Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/IHwVbynLMopBU0cMfPGPX5RDhgw.roa
File: IHwVbynLMopBU0cMfPGPX5RDhgw.roa (raw, json)
Hash identifier: 2JYhUEi9GJUe9Duus0SuvHIPA0vtKRs507u2Fuqkhck=
Subject key identifier: 20:7C:15:6F:29:CB:32:8A:41:53:47:0C:7C:F1:8F:5F:94:43:86:0C
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 01856D54111D797D98B7514B49B12DF5E2A4
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/IHwVbynLMopBU0cMfPGPX5RDhgw.roa
Signing time: Sun 01 Jan 2023 12:35:03 +0000
ROA not before: Sun 01 Jan 2023 12:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 272719
IP address blocks: 192.40.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Jan 2023 08:59:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:11:1d:79:7d:98:b7:51:4b:49:b1:2d:f5:e2:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Jan 1 12:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=207c156f29cb328a4153470c7cf18f5f9443860c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:09:0d:35:97:7b:2e:41:f1:c1:84:59:cf:65:
19:7d:28:87:d7:37:26:52:79:3c:4f:9e:82:98:4a:
4a:78:d1:db:55:d2:4b:b7:7f:3b:09:73:88:93:f1:
3c:ef:7c:b5:69:94:e5:dc:3c:bd:98:3b:e4:e9:fe:
e3:b2:57:35:36:c3:b5:92:7d:d8:45:7f:5a:e4:f5:
42:6d:01:0f:91:93:16:34:e0:8f:05:40:cc:e5:06:
a4:a1:44:38:5c:68:37:f4:fc:2e:6f:92:1c:b6:c2:
30:1c:5e:02:b1:87:ef:1e:13:c9:78:81:2f:d0:d3:
ec:f7:11:a6:79:16:01:90:c9:b5:92:7f:78:12:51:
1d:d4:09:95:58:aa:ad:f2:c9:97:04:8c:8f:9f:70:
c2:14:41:90:5a:e3:63:67:24:a5:9c:b6:ec:98:0e:
f5:4c:31:af:5d:6b:5b:8f:66:52:df:d0:de:d7:d2:
2b:dd:66:06:d2:b5:18:4a:44:a5:43:a1:71:f2:1b:
ec:2c:23:8f:25:7a:74:3c:62:15:d1:fe:cc:00:25:
e7:01:fb:28:84:9d:cf:3c:7a:f0:a8:86:79:85:94:
ca:42:28:80:e7:7e:a0:29:fe:cd:8b:4f:7f:f8:9e:
4c:ed:36:1d:e6:2b:04:c5:f1:98:63:06:7c:42:d4:
a6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7C:15:6F:29:CB:32:8A:41:53:47:0C:7C:F1:8F:5F:94:43:86:0C
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/IHwVbynLMopBU0cMfPGPX5RDhgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.40.69.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:7a:3a:d5:27:37:d6:bb:5d:4f:58:e0:05:e1:03:c7:82:10:
ba:05:8f:37:8a:2e:81:b1:29:67:e8:cc:b4:84:99:69:f5:48:
a0:b6:05:13:f7:ce:8a:32:84:ce:89:d5:78:39:db:26:1b:b4:
de:52:ab:11:a2:e3:2b:8b:43:c5:a2:1e:17:44:b0:3f:f3:04:
6e:e6:d7:b6:4e:f0:ba:59:32:4b:ff:b3:12:b1:ab:38:13:4b:
f7:2f:52:49:ee:10:fa:5c:21:03:72:1f:cc:8f:6c:34:15:4a:
a8:ff:2c:55:cb:d3:0c:5c:57:2f:73:a4:e8:12:24:6d:b3:74:
ec:37:65:90:44:9e:50:a4:98:39:c1:5c:4b:46:27:d0:1c:c4:
59:3b:65:40:8d:30:7c:88:15:b1:df:2a:14:a6:5e:6d:21:b1:
b1:f3:39:0a:67:a4:92:66:d6:2c:d0:ac:fc:e2:e7:37:75:e3:
3a:a4:e6:10:88:d8:af:95:00:30:f3:d3:f8:93:cf:ed:61:06:
4a:57:03:c4:85:68:6c:bd:dc:c4:99:1b:7d:08:2a:b2:0c:c6:
b9:89:d1:c2:bc:ab:9d:31:49:a4:7d:02:23:8f:9a:0e:c8:cc:
45:3c:9d:31:56:b7:86:98:96:20:56:04:f2:f1:31:2f:1b:68:
04:0a:e1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org