Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/yI5HHbeT51WjHDqEHNSQBJUqzz0.roa
File: yI5HHbeT51WjHDqEHNSQBJUqzz0.roa (raw, json)
Hash identifier: UteEIfpuNaBYIdXZVl6Yn/eyOa/1b0OhU2vNpSsd3sY=
Subject key identifier: C8:8E:47:1D:B7:93:E7:55:A3:1C:3A:84:1C:D4:90:04:95:2A:CF:3D
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 018CC500DD226ED8181EAC49EA8BC2694A97
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/yI5HHbeT51WjHDqEHNSQBJUqzz0.roa
Signing time: Mon 01 Jan 2024 12:30:17 +0000
ROA not before: Mon 01 Jan 2024 12:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 157.97.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Mar 2024 17:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:dd:22:6e:d8:18:1e:ac:49:ea:8b:c2:69:4a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 1 12:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c88e471db793e755a31c3a841cd49004952acf3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:30:30:08:05:cb:10:a4:b2:2b:f9:93:d3:76:
4d:a1:3a:3c:cf:58:e3:5e:b2:44:71:47:47:8a:7a:
4e:6a:2e:c9:64:4c:4b:2c:b7:40:eb:6a:78:da:98:
27:c4:87:4c:b2:65:13:62:90:a9:86:c3:d9:54:bb:
3c:98:90:53:9e:52:11:f3:1b:b8:ef:8c:13:59:6d:
cb:85:27:b7:95:23:0f:2f:f0:c3:c3:00:68:91:13:
25:b7:e4:f1:cc:67:90:af:02:31:24:6b:eb:b9:50:
eb:65:7d:ea:17:3a:b7:f9:83:1b:1f:6e:e1:78:0c:
59:b6:97:a6:f1:14:f3:e6:ad:7a:3f:7a:7b:da:51:
46:fd:33:23:79:43:a4:25:95:26:7a:1c:c6:f2:d9:
3e:62:1d:5d:6b:10:12:96:50:6f:0d:35:4e:a0:26:
b1:af:1d:b9:61:78:db:94:4e:38:25:b2:31:d0:8c:
39:bf:11:63:0b:24:30:0a:1d:a5:ed:b6:ab:70:9c:
ac:95:d2:c3:30:c5:de:a6:ea:43:a1:f6:3c:d3:28:
a1:e8:e8:aa:b2:0b:4c:cb:10:51:d2:a1:21:ba:fc:
5e:0f:ca:7b:66:43:30:10:67:3f:a8:7f:ad:a3:f8:
26:f8:6a:3a:ac:bf:85:fc:df:1e:d6:7f:63:e5:4b:
10:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8E:47:1D:B7:93:E7:55:A3:1C:3A:84:1C:D4:90:04:95:2A:CF:3D
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/yI5HHbeT51WjHDqEHNSQBJUqzz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.97.122.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:b1:ee:cb:ee:8f:b2:28:b6:26:3b:7c:26:48:a7:cd:d0:46:
4c:ec:82:1d:68:01:6c:54:0b:85:37:3e:a1:b4:a8:1d:f3:33:
e8:f1:42:4f:b8:07:34:e4:62:77:90:2d:f4:ed:75:66:e4:83:
e4:54:1c:88:0b:7a:67:a9:4b:7a:f0:35:18:2f:a4:04:b1:ab:
7c:2e:f3:01:9e:38:b5:cf:4e:77:82:e5:d1:12:b2:ca:53:6d:
43:72:86:a8:f0:f3:40:04:33:09:58:7f:91:e0:84:63:fb:05:
f6:32:cd:d5:a1:4f:88:ac:9b:34:48:4d:7f:30:89:28:c4:15:
e6:65:54:2f:fa:19:83:3c:32:b1:c4:15:fd:c4:12:86:10:96:
45:54:e7:fd:00:46:1f:68:85:a1:db:ca:11:65:65:35:7b:71:
ba:59:c4:3f:10:2c:71:20:95:be:64:33:09:c3:90:8a:e6:f0:
c9:e8:6d:86:62:bb:a1:ba:af:08:40:65:bd:01:2d:7f:e5:6a:
c2:46:9e:9b:dc:8f:ac:82:2d:2f:2f:1b:6a:f0:ba:40:79:2f:
3d:c5:a7:46:ed:2f:70:4c:c6:16:ed:9f:99:a2:0f:fb:9d:57:
a9:54:5f:c1:25:9a:d2:b7:47:3d:1e:68:70:4e:f9:84:6d:70:
17:af:03:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 24 18:21:21 2024 by rpki-client on console-fra.rpki-client.org