Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/260e24-2040-4a5c-92cf-ec58a3125ee5/1/CEMFA76rNxRqNArsW_RMljGIsXA.roa
File: CEMFA76rNxRqNArsW_RMljGIsXA.roa (raw, json)
Hash identifier: 1h82POM2DXtCvLI2lPJ4vrV9Dw9135U3PyZ6YM0ZtUo=
Subject key identifier: 08:43:05:03:BE:AB:37:14:6A:34:0A:EC:5B:F4:4C:96:31:88:B1:70
Certificate issuer: /CN=c4b1b458abf797dedcc661e54a685f651834b5d1
Certificate serial: 01881F71AD0929C11FC26AA2FD871BA841C7
Authority key identifier: C4:B1:B4:58:AB:F7:97:DE:DC:C6:61:E5:4A:68:5F:65:18:34:B5:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLG0WKv3l97cxmHlSmhfZRg0tdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/260e24-2040-4a5c-92cf-ec58a3125ee5/1/CEMFA76rNxRqNArsW_RMljGIsXA.roa
Signing time: Mon 15 May 2023 12:45:23 +0000
ROA not before: Mon 15 May 2023 12:45:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41685
IP address blocks: 78.25.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:71:ad:09:29:c1:1f:c2:6a:a2:fd:87:1b:a8:41:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4b1b458abf797dedcc661e54a685f651834b5d1
Validity
Not Before: May 15 12:45:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08430503beab37146a340aec5bf44c963188b170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:07:3b:d3:30:27:bb:e6:ef:22:56:74:c1:9f:
44:1a:48:57:d5:0e:2a:47:de:e5:90:43:e6:e9:51:
3c:fe:48:90:37:cc:f6:43:87:c4:9a:26:ac:65:d2:
7f:1e:42:cd:f2:92:af:a3:3a:b1:24:9d:5e:b1:be:
eb:11:aa:e9:2a:a8:48:2c:73:e9:42:f0:a7:5f:21:
36:64:95:93:dc:5a:99:74:1c:df:48:73:85:68:58:
0f:3c:4f:ae:28:0b:6c:c5:09:ce:60:a2:10:66:ac:
f1:ea:9f:67:db:5c:89:26:e7:79:73:62:e5:b3:94:
8b:3e:e0:9c:43:40:f9:c7:05:9c:a0:e1:d8:d2:db:
2f:ec:56:05:a6:5b:0c:5b:90:ae:5e:0c:85:64:f2:
d1:1c:8d:9b:ce:1a:8c:c3:15:55:34:1d:dd:2a:c8:
be:3a:62:47:b5:f1:83:1d:cd:40:a1:e9:0a:9d:86:
80:b9:f2:33:da:29:87:e8:02:d9:46:f1:19:85:63:
42:01:ce:03:22:57:d6:3d:b1:34:1e:09:6d:c0:04:
0b:45:b2:2d:d7:de:25:b5:4a:39:99:4f:24:53:af:
40:82:27:ea:b6:3d:9f:ec:9f:a2:cd:3d:c6:12:be:
45:ef:9d:d2:9b:ca:1b:68:c9:c9:d8:1c:02:82:0f:
80:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:43:05:03:BE:AB:37:14:6A:34:0A:EC:5B:F4:4C:96:31:88:B1:70
X509v3 Authority Key Identifier:
keyid:C4:B1:B4:58:AB:F7:97:DE:DC:C6:61:E5:4A:68:5F:65:18:34:B5:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLG0WKv3l97cxmHlSmhfZRg0tdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/260e24-2040-4a5c-92cf-ec58a3125ee5/1/CEMFA76rNxRqNArsW_RMljGIsXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/260e24-2040-4a5c-92cf-ec58a3125ee5/1/xLG0WKv3l97cxmHlSmhfZRg0tdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.25.1.0/24
Signature Algorithm: sha256WithRSAEncryption
85:ab:7a:3a:e8:7b:c5:83:2f:d1:59:ed:75:59:3f:5c:8d:d1:
a7:86:cc:63:41:21:b4:e8:72:82:4c:23:08:1f:aa:81:a0:42:
ab:25:e6:14:24:97:a5:f3:c1:6b:91:32:d9:b4:55:3b:49:74:
4d:c6:65:38:38:2c:9c:5f:bb:06:64:fc:28:49:89:36:ef:5c:
18:e1:9b:b0:53:56:4f:a5:73:31:95:c8:89:6f:8e:12:20:e0:
7e:65:3b:3f:e8:fa:11:77:02:d7:b8:4f:3d:4c:8c:f3:e3:5d:
23:47:16:27:79:4a:06:2b:87:db:78:af:bd:89:bc:f3:a9:d8:
e4:95:10:1a:50:b0:a1:d1:62:88:3c:3d:84:7d:3e:34:e2:24:
57:35:6a:53:bd:56:55:41:2c:6d:f9:0f:19:c9:c7:d0:e0:cb:
08:a0:25:d6:61:e9:50:02:fb:20:06:16:d1:11:a9:85:38:e4:
7a:68:65:54:75:f2:05:06:dc:10:ea:ba:81:29:cc:62:b7:b8:
cc:38:52:dd:bf:fc:71:fc:56:4b:f5:f9:a8:07:73:1f:f8:4a:
6e:f3:db:09:0f:dc:fd:51:94:53:99:08:b6:f8:a1:54:67:6c:
ea:b9:0c:b6:5e:23:49:d4:f3:92:01:21:56:ff:65:20:25:67:
ad:fa:d2:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:40 2024 by rpki-client on console-ams.rpki-client.org