Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/29e166-98d2-49f2-8497-0503749adea0/1/C599YTLpvRM0zUBszzqU1kx_O_I.roa
File: C599YTLpvRM0zUBszzqU1kx_O_I.roa (raw, json)
Hash identifier: 9+jZvgzNhCZcFQbSg2WAZsPT9gHiQF4Yc3O9D/HmEYU=
Subject key identifier: 0B:9F:7D:61:32:E9:BD:13:34:CD:40:6C:CF:3A:94:D6:4C:7F:3B:F2
Certificate issuer: /CN=468b592f3110bc6c35249a8271a0dac1a9acb0ce
Certificate serial: 018DDC07B23972A40CCD8787A0022B192D7D
Authority key identifier: 46:8B:59:2F:31:10:BC:6C:35:24:9A:82:71:A0:DA:C1:A9:AC:B0:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RotZLzEQvGw1JJqCcaDawamssM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/29e166-98d2-49f2-8497-0503749adea0/1/C599YTLpvRM0zUBszzqU1kx_O_I.roa
Signing time: Sat 24 Feb 2024 16:51:48 +0000
ROA not before: Sat 24 Feb 2024 16:51:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 146.19.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 15:45:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:dc:07:b2:39:72:a4:0c:cd:87:87:a0:02:2b:19:2d:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468b592f3110bc6c35249a8271a0dac1a9acb0ce
Validity
Not Before: Feb 24 16:51:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b9f7d6132e9bd1334cd406ccf3a94d64c7f3bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:11:11:8a:3d:11:32:cb:4d:bd:58:15:d8:94:
82:a9:16:9f:09:04:ae:88:91:79:6e:8b:49:6b:b9:
fb:95:aa:72:29:64:09:4f:63:7e:a6:06:16:f2:7e:
0b:a0:c1:ef:b6:b9:64:76:70:56:ab:9e:48:50:15:
7a:c9:b3:a1:4b:a8:96:87:fa:03:2c:47:44:3d:ef:
de:a7:e0:d9:4a:cd:0d:bc:ce:9c:f1:28:db:2a:17:
d3:0a:72:e2:8b:61:30:3f:aa:8c:cd:28:97:9d:19:
23:61:ed:f7:ec:b7:18:87:16:0c:d3:ea:1c:1e:7c:
f4:0b:e6:68:d6:2a:66:d4:c9:a8:c9:9b:37:6c:5b:
53:b5:8a:02:0e:eb:16:4c:4c:42:2e:2c:bf:ec:28:
d3:e0:f1:75:3d:b8:fc:a6:1f:61:42:c8:22:cb:e9:
c7:4b:ae:43:0f:9e:43:2f:a5:57:53:cb:a0:60:d3:
5c:eb:63:ef:55:4b:30:87:18:59:87:97:c8:a3:cc:
06:33:53:ad:2e:ee:22:28:7e:df:f4:ff:0b:6b:01:
17:27:e4:1a:df:15:6a:d0:f1:d6:97:2e:95:5b:af:
58:7f:b8:de:f8:14:b3:d3:88:7c:e1:20:59:ca:ee:
a5:fd:34:84:85:12:c6:69:35:d8:68:ce:f7:d6:43:
d7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:9F:7D:61:32:E9:BD:13:34:CD:40:6C:CF:3A:94:D6:4C:7F:3B:F2
X509v3 Authority Key Identifier:
keyid:46:8B:59:2F:31:10:BC:6C:35:24:9A:82:71:A0:DA:C1:A9:AC:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RotZLzEQvGw1JJqCcaDawamssM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/29e166-98d2-49f2-8497-0503749adea0/1/C599YTLpvRM0zUBszzqU1kx_O_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/29e166-98d2-49f2-8497-0503749adea0/1/RotZLzEQvGw1JJqCcaDawamssM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.142.0/24
Signature Algorithm: sha256WithRSAEncryption
55:f7:7a:cc:47:6b:bf:c9:c2:14:bf:6f:e3:f2:6a:4c:61:b6:
93:95:fd:c4:1b:29:fa:7a:2b:8e:24:22:ac:9b:29:04:21:b1:
ce:fc:af:60:e2:98:d3:e9:cf:f7:03:0e:c8:9c:53:91:98:6d:
d2:5d:51:77:65:4b:81:2c:d2:74:76:6d:81:60:52:af:39:5d:
7c:73:61:31:33:42:b9:4e:67:cc:79:c1:bf:d5:21:21:7c:bc:
b1:ff:79:89:cf:b6:67:5a:20:bf:74:61:6d:86:8e:82:92:c0:
dd:a8:9a:fd:d6:91:bc:9d:0a:13:2f:85:ae:03:57:c5:74:38:
ad:ed:23:fd:f1:00:a6:c0:2e:da:dd:43:d7:1f:da:c8:54:79:
95:a6:0a:e5:bb:5e:11:9f:d9:c5:4a:68:0c:5f:75:c1:78:31:
c1:44:2b:2b:5f:f3:f2:d9:c5:4c:57:d0:bc:08:20:f6:4b:47:
49:d7:15:01:82:65:b4:2a:30:b1:78:0e:d5:d3:4f:d5:2a:37:
85:46:de:6f:19:31:35:ea:71:39:12:6f:39:04:98:9b:21:83:
04:6f:52:10:a3:9e:b9:28:4b:8a:91:1d:bd:02:31:6b:fa:f1:
53:11:ad:69:88:17:b5:67:d1:65:2f:8f:5b:96:d6:62:ef:94:
9b:6a:d1:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:19 2024 by rpki-client on console-fra.rpki-client.org