Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/bOzPx9xaNvZSIdMPZLg5NiS7adc.roa
File: bOzPx9xaNvZSIdMPZLg5NiS7adc.roa (raw, json)
Hash identifier: jWgX0xVc86ehN38tSfJAPXPCn5E/gixTowTv0kBOsTE=
Subject key identifier: 6C:EC:CF:C7:DC:5A:36:F6:52:21:D3:0F:64:B8:39:36:24:BB:69:D7
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 018CD182F04093B8C6F05E5E643AC9B7943A
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/bOzPx9xaNvZSIdMPZLg5NiS7adc.roa
Signing time: Wed 03 Jan 2024 22:47:48 +0000
ROA not before: Wed 03 Jan 2024 22:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39679
IP address blocks: 79.172.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 14:53:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d1:82:f0:40:93:b8:c6:f0:5e:5e:64:3a:c9:b7:94:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jan 3 22:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ceccfc7dc5a36f65221d30f64b8393624bb69d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ff:24:b2:8e:e9:01:d8:6d:26:cc:ba:df:de:
84:cc:2d:5b:d6:a5:0c:96:17:d5:18:e0:25:7f:9e:
7d:e1:af:0d:2f:58:f1:fe:46:1c:09:ae:5d:33:ed:
3e:56:45:c6:14:22:2b:c8:1d:b3:7d:46:f8:be:ec:
b0:07:8a:6f:bf:25:db:ab:16:1a:02:53:c0:8f:83:
61:41:dc:51:21:20:00:6b:dd:25:2d:3e:9a:22:ac:
ff:a1:5f:f7:68:f5:c8:be:df:64:e2:26:dc:b4:f8:
07:7c:9c:13:2b:3a:7a:35:c3:0c:a1:f2:c3:64:0a:
91:d8:37:3a:69:c5:17:2f:68:4b:1d:c6:7d:b2:81:
17:a1:c4:bd:15:8e:8c:32:be:9e:04:a0:10:e4:2e:
ef:91:98:13:8f:5e:e1:8f:f4:3f:1e:d0:a0:58:b4:
ce:39:68:5d:2b:14:1c:47:b8:61:35:49:97:67:05:
a5:10:46:12:55:12:7c:cf:eb:15:7e:a1:b6:68:46:
93:06:d1:80:44:37:5b:0f:c2:ba:c9:5e:ad:66:69:
96:ee:26:eb:3f:6a:d1:13:f5:8d:ec:cc:0b:ae:99:
b7:52:97:da:a9:80:36:64:ba:07:ed:83:81:10:d0:
8a:08:9a:ab:91:c9:e1:ca:b2:55:03:fa:be:72:cc:
13:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:EC:CF:C7:DC:5A:36:F6:52:21:D3:0F:64:B8:39:36:24:BB:69:D7
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/bOzPx9xaNvZSIdMPZLg5NiS7adc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.172.250.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:37:02:cb:f5:8f:f6:05:ae:b6:fe:0f:4d:cd:ea:50:f9:be:
95:89:c7:3d:10:c3:20:74:09:22:da:4c:1e:e4:8a:fd:c0:52:
da:ab:6a:b1:a3:05:ac:1a:77:9d:77:1d:ef:80:3c:ef:5d:aa:
9d:c7:43:50:1b:ba:34:28:b5:a8:ce:bf:bb:42:46:6b:91:a3:
bf:32:2f:2b:43:83:c4:1c:84:1c:26:7e:8f:69:d8:cd:84:8c:
47:fe:03:28:f6:1a:24:c9:e9:20:a3:bf:4a:b3:37:07:ea:cc:
b4:f4:b2:06:41:33:a6:0d:9b:9d:6d:20:60:52:e7:d5:a5:25:
64:6b:37:74:59:7d:a1:f0:cf:ae:55:1d:ad:9a:33:63:f7:49:
13:fe:3b:2c:9a:d8:84:26:61:1a:74:ae:b3:80:6e:4f:3b:94:
17:c2:f2:62:1b:34:2c:5d:e8:cc:8e:a1:db:29:42:48:45:dc:
db:17:07:6c:5f:ee:63:ed:f4:32:da:02:6f:79:2a:06:da:c5:
e3:07:eb:e3:29:58:01:23:f1:ce:6b:c0:d1:3f:c9:0b:20:a3:
47:69:30:c2:87:8c:4c:24:b5:d3:b0:40:1e:bb:92:13:8f:7b:
ae:8a:41:d2:de:7c:27:a9:50:5b:5b:65:1c:b9:9d:cd:a7:66:
aa:ab:64:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:38 2024 by rpki-client on console-ams.rpki-client.org