Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/pnjm5H1sSwJpduN26T9zbahxpmc.roa
File: pnjm5H1sSwJpduN26T9zbahxpmc.roa (raw, json)
Hash identifier: GRM+aewtbVBevVhMNWSvswuU2CFAEsd2B6MDYBBWNgs=
Subject key identifier: A6:78:E6:E4:7D:6C:4B:02:69:76:E3:76:E9:3F:73:6D:A8:71:A6:67
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 01895529868701274C902CA72DE3E69D8788
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/pnjm5H1sSwJpduN26T9zbahxpmc.roa
Signing time: Fri 14 Jul 2023 16:08:52 +0000
ROA not before: Fri 14 Jul 2023 16:08:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 107.181.135.0/24 maxlen: 24
2a07:9940:3333::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:55:29:86:87:01:27:4c:90:2c:a7:2d:e3:e6:9d:87:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jul 14 16:08:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a678e6e47d6c4b026976e376e93f736da871a667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7f:d4:96:0e:65:c8:10:17:d5:b0:46:ab:e9:
d9:50:03:3c:b4:5a:ec:3c:1e:69:d7:fe:ac:51:fb:
32:53:63:42:17:ad:66:36:f1:ec:1c:aa:b7:47:86:
5a:45:a4:95:33:b4:95:74:e3:0c:23:87:8b:95:c0:
b3:72:8e:96:71:2f:17:dc:c7:11:73:0b:d3:af:6a:
aa:25:b6:a4:b0:a7:f1:e3:07:f3:06:44:2f:ba:c0:
3e:33:94:ba:ad:56:0c:e8:9e:41:f9:a5:ee:b2:0f:
ea:32:cd:95:70:af:cc:91:f7:57:a9:68:8a:c4:44:
f1:2e:5b:64:8c:36:0c:b1:cd:c2:a7:7a:71:e4:d4:
0c:19:34:36:e5:32:1a:d8:20:d6:8d:1d:2b:ba:fe:
0c:d2:8a:de:a8:40:37:69:7f:48:96:76:6c:fa:cc:
14:66:7e:ae:16:60:cb:17:f4:fd:6b:bd:bd:94:0a:
4b:ce:d0:02:cb:20:d9:fe:92:14:af:61:9d:dc:4a:
79:24:0b:06:2c:df:8c:31:9d:c3:40:cf:98:0d:f2:
d4:2b:5c:a2:5e:9e:15:fd:61:04:13:b5:0a:e2:59:
df:83:46:e1:b8:75:91:5c:2c:e6:a8:22:e1:ab:c8:
0c:bc:5b:de:70:60:b4:97:59:c9:01:a0:99:9f:b6:
6b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:78:E6:E4:7D:6C:4B:02:69:76:E3:76:E9:3F:73:6D:A8:71:A6:67
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/pnjm5H1sSwJpduN26T9zbahxpmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.181.135.0/24
IPv6:
2a07:9940:3333::/48
Signature Algorithm: sha256WithRSAEncryption
7f:a4:d7:f6:23:c7:21:cc:bf:99:64:f2:60:ca:30:23:4a:cc:
f6:0e:58:4f:02:ef:c4:72:06:74:dd:6c:80:a1:75:4f:21:0b:
fd:85:cb:2e:b4:e7:6e:21:a0:57:f9:e7:d9:ae:e1:39:28:ae:
40:8d:9b:84:41:1d:b2:0e:32:3f:0f:9c:0a:a0:f9:8a:fe:b1:
bb:b2:48:d0:ac:37:7c:b4:0c:f3:28:c8:55:77:b4:05:16:d4:
86:76:d3:65:e8:2e:5c:11:94:2c:13:5e:60:b1:00:9d:a9:0d:
da:ca:51:ef:1b:0b:8c:a9:08:38:91:09:b3:62:a1:80:8f:7e:
30:f3:e5:f5:fe:60:a6:25:e2:0f:38:f5:38:c3:90:ed:b0:3f:
a7:67:93:86:4f:7d:17:ef:a6:f4:4d:79:28:73:06:5f:cf:20:
8d:fa:21:38:e6:c4:6c:e3:54:0c:47:d0:20:23:d6:c5:51:27:
4b:2a:cc:9f:6a:6f:da:b1:76:ef:2a:57:8d:f6:c6:7f:65:e6:
d6:2b:a5:a8:c7:80:4e:14:9e:7f:3d:61:19:1e:10:cc:0d:ec:
b7:7b:ea:0c:b0:63:89:d7:0c:11:44:f2:4f:12:3f:a7:dc:d1:
06:09:8b:47:d2:4c:06:6f:9b:6a:75:c4:7f:84:24:3f:24:6d:
df:21:38:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:40:08 2024 by rpki-client on console-fra.rpki-client.org