Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/Xp8UFK9FgWGxWN_CMBKD-7620EI.roa
File: Xp8UFK9FgWGxWN_CMBKD-7620EI.roa (raw, json)
Hash identifier: ORJDxnQaZ9kBX11mp6ZG9/zlQ7C9+20IMAPoSAWFbpY=
Subject key identifier: 5E:9F:14:14:AF:45:81:61:B1:58:DF:C2:30:12:83:FB:BE:B6:D0:42
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 018A6639A2CAD9EB3B7C7A23B0839E419BE3
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/Xp8UFK9FgWGxWN_CMBKD-7620EI.roa
Signing time: Tue 05 Sep 2023 16:42:47 +0000
ROA not before: Tue 05 Sep 2023 16:42:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197927
IP address blocks: 146.19.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Dec 2023 16:04:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:66:39:a2:ca:d9:eb:3b:7c:7a:23:b0:83:9e:41:9b:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Sep 5 16:42:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e9f1414af458161b158dfc2301283fbbeb6d042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:56:2b:f9:ba:cd:a0:ae:71:87:c6:24:ea:90:
be:52:73:10:d3:98:05:03:09:07:56:6d:0f:28:a5:
4e:18:b1:4b:a7:cf:ab:a4:bd:23:a8:cb:08:c7:f6:
5a:2d:a9:31:e5:cc:ae:09:fe:52:de:20:3b:01:b3:
f1:58:35:bc:c0:1d:fc:0e:84:64:af:a3:fb:ec:08:
f4:af:23:9e:f3:e8:ca:b8:19:18:05:29:7b:f6:c3:
d6:d1:0d:da:18:7b:f2:0a:6e:d8:19:85:49:80:f6:
8d:68:52:f1:aa:fb:fe:98:9d:17:5c:5c:d4:a1:75:
53:4d:b1:88:5a:2c:48:04:88:12:b2:d7:61:38:4d:
e0:bb:b7:98:bd:2b:ea:30:51:44:b6:80:7e:6b:5b:
b4:ce:7a:29:53:3a:2d:34:32:35:44:69:b6:6c:a9:
72:8f:7a:86:0f:f0:bf:ec:b4:40:a6:fe:f4:59:0c:
94:1b:53:c5:99:57:d8:65:28:2c:73:9d:60:8c:02:
0d:5c:81:56:fb:3b:13:2a:44:82:3b:44:bf:fd:bf:
50:4e:f6:87:b6:a7:ba:22:05:83:31:0d:e6:b1:6f:
a8:cf:d0:26:73:a7:6e:28:39:5f:dd:f3:8d:df:19:
1b:d5:cd:ba:42:86:ef:b8:5a:d4:07:a1:17:f9:a3:
e6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:9F:14:14:AF:45:81:61:B1:58:DF:C2:30:12:83:FB:BE:B6:D0:42
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/Xp8UFK9FgWGxWN_CMBKD-7620EI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.85.0/24
Signature Algorithm: sha256WithRSAEncryption
05:82:f6:13:60:5b:ac:c9:b8:aa:63:5d:78:20:a8:75:3d:79:
98:97:61:ab:d8:71:79:98:9c:9f:d9:b6:7e:f0:fd:c9:47:73:
a2:40:44:16:b5:83:53:f4:8a:38:1c:7c:a5:7f:a1:cc:48:b9:
c4:2a:e1:fa:d5:c6:5c:d1:ca:9b:51:3b:2d:a6:e5:4f:27:ab:
e7:d6:5b:27:8a:a7:5a:d0:02:10:a8:ec:3c:a2:44:59:a3:ed:
43:b3:76:0e:8f:dd:62:28:68:7e:ff:19:10:1f:de:48:30:ea:
0e:6e:ae:13:b2:47:92:59:d0:c9:ac:d8:63:d0:2f:46:26:5b:
ab:83:a6:9e:b8:cb:1f:bd:80:0c:68:e0:f0:bf:87:b6:b3:e2:
b2:4c:5a:cf:c8:b5:23:db:89:ee:9b:ab:27:1a:d2:3d:7e:00:
19:f1:f2:1b:ab:22:00:b6:21:f1:1a:a3:84:44:41:76:71:e0:
bb:ba:d6:b1:50:90:2e:58:bf:c5:5f:9c:59:46:1c:01:54:4a:
04:2e:6d:e3:b1:f4:80:47:91:58:e7:9c:f6:37:a5:7e:41:0c:
76:e0:0f:87:45:26:db:f5:b9:59:54:7e:02:de:5a:55:cd:28:
2c:79:92:b3:50:21:f6:3a:72:0e:d7:60:12:44:be:12:80:37:
1d:ec:2e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:03 2024 by rpki-client on console-ams.rpki-client.org