Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vEfNgM0ntqkzluHLAV_IiIQxmtw.roa
File: vEfNgM0ntqkzluHLAV_IiIQxmtw.roa (raw, json)
Hash identifier: uU31zFDMl+RcyBcQd1YLKcWCl0CYzXfxU7qBCiG5yno=
Subject key identifier: BC:47:CD:80:CD:27:B6:A9:33:96:E1:CB:01:5F:C8:88:84:31:9A:DC
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01904A7B062C3421743C69A3163E70C8CA91
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vEfNgM0ntqkzluHLAV_IiIQxmtw.roa
Signing time: Mon 24 Jun 2024 13:41:34 +0000
ROA not before: Mon 24 Jun 2024 13:41:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25198
IP address blocks: 87.120.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 08:56:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:7b:06:2c:34:21:74:3c:69:a3:16:3e:70:c8:ca:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 24 13:41:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc47cd80cd27b6a93396e1cb015fc88884319adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1a:5c:6b:73:d9:a9:30:6e:ec:b7:d4:e5:d2:
bb:de:a2:83:6d:97:0e:71:10:a1:5e:1c:95:47:8a:
5b:d7:25:8c:13:ba:15:26:f1:a0:63:bd:b8:26:86:
85:06:ec:a4:d3:78:bc:ea:62:95:dd:53:d7:ed:1c:
8e:4e:c6:5b:b5:89:d8:95:c0:a6:a4:91:cb:0f:26:
d3:b2:d1:91:f8:5c:17:29:39:6a:45:24:90:ec:a7:
55:0c:6a:8d:9e:c7:bc:cf:fd:86:11:4f:f4:7c:24:
6b:ac:f4:63:bc:3f:d2:2e:59:26:51:c9:62:22:46:
d3:54:a3:5a:ed:3a:03:32:ce:eb:21:08:c7:4e:45:
f7:70:c1:61:cf:0d:41:33:ab:13:30:8a:a3:1b:c0:
61:5c:52:8d:36:c3:c3:54:aa:51:cd:6d:cb:17:bf:
f9:ed:02:53:07:5a:97:25:4a:40:a7:82:5b:2c:38:
6f:2b:89:92:48:5a:df:8d:47:83:ff:ea:73:c3:20:
78:2e:9a:56:b4:29:b8:18:46:0e:61:24:e3:74:0e:
2b:e4:ad:a3:67:cb:5d:4b:d3:78:73:87:50:c2:ca:
47:1e:20:89:de:c4:7c:9d:f0:24:dc:e1:5e:de:7a:
cd:8f:1c:49:9d:2a:fb:b6:65:94:65:e0:e7:6e:a0:
b0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:47:CD:80:CD:27:B6:A9:33:96:E1:CB:01:5F:C8:88:84:31:9A:DC
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vEfNgM0ntqkzluHLAV_IiIQxmtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.93.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:41:0f:10:5b:22:b2:5f:ef:5b:01:36:b6:b5:47:b8:2d:e5:
1c:34:73:bd:53:df:b1:80:d3:c1:97:83:5c:af:31:5e:f5:07:
dc:85:6d:2f:8b:6d:2b:88:94:c2:37:06:cf:63:b4:78:32:fa:
ee:71:84:4b:a2:a6:c5:64:c5:68:d2:40:82:0b:89:81:0f:71:
b7:26:1b:0a:4c:37:ec:eb:5e:b1:5c:4a:eb:d3:52:f2:48:32:
bb:e7:af:68:85:72:b1:73:35:f7:1f:61:9b:48:3d:f4:34:f3:
92:e5:f8:4d:ec:03:b0:ee:1a:35:a9:9a:44:75:72:61:ee:76:
24:f5:3a:6f:c9:43:cf:ff:1c:1d:dd:d0:58:4e:48:ee:3f:04:
ac:1d:57:3f:30:3c:bd:2d:6e:c5:5d:88:7f:24:bb:29:ba:4a:
30:23:0f:0a:be:95:c8:bb:52:69:b0:fb:5c:90:ee:26:8f:18:
f5:3b:23:d9:77:9d:cf:e4:e3:66:bf:88:3f:53:b1:40:43:1e:
93:04:c5:97:fb:2f:af:37:71:38:72:ae:bb:38:9a:c6:40:68:
ef:1d:72:23:1d:45:a7:ae:fa:e9:f0:d7:ca:4a:92:7f:f1:cd:
f7:3e:c4:1a:45:2d:dd:78:d3:d6:f4:6f:eb:08:11:32:b3:80:
ab:13:ae:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 12:40:40 2024 by rpki-client on console-ams.rpki-client.org