Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/f17746-b9ce-4e15-b3bc-f8cc0851cefd/1/PBy5j2UzMCz3nEtFI7U9R1hWUms.roa
File: PBy5j2UzMCz3nEtFI7U9R1hWUms.roa (raw, json)
Hash identifier: 3t2C51nadvL9lvnSZo6y33wkuXFN9FCEv5BR021RsUA=
Subject key identifier: 3C:1C:B9:8F:65:33:30:2C:F7:9C:4B:45:23:B5:3D:47:58:56:52:6B
Certificate issuer: /CN=64f3a298f7de920548e8251de76b807387e2d43c
Certificate serial: 01856F9DBE73EC7B903CE655ECD337DB90DC
Authority key identifier: 64:F3:A2:98:F7:DE:92:05:48:E8:25:1D:E7:6B:80:73:87:E2:D4:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPOimPfekgVI6CUd52uAc4fi1Dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/f17746-b9ce-4e15-b3bc-f8cc0851cefd/1/PBy5j2UzMCz3nEtFI7U9R1hWUms.roa
Signing time: Sun 01 Jan 2023 23:14:46 +0000
ROA not before: Sun 01 Jan 2023 23:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.186.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:be:73:ec:7b:90:3c:e6:55:ec:d3:37:db:90:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64f3a298f7de920548e8251de76b807387e2d43c
Validity
Not Before: Jan 1 23:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c1cb98f6533302cf79c4b4523b53d475856526b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:dd:11:5f:39:11:85:e0:74:76:eb:38:ae:97:
70:2a:a8:9d:3e:5b:d5:6c:83:72:d9:c8:88:78:90:
d7:fc:57:a8:c2:62:a3:cd:2e:81:eb:b5:4b:34:73:
c5:de:b2:e2:e9:49:9e:21:2d:00:17:f5:e7:16:ea:
6a:e7:69:87:03:11:bd:6f:05:62:be:87:e2:a7:a4:
1e:1e:c9:55:6e:de:d7:67:0e:ca:c0:14:a8:22:51:
43:25:78:bb:b9:41:dd:76:0d:a7:b5:88:21:da:20:
f0:52:4f:46:38:bb:4b:63:15:3d:5c:ef:ec:7e:00:
40:83:c5:63:cd:d0:ab:c7:60:19:cb:6c:0a:19:7c:
5d:b2:41:e2:be:93:03:8b:42:07:a2:88:8b:60:39:
e6:9a:1a:c0:31:c6:b7:c4:5c:bb:7a:06:5a:f6:2d:
6b:31:26:e1:d7:20:44:2c:14:d9:22:d1:70:21:39:
45:7b:67:00:56:a4:29:7d:08:53:21:2c:0e:86:b5:
2b:42:0f:eb:bf:0d:9e:bf:7b:f0:c0:3b:b1:f1:c3:
f4:63:6b:1e:b9:1f:1f:b9:e6:62:d8:80:97:f9:0b:
8c:8f:a4:29:0c:0e:25:22:3e:a4:b4:8a:28:5c:77:
19:29:c0:43:b1:a5:38:81:b5:5f:a2:3e:e5:65:df:
a7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1C:B9:8F:65:33:30:2C:F7:9C:4B:45:23:B5:3D:47:58:56:52:6B
X509v3 Authority Key Identifier:
keyid:64:F3:A2:98:F7:DE:92:05:48:E8:25:1D:E7:6B:80:73:87:E2:D4:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPOimPfekgVI6CUd52uAc4fi1Dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/f17746-b9ce-4e15-b3bc-f8cc0851cefd/1/PBy5j2UzMCz3nEtFI7U9R1hWUms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/f17746-b9ce-4e15-b3bc-f8cc0851cefd/1/ZPOimPfekgVI6CUd52uAc4fi1Dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.186.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:04:7e:20:f3:49:af:68:59:96:8e:fe:32:5d:eb:a8:ca:4f:
3d:f8:57:be:7d:1d:4e:60:0d:96:30:29:d2:65:d3:5d:e8:b3:
5d:27:0a:21:aa:fb:80:9e:86:33:94:fc:69:84:3a:9f:df:6f:
39:94:7d:d0:05:27:c4:f3:15:34:c6:be:c5:5c:f9:94:e7:2b:
e1:f1:23:a7:68:73:09:a6:76:c1:e1:24:17:27:7a:6d:cf:f5:
44:cc:f5:5b:6b:a2:05:63:59:f2:6a:ef:d1:c4:ca:86:42:1d:
6e:34:4b:3e:b0:d5:c4:2e:8b:c2:28:c9:81:c7:5b:4e:eb:c2:
33:18:6d:21:fd:ff:aa:29:4f:16:c5:1d:6b:20:3e:b7:2c:94:
cf:23:e6:cc:f4:e1:cd:53:af:8c:f2:5a:57:6b:a4:09:58:80:
44:aa:e5:a7:f9:03:43:25:0d:54:12:93:21:09:60:6a:ef:f1:
7f:2a:27:62:d1:32:0f:87:8f:4f:7d:e4:76:52:7b:bd:84:3a:
ce:21:6e:99:81:e9:44:fa:4c:97:5f:39:51:09:30:db:be:d1:
de:0b:0e:5a:e5:59:33:8d:4c:42:de:1e:04:b8:ab:4d:c0:a9:
51:7c:4b:d3:79:e7:b5:73:09:04:38:27:d8:b5:a7:66:32:33:
4d:62:c3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:03 2023 by rpki-client on console-fra.rpki-client.org