Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/v3qmHpIKciuvMT4sL8wA3B-ms5E.roa
File: v3qmHpIKciuvMT4sL8wA3B-ms5E.roa (raw, json)
Hash identifier: l1NtX55pJcuDtANJRxsTOLfCXRUaZ4APLnCqS6KwPNQ=
Subject key identifier: BF:7A:A6:1E:92:0A:72:2B:AF:31:3E:2C:2F:CC:00:DC:1F:A6:B3:91
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD53A229FE2B214A50C65DA818FBCAB
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/v3qmHpIKciuvMT4sL8wA3B-ms5E.roa
Signing time: Mon 02 Jan 2023 00:15:23 +0000
ROA not before: Mon 02 Jan 2023 00:15:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59784
IP address blocks: 86.106.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:3a:22:9f:e2:b2:14:a5:0c:65:da:81:8f:bc:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf7aa61e920a722baf313e2c2fcc00dc1fa6b391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e6:d7:e1:e4:57:21:35:3f:75:6d:de:9a:13:
f7:21:24:66:a5:a9:53:3b:2c:b7:b2:7d:9f:e9:ac:
25:90:71:5d:41:43:8b:43:7a:16:94:c9:cc:cd:ef:
98:62:d5:1c:98:50:d6:d0:60:5b:bd:d5:60:dc:f7:
51:44:2b:87:6f:ea:32:41:b6:f3:8d:6c:f4:73:4c:
d2:99:c5:79:31:b0:f0:ee:fc:e7:60:14:80:4d:6f:
42:84:66:73:cc:4a:60:8b:bd:87:96:f7:35:09:5b:
27:e9:cd:31:d6:16:f0:e6:c9:8e:dd:7a:8b:70:89:
3a:39:ff:0c:3b:c7:a7:9b:2c:a7:35:8d:d9:37:d1:
69:80:db:3c:71:f4:07:0d:5c:e0:2f:82:01:22:a9:
05:1b:f0:7c:1c:bd:94:03:c7:07:6d:ac:4f:d2:d0:
59:f9:74:bd:2a:6d:11:0a:d7:69:7d:24:e5:6e:8d:
27:73:10:4b:6f:65:ff:28:5d:d3:1e:48:bb:ff:21:
8a:d9:e7:04:d2:12:01:e3:4c:75:03:5b:0f:cd:bc:
95:c7:cc:b7:29:4d:a3:cc:9d:b7:c7:88:ab:15:a0:
b0:6d:0f:b3:fd:ea:92:46:f7:03:3f:d6:5f:7d:1c:
8a:49:7d:26:4c:47:64:df:e8:c2:4e:3e:da:ba:1e:
12:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7A:A6:1E:92:0A:72:2B:AF:31:3E:2C:2F:CC:00:DC:1F:A6:B3:91
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/v3qmHpIKciuvMT4sL8wA3B-ms5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.78.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:a8:64:32:62:6f:61:a0:8d:62:50:8c:da:a7:f4:9f:04:ee:
26:fa:5a:71:a4:ee:ff:4c:c9:7e:29:09:ca:13:d7:f0:0c:77:
e4:ba:48:95:c1:66:65:f3:44:ae:89:73:5d:05:a7:08:8c:cb:
90:46:01:a0:00:ab:61:7b:c2:be:46:06:98:4f:55:1b:39:5a:
7e:10:6c:02:fb:8d:1e:95:7d:c2:79:30:ec:d6:54:cc:21:7c:
21:b6:fb:c9:c7:49:53:b0:aa:c4:d4:e1:8a:72:4d:88:08:54:
08:08:f9:a8:fd:64:e1:38:20:ec:ed:8c:42:fc:a2:08:80:f3:
f7:8a:de:de:9f:d2:68:7b:94:05:a2:07:cc:17:1a:fc:c2:78:
ee:9b:6f:e5:4f:13:c6:6b:2f:85:5a:4b:99:aa:a2:5b:45:97:
64:c6:3b:f9:39:7d:90:21:2b:25:a3:58:5e:70:ff:6a:93:9b:
12:2d:7c:60:2d:bb:91:2f:6f:00:6f:d7:87:64:47:58:aa:5c:
ba:af:68:a5:34:38:46:dc:28:d3:60:bd:1b:9c:e2:31:c4:35:
59:03:15:02:b5:7d:3a:92:cb:99:98:6a:b8:0f:97:ed:9f:24:
dd:af:9a:2b:40:96:03:2f:4d:75:b9:d5:3d:e8:b5:91:53:63:
18:81:74:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org