Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/fAsYrHDn8b6LgUfnhv7k_PU77ag.roa
File: fAsYrHDn8b6LgUfnhv7k_PU77ag.roa (raw, json)
Hash identifier: JU/PVohJZjpkaXb0aF0MgIjFnPlz3h+ShzwomO+qakA=
Subject key identifier: 7C:0B:18:AC:70:E7:F1:BE:8B:81:47:E7:86:FE:E4:FC:F5:3B:ED:A8
Certificate issuer: /CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Certificate serial: 0188B4D5B0E4FEDDED38DC58E83D428675C4
Authority key identifier: C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/fAsYrHDn8b6LgUfnhv7k_PU77ag.roa
Signing time: Tue 13 Jun 2023 12:58:03 +0000
ROA not before: Tue 13 Jun 2023 12:58:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5410
IP address blocks: 128.78.0.0/15 maxlen: 15
Validation: Failed, certificate revoked on Thu 15 Jun 2023 11:46:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b4:d5:b0:e4:fe:dd:ed:38:dc:58:e8:3d:42:86:75:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7c24de99101fafdf74bca293fd6d95060d50a63
Validity
Not Before: Jun 13 12:58:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c0b18ac70e7f1be8b8147e786fee4fcf53beda8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2b:94:d7:9d:3c:7e:4e:7c:45:ca:61:49:98:
f0:b0:47:55:bd:7a:ce:27:0e:db:78:d5:12:de:a9:
ac:bb:ac:c4:99:61:fd:33:08:86:f0:91:57:c9:1c:
73:b3:a6:15:d7:03:f3:d6:b2:9e:e3:bb:0b:05:0b:
1a:ad:20:a8:0e:52:fe:ed:df:cc:86:97:8d:3a:ef:
ba:6c:8b:24:b2:4e:54:56:f6:31:04:f5:1a:29:ac:
78:ce:46:21:16:1c:9a:80:58:15:af:e1:fd:ae:88:
6a:55:08:b4:73:25:0a:d9:95:c4:3f:ad:29:f6:39:
9f:30:b7:41:c5:4a:64:88:ea:d1:8d:d9:6e:67:e3:
bb:34:62:c6:f8:18:49:66:08:dc:ca:bb:0a:b5:10:
16:ae:8f:74:5a:30:af:b7:da:2c:1a:cb:54:69:73:
97:ca:2c:a2:2d:4c:2e:35:46:8b:4c:51:33:0d:65:
ca:52:86:ee:14:44:15:8f:31:39:db:7b:1b:16:73:
b3:4e:d2:63:e8:0b:81:8b:8d:48:02:40:06:26:e1:
f9:49:ac:91:a2:e0:d1:06:24:7f:90:95:79:8b:aa:
d9:98:77:34:72:9e:81:2a:bf:96:5b:e0:ef:81:ef:
8a:86:c1:59:3e:21:7e:a4:36:eb:aa:4a:64:1e:cc:
0b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:0B:18:AC:70:E7:F1:BE:8B:81:47:E7:86:FE:E4:FC:F5:3B:ED:A8
X509v3 Authority Key Identifier:
keyid:C7:C2:4D:E9:91:01:FA:FD:F7:4B:CA:29:3F:D6:D9:50:60:D5:0A:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x8JN6ZEB-v33S8opP9bZUGDVCmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/fAsYrHDn8b6LgUfnhv7k_PU77ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/eb013f-5774-4e06-a5d4-ed5d6ce8d7e8/1/x8JN6ZEB-v33S8opP9bZUGDVCmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.78.0.0/15
Signature Algorithm: sha256WithRSAEncryption
92:0c:be:8a:8f:d7:e1:29:6c:1f:1f:55:2a:f3:58:a7:f0:19:
20:00:53:f0:2c:0d:f3:70:eb:97:8a:28:dd:9c:a4:c1:0d:57:
79:31:31:cc:7b:e1:60:4e:0e:e8:f5:d9:a6:ef:ab:ec:0f:23:
a4:54:81:9b:74:ed:36:34:7b:67:20:62:fb:91:51:da:6f:e1:
2d:aa:ed:1c:bd:54:a8:0f:b1:77:bd:36:ea:14:67:00:8b:ec:
35:bc:85:36:57:e7:a4:6d:d5:dc:d3:00:14:41:d8:4c:1f:52:
a8:c5:54:f1:1d:eb:a7:82:20:94:3b:3d:d9:ed:f3:fc:e2:dd:
57:58:39:75:fc:2c:a9:8f:73:5e:96:ad:ce:81:b2:7d:c6:8f:
82:98:b7:59:5e:dd:20:60:6c:2e:ba:95:18:f2:88:98:a0:e4:
cf:6a:89:81:8d:6b:21:f4:77:cf:8c:ea:fb:55:c9:f5:56:5f:
ba:75:a9:69:5c:14:f4:cd:d0:77:31:df:8f:f6:0e:8f:83:9a:
9a:d1:85:7f:7c:4b:a9:e7:2d:38:41:47:7c:18:95:7c:e5:e6:
cf:cc:bb:94:54:6b:1a:92:75:e5:23:0f:e1:e3:aa:45:43:55:
1a:bc:16:00:15:5e:db:f6:2d:3d:72:e6:22:fa:11:fb:a6:b6:
6d:13:50:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:38 2024 by rpki-client on console-fra.rpki-client.org