Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/efe0e0-34f7-429e-9f38-4ea7a1ae98de/1/DiRxBmtl6eFNhibw9-knZ8eMOvs.roa
File: DiRxBmtl6eFNhibw9-knZ8eMOvs.roa (raw, json)
Hash identifier: ttSiPi8zOrnVmMBoGDd8gWN7F37rjrNFB3SjoAJMp70=
Subject key identifier: 0E:24:71:06:6B:65:E9:E1:4D:86:26:F0:F7:E9:27:67:C7:8C:3A:FB
Certificate issuer: /CN=b057f544f53f35d8d2e73cb2965b4f4d7d022959
Certificate serial: 01856D9D12F7F549D90F7758B5024BBE1CBF
Authority key identifier: B0:57:F5:44:F5:3F:35:D8:D2:E7:3C:B2:96:5B:4F:4D:7D:02:29:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFf1RPU_NdjS5zyylltPTX0CKVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/efe0e0-34f7-429e-9f38-4ea7a1ae98de/1/DiRxBmtl6eFNhibw9-knZ8eMOvs.roa
Signing time: Sun 01 Jan 2023 13:54:48 +0000
ROA not before: Sun 01 Jan 2023 13:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 149.222.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:12:f7:f5:49:d9:0f:77:58:b5:02:4b:be:1c:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b057f544f53f35d8d2e73cb2965b4f4d7d022959
Validity
Not Before: Jan 1 13:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e2471066b65e9e14d8626f0f7e92767c78c3afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:09:21:13:7a:df:1a:35:5e:95:10:7f:ae:
50:d0:f1:78:da:38:06:2e:02:14:7c:83:76:33:b5:
22:4e:bb:99:01:a7:e4:ab:25:b6:b3:15:2d:95:70:
c1:1d:52:9c:39:61:a4:12:42:41:21:69:0f:c2:20:
5b:82:e2:0e:35:e7:cc:d0:6d:11:5e:2e:69:d1:12:
56:d0:bc:e0:3e:31:3a:a4:d5:48:51:52:fa:64:9c:
71:39:f9:6d:3b:f2:d5:ff:89:47:59:47:d7:e0:60:
2c:3d:a0:cd:50:c3:4b:8e:25:f3:37:20:ec:30:42:
a4:80:5f:cf:e5:c5:15:88:40:3e:82:8d:67:b6:d4:
20:a6:30:8f:3c:89:5e:5a:e5:b4:fe:df:c0:4d:08:
7e:93:eb:a1:7d:c5:43:b8:79:09:86:bc:6d:46:a4:
b9:6f:39:a8:f5:c2:f8:80:55:ca:74:72:fe:3c:1b:
96:02:ce:62:e3:37:ec:ad:69:38:28:b2:5e:e5:5b:
ab:5a:cf:e1:de:ef:09:54:39:68:29:fc:59:73:00:
5a:f3:e8:36:6b:a4:db:51:db:b3:8b:63:65:b1:44:
ce:77:a8:a8:20:c7:d1:d8:ef:8d:33:ca:37:f6:46:
16:c6:18:20:3d:e7:cf:75:eb:94:ad:4e:0f:cd:e6:
ed:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:24:71:06:6B:65:E9:E1:4D:86:26:F0:F7:E9:27:67:C7:8C:3A:FB
X509v3 Authority Key Identifier:
keyid:B0:57:F5:44:F5:3F:35:D8:D2:E7:3C:B2:96:5B:4F:4D:7D:02:29:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFf1RPU_NdjS5zyylltPTX0CKVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/efe0e0-34f7-429e-9f38-4ea7a1ae98de/1/DiRxBmtl6eFNhibw9-knZ8eMOvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/efe0e0-34f7-429e-9f38-4ea7a1ae98de/1/sFf1RPU_NdjS5zyylltPTX0CKVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.222.0.0/16
Signature Algorithm: sha256WithRSAEncryption
57:2f:95:c9:e2:34:6c:15:1b:29:ed:1e:1d:d9:40:8b:f3:d1:
76:9b:a9:49:54:8e:8a:d1:90:15:f7:d1:4f:fb:bb:c5:b2:d3:
0a:56:a4:94:f9:02:fa:17:1c:d0:d9:74:19:46:c0:0c:5f:3f:
41:97:05:c3:7f:70:26:70:4d:93:64:cd:b2:f8:c9:60:56:1c:
e8:9a:b1:e1:36:9c:f9:3d:6b:a4:28:8d:7b:27:6b:35:88:ab:
7b:b1:e9:ec:69:2b:a7:e8:a0:76:16:29:8d:07:79:25:e7:07:
3a:98:b1:6b:32:f4:87:4c:28:7b:1b:4f:e4:b3:6f:e9:32:25:
b6:19:66:53:f5:9a:58:66:ab:e5:3a:4a:1f:f4:4f:77:09:bd:
38:9f:e4:66:50:da:f2:a0:f1:95:96:a2:b3:7e:d4:1b:2f:90:
ec:84:06:84:66:f0:dc:86:fa:a2:3a:4b:46:d6:bd:94:02:ad:
e5:72:a1:d0:f0:d8:41:3e:f1:54:a4:39:8b:56:c3:43:01:74:
6c:25:2d:64:eb:f1:be:23:89:e1:69:e5:82:65:4e:63:53:b3:
27:0e:9b:8d:e3:63:99:46:ea:bb:2f:7a:a7:e2:50:fb:ac:ce:
7a:d8:07:4a:48:b6:aa:89:1c:08:b9:b7:8f:9a:48:48:ea:93:
29:0a:7f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:40 2024 by rpki-client on console-ams.rpki-client.org