Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/46169f-cf94-4d1b-b2d7-72125297af28/1/s5HBG7xRZ4VnbqxClKyrlYD_gt8.roa
File: s5HBG7xRZ4VnbqxClKyrlYD_gt8.roa (raw, json)
Hash identifier: 6ZlhD1fT2/EBYH2qhJ5YwJbMmUitztFTcZt60J8p7gM=
Subject key identifier: B3:91:C1:1B:BC:51:67:85:67:6E:AC:42:94:AC:AB:95:80:FF:82:DF
Certificate issuer: /CN=1a537a0c0a331091b307253c6f07e8f82854e6b0
Certificate serial: 01856D78693AE9430FDB73B937131763C95A
Authority key identifier: 1A:53:7A:0C:0A:33:10:91:B3:07:25:3C:6F:07:E8:F8:28:54:E6:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GlN6DAozEJGzByU8bwfo-ChU5rA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/46169f-cf94-4d1b-b2d7-72125297af28/1/s5HBG7xRZ4VnbqxClKyrlYD_gt8.roa
Signing time: Sun 01 Jan 2023 13:14:45 +0000
ROA not before: Sun 01 Jan 2023 13:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 141.35.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:69:3a:e9:43:0f:db:73:b9:37:13:17:63:c9:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a537a0c0a331091b307253c6f07e8f82854e6b0
Validity
Not Before: Jan 1 13:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b391c11bbc516785676eac4294acab9580ff82df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b7:59:ae:77:2c:b5:4a:e8:89:4c:3b:24:a6:
27:e9:0a:6e:21:ca:38:77:a1:4b:90:87:a8:05:3e:
36:4f:bf:21:dc:bb:b9:cf:86:9a:55:0e:0d:c0:15:
7c:68:8f:4f:40:d6:ae:52:49:d7:9c:5d:bf:35:95:
52:c7:19:6a:1b:26:58:0d:e5:9e:0d:f6:13:00:ea:
94:8b:81:b9:19:62:35:aa:73:aa:f6:66:e8:75:a0:
63:90:76:46:59:bf:e3:88:28:8f:2a:d7:8b:a9:50:
01:20:06:43:9a:4b:c5:46:d1:3b:95:00:1b:7e:84:
94:11:65:0c:73:e4:07:be:be:5c:7b:ea:26:96:81:
9d:31:c4:e5:18:fa:a6:da:f1:77:73:20:58:07:97:
94:22:9f:b6:1d:88:fa:f4:a9:a9:4b:8d:b9:5d:cc:
71:d1:5e:38:3f:51:f7:44:f7:ad:7d:4d:9a:82:d9:
2f:2b:bd:d9:d5:88:f0:1a:b0:81:2f:cb:4b:4f:a8:
1b:c9:aa:c0:2e:97:6d:09:03:95:e1:bd:73:7a:f6:
31:b9:00:5e:2c:37:ff:7f:41:f9:89:72:52:c0:cf:
69:d1:b8:40:6b:bd:68:b4:c0:4a:33:98:dd:33:d5:
b5:89:ca:1e:3e:e6:bd:24:e5:6c:99:46:5e:da:d6:
f8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:91:C1:1B:BC:51:67:85:67:6E:AC:42:94:AC:AB:95:80:FF:82:DF
X509v3 Authority Key Identifier:
keyid:1A:53:7A:0C:0A:33:10:91:B3:07:25:3C:6F:07:E8:F8:28:54:E6:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GlN6DAozEJGzByU8bwfo-ChU5rA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/46169f-cf94-4d1b-b2d7-72125297af28/1/s5HBG7xRZ4VnbqxClKyrlYD_gt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/46169f-cf94-4d1b-b2d7-72125297af28/1/GlN6DAozEJGzByU8bwfo-ChU5rA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.35.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1c:86:5a:cd:de:44:51:f1:31:2e:38:e2:14:87:a4:09:1d:67:
b4:dc:02:c2:b5:9a:dc:45:1b:00:4f:77:6d:81:0e:d2:b0:d5:
40:4e:5b:fd:a6:41:3f:d9:32:eb:f9:30:8d:a7:1f:a7:95:be:
0f:40:dc:41:de:ac:31:65:43:fc:4e:40:d6:3c:f1:d0:3b:de:
2f:91:ae:da:fa:be:60:58:7d:f1:57:61:61:d2:1c:a3:75:37:
87:55:f2:14:94:52:99:a7:3e:86:d0:a8:4f:80:5d:ba:e9:0b:
f0:39:77:07:1c:aa:8e:b1:95:93:37:b7:7c:b3:0c:92:c9:eb:
1f:15:be:ba:44:d5:48:8f:e9:3b:03:d9:a1:79:06:72:84:0f:
82:c7:8b:e2:c1:5b:8a:16:62:5f:f1:5a:ba:53:a7:0e:df:fc:
51:a5:fc:10:61:cc:1b:c9:d3:bb:55:c5:00:b1:92:bd:08:1e:
6e:33:da:7e:b5:25:79:db:c3:17:e2:4c:93:37:0e:43:14:d1:
7a:aa:d9:e7:dd:6b:73:d3:06:2c:44:41:7a:b5:2c:e0:51:07:
1b:50:ed:dc:44:81:a6:b7:6f:60:ca:7f:e6:8d:90:77:4e:4e:
e6:6f:17:5e:19:ea:4e:cc:5f:41:5e:e0:60:4e:16:9f:f1:49:
b9:1e:88:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:36:14 2024 by rpki-client on console-fra.rpki-client.org