Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/KZqC-DlXBHtPqJ36WdRHq55iryE.roa
File: KZqC-DlXBHtPqJ36WdRHq55iryE.roa (raw, json)
Hash identifier: EYNoHPtvUARIfvO/TrQ3QqDZI2Cz3WjnGP1XIvjSie0=
Subject key identifier: 29:9A:82:F8:39:57:04:7B:4F:A8:9D:FA:59:D4:47:AB:9E:62:AF:21
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 0188304B31589955D0F29FC98A9FCD15A593
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/KZqC-DlXBHtPqJ36WdRHq55iryE.roa
Signing time: Thu 18 May 2023 19:16:54 +0000
ROA not before: Thu 18 May 2023 19:16:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 37.143.0.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:30:4b:31:58:99:55:d0:f2:9f:c9:8a:9f:cd:15:a5:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: May 18 19:16:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=299a82f83957047b4fa89dfa59d447ab9e62af21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:19:04:b4:43:96:da:f2:c7:a6:c7:b1:fb:9c:
ed:3a:7d:72:76:0f:36:64:2c:01:0b:83:a2:3e:cc:
bf:93:da:6b:a7:d0:15:e3:54:fc:75:ef:59:26:72:
eb:e8:16:9b:c3:64:ef:86:4e:60:40:e7:a8:f8:ec:
dd:77:5e:82:ab:b0:cb:e1:46:99:0b:dd:9e:de:91:
c7:d6:59:81:6b:7b:30:82:24:c6:8d:12:e2:3f:81:
40:11:b6:0b:4f:8f:74:97:ae:fd:d8:b2:5c:6f:20:
07:f4:26:c2:75:41:5c:6a:2b:6c:2e:43:3c:16:b9:
5e:11:36:13:3e:0e:82:b9:20:d7:2f:66:52:e8:3b:
53:d3:3e:4f:28:6a:a5:18:40:a9:a3:a5:65:59:f6:
06:96:8a:d3:e5:2e:6b:a1:ff:89:1d:c2:05:c5:34:
fa:b5:96:52:c4:b2:1f:df:ce:38:35:a6:17:57:9d:
3c:f5:e5:b8:dc:c3:c9:b0:04:90:29:63:9a:a9:34:
51:8d:b4:c9:a2:21:52:1b:64:5e:d5:d0:3d:6f:21:
63:b9:1a:8d:58:ac:11:6a:09:3a:f6:e4:bc:07:1d:
5c:19:78:9e:c5:ac:92:1e:a7:57:aa:f0:3c:1c:4f:
84:97:ac:8e:75:37:b7:51:36:d6:95:c2:25:3e:92:
06:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9A:82:F8:39:57:04:7B:4F:A8:9D:FA:59:D4:47:AB:9E:62:AF:21
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/KZqC-DlXBHtPqJ36WdRHq55iryE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.0.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:c5:26:ce:ee:f2:94:dd:75:a1:86:04:a8:2d:04:31:72:83:
6b:f9:26:2d:60:84:16:6b:37:fa:1d:bd:1e:e5:35:f1:a6:c1:
68:ea:23:8a:89:1f:74:a3:62:f3:55:31:31:3e:88:61:b7:a0:
01:f0:c5:5e:2c:c0:95:40:9e:a8:0e:49:76:7c:54:ab:11:17:
fa:02:d7:09:cb:e4:0a:25:ea:db:2c:d0:64:be:c2:1d:9b:63:
a6:1c:2d:d8:dc:15:85:ff:2b:00:a6:f7:73:e8:5e:bb:6a:68:
a1:82:2f:16:02:dc:90:fc:7f:6d:bd:38:2b:76:4d:de:f0:70:
97:46:a1:32:3e:b4:e3:61:82:aa:12:57:8a:dc:cb:7d:8e:0a:
b5:28:46:af:86:5a:b4:8a:9c:76:1a:b6:c3:c8:74:17:5f:fe:
d7:73:28:07:68:cd:1c:12:ae:31:71:d8:75:b0:de:3c:0a:2f:
ad:45:87:bf:a7:93:6e:f1:c3:b1:0a:51:06:b9:31:1b:c3:f6:
a8:fd:ef:29:fb:df:71:48:8c:02:ac:84:b6:68:b1:3c:31:aa:
fd:60:3b:f5:be:a2:fe:65:5b:38:0e:ae:0d:ef:28:2b:b2:7e:
b8:bc:70:4f:95:e5:33:7d:e0:48:a9:c8:60:6e:df:c5:58:29:
51:ac:0b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:33 2023 by rpki-client on console-ams.rpki-client.org