Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/AAdIz7qce9mkL12L0rb_uACmKuY.roa
File: AAdIz7qce9mkL12L0rb_uACmKuY.roa (raw, json)
Hash identifier: HlgopnV1QWyHmmhvL6NL7tCmhX5GNGTa+jXDmIhIqXA=
Subject key identifier: 00:07:48:CF:BA:9C:7B:D9:A4:2F:5D:8B:D2:B6:FF:B8:00:A6:2A:E6
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A6C18FEE575D25DDB3E1EBF26D7D43F7F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/AAdIz7qce9mkL12L0rb_uACmKuY.roa
Signing time: Wed 06 Sep 2023 20:04:51 +0000
ROA not before: Wed 06 Sep 2023 20:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 193.58.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6c:18:fe:e5:75:d2:5d:db:3e:1e:bf:26:d7:d4:3f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 6 20:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=000748cfba9c7bd9a42f5d8bd2b6ffb800a62ae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:26:f1:8c:be:18:fc:d6:d1:a1:72:cd:50:74:
bd:60:31:8a:e2:b2:2b:59:5f:fe:eb:01:f1:49:b8:
d0:1a:19:04:ee:3e:75:da:af:46:6a:60:f3:88:55:
fb:61:e5:06:66:2a:df:a5:5e:cc:92:5c:aa:db:13:
b8:c9:92:cc:a4:52:85:4c:ed:ab:25:28:aa:9b:63:
f5:2c:9f:62:db:c4:1a:74:43:39:7d:12:84:9d:8c:
a2:0e:b0:78:45:aa:b5:65:a0:8d:36:a1:57:1b:1f:
31:f4:40:11:87:41:51:03:60:92:85:cb:c1:7d:9b:
bf:c2:25:6d:14:14:15:64:1b:05:52:49:c7:0b:59:
11:11:d6:0c:5d:d4:76:22:ac:65:52:b0:91:d2:5d:
a5:2f:25:b7:89:ef:a5:70:1d:02:01:13:5f:84:58:
66:75:3b:87:2a:2b:dc:16:76:8b:0c:ad:53:3f:16:
17:c5:83:82:cb:38:9a:9d:b6:b2:c2:54:41:62:f2:
d9:b2:73:df:7b:d1:2f:7b:5e:ee:c6:10:17:76:e6:
ef:81:4f:2f:5c:d6:d0:e5:45:f1:d7:03:cb:7b:92:
38:aa:77:a6:4c:37:c1:ae:dd:87:c3:47:f2:ef:2b:
56:09:b1:f2:03:a0:ce:2a:98:ae:c9:2e:e5:85:7b:
10:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:07:48:CF:BA:9C:7B:D9:A4:2F:5D:8B:D2:B6:FF:B8:00:A6:2A:E6
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/AAdIz7qce9mkL12L0rb_uACmKuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.144.0/24
Signature Algorithm: sha256WithRSAEncryption
14:f0:d4:05:85:50:96:5b:06:5e:13:6c:d9:e0:64:72:c5:b0:
9e:82:5c:f9:d2:41:31:34:55:3e:c8:c3:12:24:69:22:81:26:
5c:67:db:94:94:dc:6b:f8:60:9d:8b:aa:bd:57:ce:57:1d:d8:
bf:a2:fa:d1:6c:88:31:19:b2:8d:02:51:3d:09:86:dd:50:97:
d0:5d:61:cd:01:19:c4:6c:8c:06:56:15:79:41:c8:dc:5d:67:
7c:ea:ed:97:66:5d:2b:ab:1b:5a:4b:c0:94:10:21:b8:8b:05:
1f:f5:66:55:b0:c1:9b:76:7a:36:8f:51:1a:e9:ca:67:7f:67:
17:b6:6d:02:54:8d:cf:f5:d8:77:5f:c6:e9:57:95:78:cb:81:
1f:16:17:f5:07:e7:02:cc:8b:2b:16:7b:e4:41:e1:69:66:61:
49:60:9c:70:9b:2f:69:45:f9:b5:33:0f:e9:88:fa:74:ca:62:
3a:32:63:b9:95:df:55:97:95:74:d1:10:e7:e7:70:89:b9:05:
b8:c2:b5:28:39:e2:72:da:7e:0a:ab:d4:0f:59:3a:63:37:31:
89:e8:e1:d2:df:ad:bd:7d:ba:d9:f7:f7:dd:ae:94:21:a2:ee:
d1:2d:16:00:2c:65:07:fb:e7:58:7f:2f:13:a5:25:5b:dd:e6:
11:f0:48:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org