Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/1-UDalGw-zU1C_svQGhLIpkk6imI.roa
File: 1-UDalGw-zU1C_svQGhLIpkk6imI.roa (raw, json)
Hash identifier: ecufSAP3e61z5dxA7WPB6yYLpSWCgqz4ydqPqGRTzSc=
Subject key identifier: F9:40:DA:94:6C:3E:CD:4D:42:FE:CB:D0:1A:12:C8:A6:49:3A:8A:62
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0190FA8825080E752F418B97454223FBE627
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/1-UDalGw-zU1C_svQGhLIpkk6imI.roa
Signing time: Sun 28 Jul 2024 18:09:04 +0000
ROA not before: Sun 28 Jul 2024 18:09:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210715
IP address blocks: 78.108.218.0/24 maxlen: 24
83.143.119.0/24 maxlen: 24
193.31.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Aug 2024 15:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fa:88:25:08:0e:75:2f:41:8b:97:45:42:23:fb:e6:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jul 28 18:09:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f940da946c3ecd4d42fecbd01a12c8a6493a8a62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8d:77:47:77:cf:2b:6b:78:5b:c0:b7:be:27:
bb:89:f4:b3:00:89:39:77:b0:3b:b0:dc:6d:98:7f:
a1:31:9d:37:f1:6a:94:31:74:76:61:7b:9d:75:0d:
2b:aa:e6:3d:b3:05:5c:59:88:39:27:76:8f:51:85:
13:5f:7f:5c:a6:6a:17:4c:12:8a:36:a1:42:fe:cc:
fd:a3:db:a5:60:52:22:93:69:19:af:a6:4b:9f:32:
a2:b7:8d:68:0c:98:15:be:1a:5e:31:63:84:2e:95:
6f:7c:f8:be:a2:80:04:a3:9a:d1:71:8b:ee:d0:6d:
f6:62:9f:82:92:78:d4:cd:4a:ce:96:69:1c:20:ba:
b5:b1:07:59:a6:b5:13:24:a8:2c:76:87:4b:19:a0:
57:2b:f3:2d:62:8f:18:b0:b2:58:5f:87:d2:77:94:
66:42:29:e3:e5:64:5a:c9:cf:9f:4c:be:7f:40:8e:
2f:b2:ba:f8:a3:79:50:f4:e0:59:51:0b:9d:66:ca:
ca:6d:16:86:49:91:e4:33:7d:7e:eb:5b:f7:a8:02:
0a:5e:0d:1c:06:88:88:16:9a:61:1e:e7:74:7b:1f:
83:07:f8:10:ed:9e:62:58:79:ad:b8:c4:6a:0b:08:
36:9b:03:5c:eb:95:60:c0:c0:c6:c5:3b:9a:1f:03:
4d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:40:DA:94:6C:3E:CD:4D:42:FE:CB:D0:1A:12:C8:A6:49:3A:8A:62
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/1-UDalGw-zU1C_svQGhLIpkk6imI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.218.0/24
83.143.119.0/24
193.31.31.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:6c:07:8b:b8:95:4a:1f:2f:a0:45:90:f4:d3:13:11:8f:ea:
13:38:7a:ca:fe:cd:98:fb:5c:08:3d:03:24:10:da:de:9a:53:
3a:14:a8:00:32:9e:22:e9:ff:73:24:96:70:32:82:01:84:4d:
91:ff:06:9d:eb:d9:ae:f6:53:15:22:d6:e1:f7:bf:34:96:d1:
e6:7c:7b:95:bc:3c:56:fc:13:af:39:e4:c4:1f:ec:bb:86:20:
0d:62:5c:15:79:b5:e5:de:c2:43:71:6c:9a:96:51:b0:9f:ad:
a7:b8:48:5c:cf:66:c8:8b:17:e6:3a:3e:0d:98:57:1c:a1:1c:
23:d0:56:23:2f:ae:c2:19:5c:b9:8a:7f:4a:33:84:a5:45:3a:
f1:68:65:5c:86:c9:33:9c:7c:ad:0c:c0:d3:3b:22:a7:18:44:
a9:9a:69:59:1a:00:9d:98:06:ab:ea:64:70:56:31:b0:a3:cf:
af:6f:f2:83:8b:12:00:c3:f2:a7:20:48:f2:16:d4:e0:7c:ce:
8f:0f:fc:db:a2:03:f7:6f:36:f6:ab:02:18:fa:d2:40:ac:73:
49:87:ec:02:dd:af:f3:3a:bb:c7:e5:e7:25:6d:60:1f:49:d8:
a7:fa:e7:c0:dd:a9:db:76:c6:6e:2d:5d:80:9f:28:b4:bd:8c:
ee:e1:84:fa
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Aug 28 19:49:09 2024 by rpki-client on console-ams.rpki-client.org