Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/phnJVAnHUxJEbuzZGcz7MFMbdiE.roa
File: phnJVAnHUxJEbuzZGcz7MFMbdiE.roa (raw, json)
Hash identifier: /pHRpMazoP72ii7LKMz+s02Io6L2X6TXQK7P330SYRs=
Subject key identifier: A6:19:C9:54:09:C7:53:12:44:6E:EC:D9:19:CC:FB:30:53:1B:76:21
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0190124B2B2357A84F3AA566CBD094557235
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/phnJVAnHUxJEbuzZGcz7MFMbdiE.roa
Signing time: Thu 13 Jun 2024 15:50:34 +0000
ROA not before: Thu 13 Jun 2024 15:50:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40940
IP address blocks: 43.225.88.0/23 maxlen: 24
188.214.236.0/23 maxlen: 24
188.214.238.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jun 2024 21:57:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:12:4b:2b:23:57:a8:4f:3a:a5:66:cb:d0:94:55:72:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 13 15:50:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a619c95409c75312446eecd919ccfb30531b7621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:df:1e:ae:c5:da:67:5c:5e:f7:00:b0:35:30:
9e:1a:80:b9:76:ca:5b:c9:54:2c:e8:e2:ba:f5:04:
79:4a:ee:65:94:79:b5:7a:51:85:1a:ea:2c:4f:25:
1b:db:2d:32:86:da:4e:52:df:04:2a:f8:09:9a:33:
e6:f8:fb:8e:e5:a8:95:6b:fe:bc:ba:39:5e:9c:1d:
b2:65:22:31:b0:63:d5:e8:d8:ba:ca:33:e0:49:b1:
97:8c:51:1d:41:d1:a1:8a:61:43:21:88:a5:71:40:
12:0f:9a:8c:e4:a1:a8:c3:d3:63:ea:bf:d0:5a:1b:
85:48:12:0b:f7:93:92:39:c6:65:a9:8f:9f:3d:f0:
b4:14:52:7a:30:c9:ce:7e:6c:22:66:a7:27:c3:86:
a4:c2:d3:fa:d8:3a:ff:91:06:34:40:2c:84:3a:62:
95:62:4e:be:c9:ca:f9:86:1f:23:ed:d1:59:6d:59:
5e:a6:b7:96:2b:ad:22:84:f4:e3:ad:e2:32:00:70:
56:16:99:f5:a1:ad:d2:f3:6f:e1:67:26:ba:84:6c:
dc:31:9d:b5:ea:b7:19:ba:62:ab:7d:4b:66:56:de:
e4:e7:d1:7b:c9:a9:75:2c:dd:ef:73:c9:3d:b9:95:
4b:10:ac:86:31:54:66:35:a4:33:e0:a0:f2:d6:75:
91:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:19:C9:54:09:C7:53:12:44:6E:EC:D9:19:CC:FB:30:53:1B:76:21
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/phnJVAnHUxJEbuzZGcz7MFMbdiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.225.88.0/23
188.214.236.0/22
Signature Algorithm: sha256WithRSAEncryption
da:c5:51:7a:0c:0f:44:0c:ae:d8:40:98:61:a0:b9:76:bf:64:
d8:9c:c1:16:5a:6c:13:bd:92:53:30:97:0e:f9:e0:99:7d:ba:
86:ec:07:76:cb:f4:e6:02:8a:a3:a7:37:eb:f8:bb:19:71:77:
22:af:59:02:a8:b6:39:1a:65:5f:2d:e2:08:8b:1a:30:a2:f7:
5d:28:55:92:0a:75:7d:68:c3:1b:3d:ba:2e:2c:f9:b3:46:c0:
97:de:27:7e:be:51:1e:b8:3f:ff:47:1b:56:76:9b:1b:2d:f7:
ee:9d:c3:8f:0c:ad:fa:ed:43:72:1a:38:ea:11:0b:ae:fe:87:
4c:ff:ef:4b:16:b7:fe:a0:12:d8:13:08:7b:c9:8c:9e:98:2e:
bb:9a:f7:6e:4c:93:6e:8e:18:fe:83:57:b7:e1:c5:7b:39:b3:
c2:a7:17:f8:03:ee:ad:cd:5e:09:01:93:fb:57:34:c0:f9:2d:
d8:37:bc:3f:aa:ae:e9:1f:84:db:0b:7e:d8:fd:88:4a:e5:91:
81:1e:1a:cb:18:2c:92:e5:9b:5f:c1:eb:10:f5:13:0e:2d:9b:
cf:19:9f:a6:8a:88:61:54:25:be:c9:52:c3:18:da:de:6d:bc:
15:de:45:bf:88:b2:8f:26:03:b2:bc:5b:e9:6e:e0:d9:4e:f5:
63:55:0b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 02:28:03 2024 by rpki-client on console-ams.rpki-client.org