Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/spl5eGeoZQDQ2SbwVkES2aqICo4.roa
File: spl5eGeoZQDQ2SbwVkES2aqICo4.roa (raw, json)
Hash identifier: PrlmvDHb36PbzS2A6rZeYjrZdkewMuO1kWUxMxtYwOs=
Subject key identifier: B2:99:79:78:67:A8:65:00:D0:D9:26:F0:56:41:12:D9:AA:88:0A:8E
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 01856D0A928004830FD6EB39D2A61E48CFBF
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/spl5eGeoZQDQ2SbwVkES2aqICo4.roa
Signing time: Sun 01 Jan 2023 11:14:47 +0000
ROA not before: Sun 01 Jan 2023 11:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24667
IP address blocks: 213.161.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:92:80:04:83:0f:d6:eb:39:d2:a6:1e:48:cf:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Jan 1 11:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b299797867a86500d0d926f0564112d9aa880a8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:62:ad:c8:b6:d0:84:6b:13:7c:11:3b:2d:39:
ad:f2:a6:94:47:ef:d3:b2:a3:64:c2:96:a0:ef:bf:
95:85:e1:e9:f0:86:56:1f:ee:be:6b:84:53:e5:f7:
0a:7f:16:56:87:9b:52:e9:fd:36:63:e9:dc:a3:74:
6b:a1:a3:3a:6a:f2:18:5c:2e:50:94:bd:7a:a1:c5:
ea:c4:aa:43:ae:9a:70:dc:34:f2:19:ca:af:5d:a5:
9c:51:fa:1d:92:18:04:b4:ef:c6:48:b1:b9:ca:8d:
31:57:b8:7e:9b:79:41:9e:23:27:ba:7b:a3:5d:80:
43:10:a8:5c:92:4e:22:0d:19:a1:2e:b8:70:60:21:
f6:2d:ac:d5:d0:0c:3d:45:ab:74:89:8a:24:5a:58:
4b:a5:b0:09:3e:b6:f5:72:84:e7:45:c2:90:f6:ec:
c2:40:92:2b:74:9b:f8:b5:ba:c0:9b:1d:93:d0:0f:
63:6f:76:09:b9:66:7a:06:82:f8:2c:05:97:d0:3d:
f8:b0:e2:ab:e3:7d:c1:9a:68:7d:02:84:d7:09:52:
8c:55:39:dc:58:2a:87:e8:f9:64:72:29:ad:06:d2:
26:58:4d:4f:56:cd:10:11:69:7c:b5:2b:cf:33:97:
c3:00:21:28:86:33:75:85:ee:a5:88:60:78:b9:82:
c9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:99:79:78:67:A8:65:00:D0:D9:26:F0:56:41:12:D9:AA:88:0A:8E
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/spl5eGeoZQDQ2SbwVkES2aqICo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.161.147.0/24
Signature Algorithm: sha256WithRSAEncryption
79:8e:aa:da:4d:8f:07:a3:09:c7:12:7b:37:b9:a3:70:98:9d:
62:33:2d:92:22:08:32:6f:61:c3:de:7a:f8:6f:15:49:b7:b9:
a2:3d:20:28:b4:f2:b9:80:9c:9f:07:53:96:f0:10:4a:5f:98:
86:b0:cb:96:91:0b:39:c8:a2:ae:da:fa:f9:bb:7c:7e:13:18:
37:47:05:8d:eb:5a:57:ff:92:c1:6d:13:2a:c4:95:fb:4e:4f:
ad:93:a7:eb:20:be:fb:cf:fd:41:18:19:f8:87:2a:d9:14:bf:
73:f1:ee:3e:05:4a:9c:5f:a6:92:bf:ff:d0:36:08:59:7e:4b:
aa:10:76:8c:0b:db:6f:c2:65:3b:31:ad:f2:d8:cd:e7:54:e3:
b0:79:0c:11:66:5d:1b:3b:33:8c:99:e8:72:c3:75:e4:28:e7:
88:ec:b3:39:c8:25:a5:7c:53:ee:3f:e1:01:05:ab:fe:2f:cb:
5c:f7:e4:b1:50:12:06:96:52:e9:72:43:79:9c:0d:37:76:a6:
99:f4:be:a2:67:ea:e6:40:04:ab:2e:8d:1e:34:36:10:0e:24:
54:6f:17:77:3a:b4:9e:91:6f:8b:a0:db:e3:fd:86:1e:32:20:
7b:ee:f9:16:94:4f:4c:c7:25:fc:66:28:f8:ef:36:df:59:0e:
b0:c9:2b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:17 2024 by rpki-client on console-ams.rpki-client.org