Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/e5124f-1369-4901-9f56-2bb82a837b7b/1/0h3XsTwEVoRivp_WNxa8dDqmor4.roa
File: 0h3XsTwEVoRivp_WNxa8dDqmor4.roa (raw, json)
Hash identifier: NunJYDygDWpSEJ5VNB3G4eXWBsdYUvl5hSAzJ4mNCtw=
Subject key identifier: D2:1D:D7:B1:3C:04:56:84:62:BE:9F:D6:37:16:BC:74:3A:A6:A2:BE
Certificate issuer: /CN=abcdfc1a7c520cf8d17729208e85e8b197c4adff
Certificate serial: 01857079B384E4C1A7305A8436CE3BBC074A
Authority key identifier: AB:CD:FC:1A:7C:52:0C:F8:D1:77:29:20:8E:85:E8:B1:97:C4:AD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q838GnxSDPjRdykgjoXosZfErf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/e5124f-1369-4901-9f56-2bb82a837b7b/1/0h3XsTwEVoRivp_WNxa8dDqmor4.roa
Signing time: Mon 02 Jan 2023 03:15:01 +0000
ROA not before: Mon 02 Jan 2023 03:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 209.127.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 09:21:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:b3:84:e4:c1:a7:30:5a:84:36:ce:3b:bc:07:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abcdfc1a7c520cf8d17729208e85e8b197c4adff
Validity
Not Before: Jan 2 03:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d21dd7b13c04568462be9fd63716bc743aa6a2be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e8:e0:56:35:af:d8:a6:5c:00:c3:88:79:d6:
40:cb:90:6a:f8:f5:ea:9a:cd:7d:e4:7a:7f:4d:57:
4f:da:1e:43:b8:a8:08:eb:03:6d:2c:08:96:9e:57:
16:4d:50:d7:70:93:ae:dd:4b:4d:f8:9e:9d:9c:0e:
fe:2a:09:62:b0:58:21:3f:bf:88:28:75:73:f5:e4:
e6:3d:38:4f:a2:7d:b0:e9:3a:57:23:e8:d3:73:57:
bd:c9:df:99:21:0e:74:05:4a:8e:68:da:de:78:ac:
21:b5:5c:f0:63:54:a6:e1:9a:8b:22:c7:2f:2e:41:
0b:4f:60:ab:7d:86:9b:a8:7c:8d:81:9a:0d:32:46:
37:0c:11:08:4f:02:f8:e2:c9:56:ea:e6:3a:b4:ad:
18:83:48:f3:28:33:98:fb:3c:3d:69:a7:7b:00:e9:
98:2d:4c:67:a4:d6:31:14:83:d0:ce:8c:1d:c2:cd:
be:c4:a5:13:f6:69:0f:48:d5:1a:ab:06:40:43:7c:
38:a2:f8:ce:54:18:65:d2:2f:fa:df:f2:b1:ef:f8:
61:1e:3e:d7:50:52:58:63:62:8c:d3:36:9c:14:05:
21:26:32:61:89:d8:a1:18:cf:83:c0:ec:8b:cf:55:
c8:72:98:26:2c:5e:1a:46:35:b1:88:76:d8:d4:15:
63:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:1D:D7:B1:3C:04:56:84:62:BE:9F:D6:37:16:BC:74:3A:A6:A2:BE
X509v3 Authority Key Identifier:
keyid:AB:CD:FC:1A:7C:52:0C:F8:D1:77:29:20:8E:85:E8:B1:97:C4:AD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q838GnxSDPjRdykgjoXosZfErf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/e5124f-1369-4901-9f56-2bb82a837b7b/1/0h3XsTwEVoRivp_WNxa8dDqmor4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/e5124f-1369-4901-9f56-2bb82a837b7b/1/q838GnxSDPjRdykgjoXosZfErf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.127.220.0/24
Signature Algorithm: sha256WithRSAEncryption
04:c6:53:67:a6:e2:57:a2:e8:d6:e5:10:ec:d2:76:6f:c5:49:
5e:5d:66:35:6a:66:7f:98:0c:ef:57:95:44:1b:db:3e:71:52:
55:f3:26:4c:f2:e1:67:24:a6:79:54:92:45:0a:70:26:df:3e:
8d:60:09:5c:d1:13:0e:91:02:f4:d8:fc:14:b7:b5:5e:8f:ae:
03:fe:6b:65:b2:4e:fd:a6:9d:71:b5:bf:e9:41:e3:56:ff:35:
1f:6b:f8:57:aa:c3:d3:63:39:99:e9:69:14:40:8f:6b:92:64:
58:7e:99:74:5b:48:98:37:3e:91:23:a7:c4:70:9f:82:c3:b4:
77:48:1b:89:3f:b1:bc:51:7a:0b:64:78:2c:30:78:cf:d2:8a:
50:02:3e:49:8a:5b:b8:8a:78:a9:10:89:86:59:00:61:be:20:
c0:53:b6:ce:53:cb:0e:df:e8:f3:e9:cb:b2:63:f4:09:d2:be:
e2:a4:8f:31:dd:c3:a0:f1:b2:bf:b9:ac:b7:f1:6a:00:74:70:
a4:e8:8d:d4:ff:de:7d:1d:a7:8f:11:24:7c:e3:73:06:0f:36:
05:6d:c0:d6:cf:cf:c3:7f:5e:dc:ce:b8:ef:ae:ec:7f:e5:63:
67:a2:4d:c8:2f:79:18:63:49:27:29:39:25:40:31:ea:cb:83:
b0:45:d0:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:54 2024 by rpki-client on console-ams.rpki-client.org