Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/kIXzDxC5xHuq7Y6nqa2AjUEfQok.roa
File: kIXzDxC5xHuq7Y6nqa2AjUEfQok.roa (raw, json)
Hash identifier: /IWu2YhZZohU5+mP2gck6y58YApC7DeDM5cwNRvZCYw=
Subject key identifier: 90:85:F3:0F:10:B9:C4:7B:AA:ED:8E:A7:A9:AD:80:8D:41:1F:42:89
Certificate issuer: /CN=54b24d895bf9c0a5fd000a45a347510b2a087fb8
Certificate serial: 01856D81AB9F60D8C46071B9144CF262DD54
Authority key identifier: 54:B2:4D:89:5B:F9:C0:A5:FD:00:0A:45:A3:47:51:0B:2A:08:7F:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLJNiVv5wKX9AApFo0dRCyoIf7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/kIXzDxC5xHuq7Y6nqa2AjUEfQok.roa
Signing time: Sun 01 Jan 2023 13:24:52 +0000
ROA not before: Sun 01 Jan 2023 13:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57773
IP address blocks: 147.78.228.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:ab:9f:60:d8:c4:60:71:b9:14:4c:f2:62:dd:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b24d895bf9c0a5fd000a45a347510b2a087fb8
Validity
Not Before: Jan 1 13:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9085f30f10b9c47baaed8ea7a9ad808d411f4289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5b:34:e5:05:34:1c:c4:af:2b:16:c1:58:fb:
5f:8f:17:32:56:d0:eb:8a:73:87:fa:66:67:d3:cd:
56:95:23:35:d3:e6:5e:9c:ab:39:33:e5:68:60:2c:
de:d0:a8:8a:53:28:0f:e3:ba:1c:bd:c5:40:13:d5:
fa:e5:01:28:0e:5a:7c:ed:54:30:83:08:36:6c:a5:
1f:d3:25:03:5e:da:66:be:21:8c:e4:a6:96:72:79:
cc:7c:47:79:ba:6b:f8:3e:5e:03:bd:6d:cd:c3:96:
66:db:98:95:26:eb:4e:81:50:59:2a:0f:f4:24:19:
e6:28:a9:bf:e4:8e:66:a1:12:58:f5:75:58:9b:6e:
96:2a:94:ff:c4:b9:42:85:dc:6f:31:85:30:e2:5d:
4e:b4:6e:67:a6:69:d9:ed:dd:fe:d1:76:90:d5:af:
91:fd:59:6d:41:1c:8b:a9:55:82:eb:7c:60:2c:6a:
43:d1:1a:60:1b:e4:28:0c:90:f2:60:0e:a9:e7:f2:
e3:8d:d6:aa:41:40:27:6b:25:a9:e0:ad:e2:92:27:
0b:b8:53:ab:f7:21:25:87:8a:13:c1:92:36:67:75:
e4:11:65:7b:77:9d:cc:cf:e2:f5:cb:c4:56:ea:0b:
e7:da:82:6b:a0:6e:9b:21:78:aa:ba:c0:87:df:ad:
b6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:85:F3:0F:10:B9:C4:7B:AA:ED:8E:A7:A9:AD:80:8D:41:1F:42:89
X509v3 Authority Key Identifier:
keyid:54:B2:4D:89:5B:F9:C0:A5:FD:00:0A:45:A3:47:51:0B:2A:08:7F:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLJNiVv5wKX9AApFo0dRCyoIf7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/kIXzDxC5xHuq7Y6nqa2AjUEfQok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d21679-2ad2-4df5-80b0-fcb9bd05b1ab/1/VLJNiVv5wKX9AApFo0dRCyoIf7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.228.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:a5:20:c4:c4:9c:eb:13:ef:38:79:e0:70:d6:1d:d2:18:32:
99:8f:91:03:0a:14:90:44:0d:22:30:6f:4f:08:22:ae:3c:dd:
9c:f5:76:51:38:26:0c:f0:05:1b:6e:2c:df:f2:6a:bf:d8:da:
80:35:56:29:58:f3:5b:cf:96:cb:7c:0e:a8:88:96:f4:47:b1:
2f:e9:ed:11:73:64:50:35:09:33:50:5b:49:69:e7:04:a6:62:
65:8f:73:a8:79:8b:d6:2b:27:9c:4c:8d:60:2b:bd:0f:00:55:
4f:7a:1f:45:65:0a:ba:37:49:f2:22:eb:7f:af:85:79:85:df:
20:df:cc:98:5e:d2:36:1b:5e:08:4d:e9:0f:f4:08:b2:14:c6:
1a:d3:e8:ce:7f:27:aa:ac:05:2f:87:c2:0e:fc:eb:6d:ed:d1:
3a:b3:ca:0d:e4:78:e0:d6:4d:1d:f7:77:a1:49:76:74:e6:3c:
14:ea:a2:bb:00:39:d9:58:24:83:b9:17:c8:80:10:6f:de:46:
e8:a7:4a:3c:1c:c6:63:b5:e1:21:8a:fa:76:8d:71:ba:54:cd:
fa:6a:5c:27:5d:41:e9:2b:ff:78:fd:48:98:6c:f2:8f:df:e8:
d5:db:4a:b9:10:1d:e5:cc:46:ee:6f:0d:83:b4:5f:22:81:51:
18:68:44:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:50 2024 by rpki-client on console-ams.rpki-client.org