cb:e4:98:aa:ed:0f:c9:62:cb:ba:99:0f:5d:
1e:de:32:6c:8b:67:24:00:7e:a5:79:39:79:99:1d:89:bd:d0:
33:7a:8b:7f:5d:59:d1:8d:3e:74:bf:73:fc:60:32:43:62:f0:
80:6f:e4:f6:93:90:8b:46:96:cd:e4:29:21:06:93:c3:c3:aa:
cb:a0:47:3c:b6:42:dc:9f:3e:d3:27:29:f1:d3:46:2f:09:60:
98:fa:81:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:01 2024 by rpki-client on console-fra.rpki-client.org