Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/EGy78JvhJgt8riIK3bvVRKNM4Sg.roa
File: EGy78JvhJgt8riIK3bvVRKNM4Sg.roa (raw, json)
Hash identifier: ceA4AyqqU9eH5EeF3XDvdeLFP49QL3amOMgy3xvu71g=
Subject key identifier: 10:6C:BB:F0:9B:E1:26:0B:7C:AE:22:0A:DD:BB:D5:44:A3:4C:E1:28
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0191DB3FFA7E9611FDB5EB01EDEFBCF9BEAE
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/EGy78JvhJgt8riIK3bvVRKNM4Sg.roa
Signing time: Tue 10 Sep 2024 09:24:48 +0000
ROA not before: Tue 10 Sep 2024 09:24:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 207.244.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 10:17:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:3f:fa:7e:96:11:fd:b5:eb:01:ed:ef:bc:f9:be:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Sep 10 09:24:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=106cbbf09be1260b7cae220addbbd544a34ce128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cf:c0:86:b3:10:73:db:bb:5e:36:2b:06:e6:
d7:b4:09:ff:33:ce:74:9c:82:22:9e:56:d7:d2:90:
63:ca:42:e6:53:5b:12:6a:92:3d:3c:98:ae:7b:59:
65:cb:65:cc:c3:92:4b:8a:47:21:3d:9c:b3:26:0c:
36:15:9f:45:4c:6b:b0:be:7a:10:e8:21:44:47:33:
02:ab:28:6f:a9:8a:65:ca:6b:ba:fc:df:38:b4:55:
94:56:48:2b:a1:e1:8c:db:60:9b:ab:b5:10:7e:46:
e9:21:07:19:e9:c7:05:cc:ad:73:b3:12:8f:e0:31:
f7:1c:7d:55:d1:8a:10:80:a2:58:48:f9:62:35:db:
b0:b1:c9:ee:4e:d2:c1:3f:71:4a:51:1f:8e:f4:4b:
76:f0:93:b1:15:27:bf:61:08:95:35:2c:c5:35:61:
63:0c:d7:b6:f5:0d:37:b7:74:01:73:aa:67:04:e2:
1e:ef:a8:2c:5c:03:0a:5e:58:4a:2e:4f:15:a0:ec:
05:c5:41:19:01:2c:d5:7f:83:23:33:97:f8:fa:f7:
a4:af:31:cf:8a:0c:75:2a:83:75:20:0d:c9:de:67:
41:5c:39:79:af:3e:3a:46:aa:e2:9b:da:01:9d:fb:
41:f7:28:f0:f0:a2:e4:9c:30:cb:e3:30:e4:84:53:
09:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:6C:BB:F0:9B:E1:26:0B:7C:AE:22:0A:DD:BB:D5:44:A3:4C:E1:28
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/EGy78JvhJgt8riIK3bvVRKNM4Sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.244.196.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:07:fa:a4:a5:95:cb:19:e5:da:95:17:de:d5:27:d5:ee:ff:
c3:6c:a0:6a:56:7b:bc:cc:95:de:a5:ef:bc:4f:0e:f2:ac:6b:
61:67:be:58:8e:38:58:2f:98:89:7b:b1:b6:57:6b:b0:97:77:
d9:61:9d:87:d5:90:8e:8b:77:0c:09:77:c6:4e:c7:33:b5:fd:
5d:c4:ab:54:7c:9f:0f:c9:c2:0a:48:8a:19:4e:d4:03:69:2f:
82:bb:1c:d0:22:f0:19:40:03:f6:a9:e3:20:97:09:af:b5:54:
2f:0c:73:c4:99:a8:d8:9a:c9:98:fd:b8:7b:32:f7:70:2b:28:
c7:ee:65:c7:f3:fa:cd:d3:15:73:e5:6d:a6:50:06:e9:2e:7f:
5c:21:b4:b3:e0:a0:08:af:b9:ee:a2:b4:82:cd:67:eb:b7:c7:
16:f1:1d:81:1c:e4:84:db:56:82:3c:35:64:9d:8f:c6:8a:95:
b5:dc:31:50:a7:ff:e5:77:68:6b:e8:ea:ea:64:d3:85:09:f4:
0b:a0:69:9d:7c:54:04:5e:ed:b4:e5:b3:4a:86:bc:23:5a:4d:
9a:2c:f0:6a:10:3e:26:94:66:4d:1d:be:5b:fd:9f:a9:b7:6a:
42:84:09:d4:3c:eb:2b:c1:a1:9e:dc:03:e9:e5:06:04:d1:5e:
6b:81:d8:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 13:23:57 2024 by rpki-client on console-ams.rpki-client.org