Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/bLh1KJLGNeL3sveR1TthUY3Pw14.roa
File: bLh1KJLGNeL3sveR1TthUY3Pw14.roa (raw, json)
Hash identifier: Y7xa2JcnLANQEP07KW1R6LePxSccUzCQZj9iuPb92GY=
Subject key identifier: 6C:B8:75:28:92:C6:35:E2:F7:B2:F7:91:D5:3B:61:51:8D:CF:C3:5E
Certificate issuer: /CN=40dde71b41bffb1b516e07b0c61391bdf4d3bf11
Certificate serial: 018B2DB48C8B6DA67613A1F5BDE5D996D6B1
Authority key identifier: 40:DD:E7:1B:41:BF:FB:1B:51:6E:07:B0:C6:13:91:BD:F4:D3:BF:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QN3nG0G_-xtRbgewxhORvfTTvxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/bLh1KJLGNeL3sveR1TthUY3Pw14.roa
Signing time: Sat 14 Oct 2023 10:21:28 +0000
ROA not before: Sat 14 Oct 2023 10:21:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44620
IP address blocks: 92.60.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Dec 2023 13:58:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2d:b4:8c:8b:6d:a6:76:13:a1:f5:bd:e5:d9:96:d6:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40dde71b41bffb1b516e07b0c61391bdf4d3bf11
Validity
Not Before: Oct 14 10:21:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cb8752892c635e2f7b2f791d53b61518dcfc35e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:41:e8:61:11:fe:7e:78:bf:1d:bf:62:bd:c2:
4e:e8:f1:bd:77:61:35:96:ff:f4:db:6b:10:4e:eb:
19:8d:fa:73:36:23:dd:a3:eb:cc:42:09:b1:76:d5:
75:2f:ca:8a:24:10:5d:9b:cc:3b:6a:29:0d:95:14:
1d:ad:97:86:37:48:e9:24:e9:1b:64:d9:41:f1:33:
d6:21:4d:04:1c:92:12:87:22:9f:75:8d:39:ad:78:
84:40:2e:8c:68:66:b8:9a:d3:04:85:26:dc:5d:5b:
96:0c:0c:77:d3:c6:16:f5:cf:a9:e9:9d:8f:f0:ce:
dd:3c:f6:d9:06:23:9d:34:9c:31:13:76:04:4a:91:
16:98:1f:c2:1f:5d:9e:a9:f4:fc:d4:cc:3a:bc:c7:
c9:e8:58:4d:fa:17:74:6c:74:ca:64:da:98:f7:c9:
bc:be:78:48:45:7e:72:67:2f:bc:0e:25:9b:6a:bc:
b6:83:a9:ff:61:8a:8d:3a:ea:7e:ef:fa:77:17:db:
86:b1:68:f8:bd:14:c9:76:23:ef:70:9a:89:8e:36:
5f:d5:3f:d9:ca:be:d1:33:d7:fd:28:e5:1d:0f:2a:
67:e9:14:5d:a6:10:b9:e0:94:fa:8f:90:d9:fd:ce:
72:b6:3e:05:26:c7:a0:ea:4f:06:5e:94:4f:28:c3:
ef:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B8:75:28:92:C6:35:E2:F7:B2:F7:91:D5:3B:61:51:8D:CF:C3:5E
X509v3 Authority Key Identifier:
keyid:40:DD:E7:1B:41:BF:FB:1B:51:6E:07:B0:C6:13:91:BD:F4:D3:BF:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QN3nG0G_-xtRbgewxhORvfTTvxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/bLh1KJLGNeL3sveR1TthUY3Pw14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/QN3nG0G_-xtRbgewxhORvfTTvxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.60.70.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:03:50:93:e9:e3:75:9a:cd:29:4c:dc:7d:e6:75:2a:27:4d:
bb:63:da:45:ce:15:78:76:06:fb:12:ea:f4:75:d8:13:62:93:
f6:98:8f:ea:05:64:ee:f7:a7:73:07:0e:08:b6:0a:cd:a2:f3:
75:e6:2d:74:47:a7:9a:b2:ff:f7:c2:75:95:5f:27:2b:cb:6f:
da:8c:26:e8:a4:7e:a6:58:0c:88:1c:a1:1e:b7:99:0f:fb:ae:
ce:b5:db:47:fe:7c:7b:f8:69:e6:f6:2c:7b:e1:02:f5:d4:f9:
1b:1d:b6:f1:0f:47:0e:62:b9:08:35:5c:be:ad:fc:51:a5:a2:
d1:52:ae:40:1b:45:5b:be:6c:5b:50:34:b3:a2:86:8f:c0:c4:
dc:14:6e:26:9f:43:78:f8:db:c8:b4:07:2e:4e:96:47:08:52:
0f:e6:7f:09:3a:33:2b:67:83:94:cd:cd:75:03:fb:9f:e3:5c:
f2:6c:5a:9e:9c:f0:9b:f4:8e:b8:10:7d:6f:1b:48:f5:f3:5d:
18:ed:b5:97:ac:32:4c:bd:e0:c1:8b:2f:64:c4:73:6f:9e:61:
71:10:0a:5d:39:ae:2f:4c:93:68:0c:ae:ec:60:e5:9f:75:ba:
6e:f7:8c:12:97:fa:c8:68:32:59:e7:af:eb:5c:d0:de:88:ab:
60:a0:6c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:19 2024 by rpki-client on console-fra.rpki-client.org