Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/3lkIoDZ7qSoZVLRVusaHKR4p_es.roa
File: 3lkIoDZ7qSoZVLRVusaHKR4p_es.roa (raw, json)
Hash identifier: uc2RMUkqaf9jPpMSl6ClvOzDldnDn3EZJWlrOVrn0tw=
Subject key identifier: DE:59:08:A0:36:7B:A9:2A:19:54:B4:55:BA:C6:87:29:1E:29:FD:EB
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 01856EB8F1907317B7260546A43ED41EA6F3
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/3lkIoDZ7qSoZVLRVusaHKR4p_es.roa
Signing time: Sun 01 Jan 2023 19:04:51 +0000
ROA not before: Sun 01 Jan 2023 19:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201383
IP address blocks: 84.47.185.0/24 maxlen: 24
84.47.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:f1:90:73:17:b7:26:05:46:a4:3e:d4:1e:a6:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Jan 1 19:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de5908a0367ba92a1954b455bac687291e29fdeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7e:ca:82:d7:bb:c1:6a:cc:d9:67:20:99:9f:
e2:70:d6:8a:22:63:9b:10:bf:df:ea:0a:91:04:fb:
4f:40:30:1c:89:2e:11:c3:03:ac:4a:59:7f:18:6d:
f1:b7:24:53:54:00:db:bc:07:e1:2b:a5:39:0e:62:
7f:fb:35:64:6f:cb:ec:81:cc:a4:ae:c3:bc:5a:5c:
1d:aa:52:7d:eb:06:24:0d:6b:5a:35:11:87:48:2d:
54:f1:3e:5c:72:c1:bf:be:40:71:7e:1f:a8:64:75:
9e:89:4f:0a:bd:5c:7d:07:07:8d:d0:52:26:19:46:
93:8e:33:4a:4f:1d:5a:92:b9:67:e0:9e:37:14:0b:
e4:ca:81:8e:70:c0:a7:be:31:2b:74:97:24:57:bb:
b9:1a:98:8b:a0:37:ee:bd:3b:7f:0d:ba:35:3a:ac:
d1:1a:72:5c:99:e3:fd:dd:bc:6b:4b:e7:e2:e3:44:
cd:90:09:07:5e:a8:93:d8:b4:70:1b:89:97:d4:a3:
cf:3f:30:c8:3c:bc:56:58:0f:47:a1:9f:5a:8e:4d:
46:3d:79:eb:c4:27:5b:e3:12:ea:90:d3:5c:f0:36:
68:7b:b4:af:24:cd:53:74:0a:a6:a1:13:26:5b:b0:
cd:e3:7f:c3:e9:56:d5:c2:dd:12:81:04:03:44:8b:
61:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:59:08:A0:36:7B:A9:2A:19:54:B4:55:BA:C6:87:29:1E:29:FD:EB
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/3lkIoDZ7qSoZVLRVusaHKR4p_es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.184.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:66:c2:b6:09:74:d9:85:1f:f0:fe:cf:da:fb:54:78:00:49:
08:a1:66:d8:2f:5a:6a:c6:b4:15:76:b0:ca:cb:45:4c:a7:1a:
0c:2c:04:86:40:a7:63:7b:3a:f0:11:43:cf:01:35:30:90:55:
3c:6a:5d:58:9c:1e:b9:2c:a0:f2:1d:eb:6e:f2:0c:1a:4b:ed:
39:92:0a:6e:8e:d6:55:66:6e:40:13:07:7e:77:cf:1e:48:e4:
69:aa:46:af:2d:c8:46:2d:45:d6:fd:2b:40:02:5a:48:d9:c5:
e4:8e:cf:e6:5a:04:56:96:13:3c:8a:f8:ae:90:84:99:cb:7a:
8f:d7:07:4c:37:75:a2:c2:e5:fa:d5:26:ff:86:95:85:32:4f:
ba:94:a1:87:e9:0e:bc:13:85:7d:8c:55:23:28:66:d9:5b:02:
b0:80:27:fe:a1:20:b5:d3:6e:fa:8c:a6:d4:5a:9d:0d:ea:cf:
cf:3c:f9:8c:6c:8e:b9:5b:90:37:25:e3:b0:60:25:d2:74:cd:
a7:70:c2:bc:08:d5:34:3f:4c:23:35:d4:d7:21:67:cc:9f:49:
00:d5:2d:34:a0:de:f9:0c:f2:e5:fb:09:a7:1d:46:0f:f4:4a:
88:bc:02:44:8b:1e:ad:83:7e:cb:cc:d9:7a:8b:74:91:23:53:
e9:4f:05:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:20 2024 by rpki-client on console-ams.rpki-client.org