Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/X1QkwDyObhNhbkp8JdCR1MpgJNw.roa
File: X1QkwDyObhNhbkp8JdCR1MpgJNw.roa (raw, json)
Hash identifier: fi+Q0NpCOkoMj7mhIs5hrNnJGMXWCooNH7DUMv6gXlU=
Subject key identifier: 5F:54:24:C0:3C:8E:6E:13:61:6E:4A:7C:25:D0:91:D4:CA:60:24:DC
Certificate issuer: /CN=b3674e822f3876d27deaed5f66dbe9c1a422eb16
Certificate serial: 018D1880B75BFAC17FE521BB2028F5DC35A7
Authority key identifier: B3:67:4E:82:2F:38:76:D2:7D:EA:ED:5F:66:DB:E9:C1:A4:22:EB:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s2dOgi84dtJ96u1fZtvpwaQi6xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/X1QkwDyObhNhbkp8JdCR1MpgJNw.roa
Signing time: Wed 17 Jan 2024 17:38:25 +0000
ROA not before: Wed 17 Jan 2024 17:38:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 79.110.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 13:09:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:80:b7:5b:fa:c1:7f:e5:21:bb:20:28:f5:dc:35:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3674e822f3876d27deaed5f66dbe9c1a422eb16
Validity
Not Before: Jan 17 17:38:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f5424c03c8e6e13616e4a7c25d091d4ca6024dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d1:24:12:3f:59:e0:d8:ee:c8:94:86:43:ab:
1c:e7:9d:92:02:a9:5c:18:0a:c4:0b:6b:2c:6e:76:
c5:03:36:f4:bd:d0:3f:6e:3e:27:ba:13:c4:46:8e:
65:2f:13:12:b2:21:2d:68:59:8f:ae:ad:ff:44:ab:
91:ff:fa:25:4c:45:8f:98:d9:60:e9:d1:3a:c8:9c:
76:9e:d8:a8:20:14:af:93:13:c7:17:2c:bf:33:16:
78:24:8b:a3:59:45:58:71:96:15:38:6f:c1:67:30:
ba:c6:42:3f:72:91:8d:11:91:24:4c:f6:ff:2a:63:
9f:f2:b1:1f:2f:aa:2b:fd:92:53:d4:a4:97:cd:46:
72:67:80:c6:bf:0f:cc:a6:55:72:7a:df:51:53:9c:
39:2d:f0:12:5e:de:6c:f1:9b:40:cf:97:4d:43:45:
b4:84:97:b8:a1:88:d1:cd:82:12:e3:a2:73:76:97:
16:4c:8f:3a:1b:e3:8c:db:5f:95:b1:4d:63:a2:f2:
9f:0d:4f:5d:9d:49:48:23:03:ec:26:50:6c:b6:12:
cd:9d:22:58:bf:33:0e:65:ba:06:35:92:17:5b:71:
9b:86:e2:0a:48:63:01:59:de:a3:65:0a:e0:f9:ae:
77:49:96:2d:c7:ef:eb:47:8f:ea:b3:2b:65:b7:59:
ed:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:54:24:C0:3C:8E:6E:13:61:6E:4A:7C:25:D0:91:D4:CA:60:24:DC
X509v3 Authority Key Identifier:
keyid:B3:67:4E:82:2F:38:76:D2:7D:EA:ED:5F:66:DB:E9:C1:A4:22:EB:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s2dOgi84dtJ96u1fZtvpwaQi6xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/X1QkwDyObhNhbkp8JdCR1MpgJNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/s2dOgi84dtJ96u1fZtvpwaQi6xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.238.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:40:0b:ac:35:81:cf:4f:99:73:24:87:31:0b:8e:70:04:44:
cf:64:46:30:8c:fa:ab:9d:1b:94:13:f4:de:36:9f:ef:d1:49:
7c:81:4e:d3:cc:b2:8f:9d:6f:12:cd:08:47:98:01:e9:0a:1c:
26:0a:13:c7:be:c5:5e:c0:9f:97:ef:22:c6:aa:61:a7:2d:37:
01:e7:55:03:d7:91:15:4c:a7:9c:7d:dc:d9:53:0a:79:cd:74:
17:43:0b:d1:7a:3d:ba:24:2c:ed:45:04:1b:3c:28:eb:15:e4:
45:11:0c:40:d7:27:12:87:3e:b6:35:04:f8:eb:3a:50:f1:30:
2d:e6:04:bc:70:5a:e2:01:9f:65:65:c6:89:cc:64:66:a9:4f:
c8:39:12:5b:51:38:0e:c9:08:2b:52:ed:98:33:59:b3:e6:bc:
da:aa:aa:16:a9:40:8f:73:5d:f7:cb:b0:77:99:d5:16:cc:db:
3c:01:6d:71:66:6b:9d:2b:67:f6:6a:4b:ca:8b:5b:2f:fa:8b:
04:d8:08:e6:df:d4:64:81:84:a0:97:aa:f9:08:5c:51:47:80:
c1:3e:dd:9b:a2:43:f3:b9:07:1d:45:b0:ab:15:6b:c9:0d:57:
d6:2e:cc:c5:79:c4:cd:75:82:e0:29:29:1d:93:0d:96:60:f7:
03:ee:5a:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:09 2024 by rpki-client on console-ams.rpki-client.org