Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/7Li0eZM4VIzvU6_3189cBoQMyGA.roa
File: 7Li0eZM4VIzvU6_3189cBoQMyGA.roa (raw, json)
Hash identifier: SPsPGWlmzFZ6fbS1qapHML8s88V0yU9j3Ym03QJsBDs=
Subject key identifier: EC:B8:B4:79:93:38:54:8C:EF:53:AF:F7:D7:CF:5C:06:84:0C:C8:60
Certificate issuer: /CN=a499903dab85f6a59772b3edfd4bf0e491af57c4
Certificate serial: 0185769349FB61E0C39FBB3C85BA45F11311
Authority key identifier: A4:99:90:3D:AB:85:F6:A5:97:72:B3:ED:FD:4B:F0:E4:91:AF:57:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJmQPauF9qWXcrPt_Uvw5JGvV8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/7Li0eZM4VIzvU6_3189cBoQMyGA.roa
Signing time: Tue 03 Jan 2023 07:40:42 +0000
ROA not before: Tue 03 Jan 2023 07:40:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41969
IP address blocks: 192.108.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:76:93:49:fb:61:e0:c3:9f:bb:3c:85:ba:45:f1:13:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a499903dab85f6a59772b3edfd4bf0e491af57c4
Validity
Not Before: Jan 3 07:40:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecb8b4799338548cef53aff7d7cf5c06840cc860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:95:71:6f:22:9d:b2:17:d4:a6:c2:ed:a1:3b:
5c:f6:91:84:54:3b:c7:bc:91:c8:48:a9:e7:a7:27:
6a:7b:11:3e:11:7d:be:53:0b:3c:bc:19:c6:b4:75:
c4:b2:c9:4b:7f:1c:12:a8:dd:88:a5:8d:bd:89:72:
f0:64:d9:ae:ba:b9:b6:ed:66:a5:38:9f:d5:58:dd:
e4:88:2f:8c:1e:31:4b:c6:46:43:0b:2f:96:7d:3e:
12:70:d6:d2:9b:49:d0:3b:1d:0a:82:ca:22:d1:35:
d5:68:16:00:c2:9b:55:39:3f:e7:3d:e5:68:4c:64:
53:f1:61:15:fc:77:32:e7:61:5f:38:3e:13:18:f4:
6e:3a:51:d1:96:1a:0c:48:bb:ad:6b:99:63:1f:05:
60:12:99:6e:1c:ce:f1:6e:23:50:94:54:58:15:65:
b4:75:72:0b:59:a5:b0:22:c7:8a:14:7b:2b:35:a3:
10:ef:60:a8:7f:e7:e6:2d:8c:05:8d:d2:c1:16:3c:
bc:95:9a:5d:8a:12:cb:46:8c:46:0c:21:8d:85:d2:
2d:13:7b:2a:8c:0f:46:fa:90:c6:d3:15:ae:62:56:
a5:67:a5:f8:4a:2a:1b:d1:de:f2:22:f9:41:78:39:
80:74:c6:ba:24:c3:e6:3e:30:81:14:f0:ad:63:af:
fc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:B8:B4:79:93:38:54:8C:EF:53:AF:F7:D7:CF:5C:06:84:0C:C8:60
X509v3 Authority Key Identifier:
keyid:A4:99:90:3D:AB:85:F6:A5:97:72:B3:ED:FD:4B:F0:E4:91:AF:57:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJmQPauF9qWXcrPt_Uvw5JGvV8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/7Li0eZM4VIzvU6_3189cBoQMyGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/8eda9a-d13c-4430-8cf4-57ec12e8641e/1/pJmQPauF9qWXcrPt_Uvw5JGvV8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.108.72.0/24
Signature Algorithm: sha256WithRSAEncryption
31:06:39:13:3c:40:d8:36:5f:c5:b8:36:29:55:1e:57:a8:7c:
e3:aa:6e:74:9f:fa:6a:55:96:92:3f:bf:a9:c8:73:8e:0d:67:
7c:62:01:d2:36:3b:e3:15:55:7c:25:08:e6:56:21:08:e2:24:
65:1e:a1:ce:92:86:88:13:96:01:79:50:e1:d3:d5:b3:1e:12:
96:31:78:da:7b:51:33:57:65:43:d0:5c:98:3e:51:a5:29:f0:
b6:34:98:97:ab:bc:81:1e:27:48:dc:ff:58:c9:f7:b6:39:f2:
b3:36:4d:c6:24:ef:85:90:c0:08:d5:e4:d1:ec:dd:1c:8b:09:
b5:4e:2c:70:1b:a8:7d:7d:67:e2:e3:a1:c5:15:be:e5:69:7c:
2d:fc:d9:ea:dc:5d:31:30:32:0d:59:99:a9:38:7d:12:df:4c:
78:d4:e0:42:ab:76:85:14:05:47:c4:12:3c:63:45:8a:77:48:
8e:1e:dc:cd:6d:f5:4c:74:05:d1:c4:91:54:45:77:f8:29:ff:
9f:5f:28:0c:55:a3:b2:5a:7f:c7:6f:56:82:ca:8c:f6:b4:b8:
24:c9:d9:88:07:9f:b8:97:90:47:e4:68:31:29:52:4d:8e:d8:
63:97:11:f4:b7:cf:1f:73:f3:a1:e7:f2:7f:c4:0f:4e:ba:6c:
f3:44:0a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:45 2024 by rpki-client on console-ams.rpki-client.org