Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/EL8IJQ7phmjObn8373eq6H3X6qk.roa
File: EL8IJQ7phmjObn8373eq6H3X6qk.roa (raw, json)
Hash identifier: t501VU6SKGeUx8lutooDbfrL2G1gv0CXM6yYL4Ioa18=
Subject key identifier: 10:BF:08:25:0E:E9:86:68:CE:6E:7F:37:EF:77:AA:E8:7D:D7:EA:A9
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 0185DE992891B1C8881ED4499021C4429219
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/EL8IJQ7phmjObn8373eq6H3X6qk.roa
Signing time: Mon 23 Jan 2023 12:27:37 +0000
ROA not before: Mon 23 Jan 2023 12:27:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202472
IP address blocks: 94.240.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:de:99:28:91:b1:c8:88:1e:d4:49:90:21:c4:42:92:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: Jan 23 12:27:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10bf08250ee98668ce6e7f37ef77aae87dd7eaa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0e:87:83:ab:04:a8:e5:d9:8b:7b:b9:40:4f:
10:27:02:94:50:da:40:2c:51:65:ec:96:27:70:04:
57:72:a3:d2:24:da:47:d7:5b:51:cd:23:58:b7:0e:
88:56:92:a6:ce:c1:e8:9a:fb:69:58:25:2b:a9:d7:
07:2b:9e:61:65:9b:14:94:2d:ab:2c:1a:6a:2a:e9:
dc:12:43:b8:46:3e:6e:75:0c:7f:0b:d3:e4:fc:54:
67:5f:b4:d8:37:1e:27:8e:a7:eb:c6:29:e1:12:bd:
af:f5:0a:17:80:8f:01:5d:44:22:7d:84:e0:e6:61:
92:dc:30:12:f5:f8:6d:2e:f4:31:57:03:c2:4a:83:
ca:f9:e1:cf:23:b1:c4:d5:b4:3a:49:25:7f:77:4b:
f3:16:c3:9e:ee:9f:80:9e:ac:ff:83:e6:96:d0:f2:
37:8a:db:88:e1:7d:ed:f0:11:a4:fe:22:41:d9:be:
74:72:70:aa:9d:a1:79:df:39:3f:cb:27:23:6a:9e:
d1:fa:6d:5b:80:e1:00:84:e7:c2:56:03:e1:08:26:
55:e5:89:2d:64:82:9b:54:7b:34:6e:4c:b9:82:4e:
c7:82:58:45:3c:9c:dc:d0:c0:b6:29:65:12:7c:bc:
0a:c4:cb:c3:73:d7:b7:ed:f2:77:17:0d:e5:c4:95:
62:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:BF:08:25:0E:E9:86:68:CE:6E:7F:37:EF:77:AA:E8:7D:D7:EA:A9
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/EL8IJQ7phmjObn8373eq6H3X6qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.240.25.0/24
Signature Algorithm: sha256WithRSAEncryption
37:cb:f9:29:1d:be:53:c6:4a:d4:9f:d9:8b:99:3c:42:8f:a8:
0b:64:b4:3b:bb:ab:65:f0:e9:63:68:8c:50:01:cd:25:41:8d:
eb:08:15:98:85:90:e0:65:9a:99:4c:30:4f:e1:0b:69:e8:5f:
6d:36:b1:49:57:72:8c:76:0c:7c:28:7a:43:57:ee:92:51:6e:
ef:54:b7:44:23:9e:89:e6:44:15:28:be:38:3d:05:d6:c2:02:
75:f8:82:c6:b7:37:e1:48:a6:ce:d9:88:c2:02:b8:c0:d2:74:
a2:8c:2b:80:a3:e8:3a:43:9e:f3:3d:af:b0:f0:6a:b1:1a:60:
6f:d8:9d:4c:ff:9d:6e:26:1a:f8:28:29:e6:9a:a0:e6:14:80:
f8:11:b4:ce:be:13:78:c0:c3:e1:0c:22:20:9e:0c:41:87:56:
ea:2b:1a:38:3d:4c:8e:d3:a3:8b:93:b0:93:6a:c1:68:0f:28:
57:98:46:54:7e:a6:64:b7:6e:59:39:7e:26:ad:81:38:9f:0b:
11:89:fc:d4:56:7e:3d:9c:98:ab:7a:03:fa:6f:49:55:85:eb:
1d:d9:a0:cf:5d:89:2f:e1:37:d8:c9:85:e4:86:40:f2:7a:ed:
fa:27:7a:de:48:58:f3:e8:fc:53:ce:97:18:80:80:f1:93:ab:
3f:57:67:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:12 2024 by rpki-client on console-ams.rpki-client.org