Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/CX8j4RbssQ7191Dftn59x9Yb1qg.roa
File: CX8j4RbssQ7191Dftn59x9Yb1qg.roa (raw, json)
Hash identifier: JIc8m8M2AjrR7rfM0xsbTsnPGLdtcbzcNKjpU4Yc1mo=
Subject key identifier: 09:7F:23:E1:16:EC:B1:0E:F5:F7:50:DF:B6:7E:7D:C7:D6:1B:D6:A8
Certificate issuer: /CN=16307d29f5543f21ea3009b9523fe71b8f1369ca
Certificate serial: 018969978C9DEF2D680ECCDBD5663D0CB8A3
Authority key identifier: 16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/CX8j4RbssQ7191Dftn59x9Yb1qg.roa
Signing time: Tue 18 Jul 2023 15:21:26 +0000
ROA not before: Tue 18 Jul 2023 15:21:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15510
IP address blocks: 84.19.112.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:69:97:8c:9d:ef:2d:68:0e:cc:db:d5:66:3d:0c:b8:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16307d29f5543f21ea3009b9523fe71b8f1369ca
Validity
Not Before: Jul 18 15:21:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=097f23e116ecb10ef5f750dfb67e7dc7d61bd6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9f:f2:16:04:55:f7:11:76:36:89:15:66:b9:
02:37:98:00:ec:7f:01:36:ee:20:0d:25:32:04:fa:
95:91:31:8c:cb:fd:a0:1a:fd:7a:7b:d1:12:67:55:
e6:f8:50:2c:de:ad:32:7d:79:f0:9d:6e:8d:fc:56:
81:06:8d:95:b7:e2:9b:fb:ee:be:36:3a:91:f2:f6:
42:5d:c5:00:18:6c:c8:01:d9:bf:0c:91:de:b1:21:
10:6c:39:3d:1d:1f:d9:a7:a3:2f:04:89:4a:33:05:
b9:25:2d:87:78:ca:89:19:85:17:77:20:17:2d:d0:
76:50:fd:ab:0d:30:40:6f:3e:2d:aa:08:72:c1:7e:
48:78:20:c1:34:ca:bd:4c:e5:d7:d1:84:b6:e0:19:
45:27:0c:b9:e8:28:4a:c9:ee:55:e0:3a:a6:dd:c3:
e2:8f:59:9a:b6:9d:57:ec:69:60:2d:81:23:1e:e7:
db:83:dd:7f:6f:e7:ba:68:b9:f5:8c:ac:00:88:ce:
3a:44:4f:3f:bd:34:f6:d2:ec:44:69:b9:ed:19:89:
25:70:04:83:55:78:0e:35:23:7a:9d:a3:2f:13:26:
ae:6a:c8:c7:e7:8b:0e:27:c9:12:1d:0d:ef:74:f4:
74:b1:16:4d:ea:77:6c:82:d6:69:52:ac:33:5e:a6:
de:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:7F:23:E1:16:EC:B1:0E:F5:F7:50:DF:B6:7E:7D:C7:D6:1B:D6:A8
X509v3 Authority Key Identifier:
keyid:16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/CX8j4RbssQ7191Dftn59x9Yb1qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/FjB9KfVUPyHqMAm5Uj_nG48Taco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.19.112.0/21
Signature Algorithm: sha256WithRSAEncryption
92:e0:ce:91:fd:4b:90:50:f1:12:e3:d8:fd:dd:f3:1f:bc:63:
bc:4a:51:f4:77:f9:31:8f:0d:a9:df:06:b3:35:5a:49:36:b8:
df:72:59:d4:3b:74:22:19:cd:fb:89:7a:45:37:7b:e2:c1:5c:
eb:71:c2:b8:10:0f:b9:61:92:ec:65:c1:c9:eb:f7:13:18:e6:
b8:ed:e6:d0:38:7f:0a:62:92:4a:83:95:b7:0a:f2:fe:10:1d:
9f:1b:46:4e:b2:e7:b9:08:e2:1c:65:e2:3f:61:4a:a6:25:d4:
f4:f8:f1:a9:85:8f:6e:50:8a:b2:3f:e6:35:62:74:99:22:11:
95:77:2b:31:60:df:3c:42:cb:bf:e3:bb:06:77:ca:3b:32:0b:
f3:56:27:04:11:72:f0:46:b5:c0:bf:e2:94:8c:68:a9:af:e9:
47:87:73:be:88:3f:70:08:74:24:3e:ce:36:df:bb:37:00:0e:
ba:ba:7f:d0:83:27:b1:49:16:fe:d2:2d:29:1c:9a:f2:57:59:
53:d8:e1:f8:f9:9f:45:29:15:cc:f5:e7:f5:07:f7:90:53:1e:
1a:cb:0f:f3:cd:48:90:f5:03:e6:ac:69:4a:f7:6c:14:6b:25:
48:ce:d0:a3:40:d7:f3:7a:c8:e0:06:e2:ca:ff:c8:27:90:df:
c8:c2:99:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:32 2024 by rpki-client on console-ams.rpki-client.org