Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/Aa8zMPe57mR-pCwT2jLnHTYVnEY.roa
File: Aa8zMPe57mR-pCwT2jLnHTYVnEY.roa (raw, json)
Hash identifier: UZk1IYrrJawB3K4lVGcTbFse+ajaGgVrCnRatrIEYfM=
Subject key identifier: 01:AF:33:30:F7:B9:EE:64:7E:A4:2C:13:DA:32:E7:1D:36:15:9C:46
Certificate issuer: /CN=016454ca099eb52e55560f5d09e87e73161ae738
Certificate serial: 018CC64A3EEBB52370F5DEA2E703666FCCAF
Authority key identifier: 01:64:54:CA:09:9E:B5:2E:55:56:0F:5D:09:E8:7E:73:16:1A:E7:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWRUygmetS5VVg9dCeh-cxYa5zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/Aa8zMPe57mR-pCwT2jLnHTYVnEY.roa
Signing time: Mon 01 Jan 2024 18:30:03 +0000
ROA not before: Mon 01 Jan 2024 18:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1759
IP address blocks: 143.51.0.0/17 maxlen: 26
Validation: Failed, certificate revoked on Fri 07 Jun 2024 10:36:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:3e:eb:b5:23:70:f5:de:a2:e7:03:66:6f:cc:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=016454ca099eb52e55560f5d09e87e73161ae738
Validity
Not Before: Jan 1 18:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=01af3330f7b9ee647ea42c13da32e71d36159c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b3:87:cd:ed:2b:b8:db:92:f9:ee:85:6a:3c:
0c:d9:ab:c3:5f:ee:a9:36:ca:eb:86:dc:e5:29:8b:
23:aa:6c:98:b9:04:c8:14:ab:15:c8:a5:56:53:f0:
c5:71:aa:24:3e:3f:07:02:e4:00:80:58:93:cc:c1:
cd:99:ce:96:bc:77:64:3f:ae:be:d6:5c:d4:ca:32:
1f:a0:ff:a2:78:52:e3:ab:9f:4c:08:09:97:5c:4c:
09:02:6c:e4:84:06:87:90:0d:c3:e8:24:18:2f:fd:
e7:86:71:cf:e9:18:b8:1c:d4:89:7d:0f:e7:8f:ea:
12:b5:8e:8b:9e:47:c9:9e:11:ca:eb:97:bc:c9:1b:
1b:92:c8:0a:78:d0:8f:ab:a9:4d:bc:df:77:d9:fc:
2f:08:8c:9a:fe:aa:34:62:1a:4d:b0:f9:b5:13:f3:
f0:f9:61:ef:fb:4d:18:55:9b:33:41:eb:4e:df:18:
b3:e2:cf:76:a1:48:bd:5d:ca:b1:4c:ea:91:76:23:
b1:00:c4:36:6b:16:1c:c7:c7:d9:d2:9d:30:a8:65:
dc:cd:fb:e7:bb:b0:c4:c4:ca:3b:58:ac:27:1a:68:
3c:96:9d:03:06:99:ef:5c:c7:9b:5c:28:6a:f8:ec:
4b:3e:37:9c:cb:31:59:4c:96:7e:9a:cb:8b:eb:50:
dd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:AF:33:30:F7:B9:EE:64:7E:A4:2C:13:DA:32:E7:1D:36:15:9C:46
X509v3 Authority Key Identifier:
keyid:01:64:54:CA:09:9E:B5:2E:55:56:0F:5D:09:E8:7E:73:16:1A:E7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWRUygmetS5VVg9dCeh-cxYa5zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/Aa8zMPe57mR-pCwT2jLnHTYVnEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2553c-9bd6-49ae-9bed-1576c6f589c9/1/AWRUygmetS5VVg9dCeh-cxYa5zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.51.0.0/17
Signature Algorithm: sha256WithRSAEncryption
d5:01:85:52:b7:a3:85:d4:b2:78:36:39:17:ac:ad:0a:3b:5f:
d0:d0:a5:3d:e8:3c:fb:e0:1e:93:e6:ba:31:80:5d:54:28:27:
9f:ca:51:25:38:1d:25:5e:9f:55:ac:a2:b0:94:1d:40:68:71:
30:63:02:e6:50:5c:ce:dd:34:d1:42:80:7a:3a:a7:82:26:ae:
a3:a9:3e:6e:41:50:b7:ea:35:1f:b7:69:73:70:0a:7f:89:de:
00:a2:43:2b:0e:33:6e:f4:25:ff:9c:2e:a8:ef:a7:f7:d7:28:
c3:d1:31:46:34:64:36:9d:3a:a4:e2:4b:e1:62:76:8d:be:93:
ce:cf:06:17:75:1e:d2:29:c9:63:ea:b4:69:94:bc:f9:fc:7b:
3b:a4:c1:d8:47:07:12:48:32:8d:b7:b6:3a:7a:cb:92:f2:d9:
95:79:48:06:fc:bc:d7:7c:0a:c5:af:28:cf:53:0e:29:81:09:
a4:40:ca:dc:09:98:62:eb:04:ff:e7:0b:5c:bd:d4:c9:f9:1c:
fe:21:f7:c9:0b:35:68:7d:14:c9:2a:f8:08:08:3f:82:5f:91:
b5:c7:36:1f:72:26:64:b6:53:86:53:bb:02:0b:b5:05:09:09:
9b:b3:89:21:8a:13:e3:9d:20:fd:37:a2:17:31:bd:d8:2e:50:
88:3e:0f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 14:45:30 2024 by rpki-client on console-fra.rpki-client.org