Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/u_1bJNa_6TAy884m8W1kPQdKGIo.roa
File: u_1bJNa_6TAy884m8W1kPQdKGIo.roa (raw, json)
Hash identifier: xuMoLQ3epsQ65u3CHZvwvp0gBUy3cCYo2W0Neu3Luis=
Subject key identifier: BB:FD:5B:24:D6:BF:E9:30:32:F3:CE:26:F1:6D:64:3D:07:4A:18:8A
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0192AEC2875453374707FD407C40AD538A25
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/u_1bJNa_6TAy884m8W1kPQdKGIo.roa
Signing time: Mon 21 Oct 2024 11:07:17 +0000
ROA not before: Mon 21 Oct 2024 11:07:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 43.240.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 20:28:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ae:c2:87:54:53:37:47:07:fd:40:7c:40:ad:53:8a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Oct 21 11:07:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbfd5b24d6bfe93032f3ce26f16d643d074a188a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:26:53:d6:82:e4:be:0a:0c:9f:a0:18:2d:3b:
e2:63:2b:9f:98:4a:72:06:ac:cb:82:3c:7c:97:03:
9a:ed:63:52:2b:8b:51:bc:9f:a6:6e:18:f2:a7:86:
08:80:0d:a3:9a:ce:af:1a:43:2f:f3:37:a2:9c:ef:
65:ad:b7:65:68:1d:05:07:2d:fc:fa:1c:95:8b:0d:
cf:a4:8b:94:5e:c5:85:ac:75:77:df:64:40:fd:20:
28:e3:93:8f:68:e5:db:f2:e5:5e:97:3b:e7:9d:7c:
7a:92:62:b8:e0:0d:d1:04:93:de:0f:01:e4:36:6b:
56:14:7a:5b:8b:d7:f8:6c:e9:20:fe:1d:65:61:c5:
5a:ab:ff:02:b9:44:3e:7e:7c:c6:fe:2b:45:f2:46:
ee:56:0d:19:60:b3:96:1e:0a:40:3c:70:2f:46:63:
5e:61:f9:20:25:de:49:5f:a6:d3:39:85:4a:e9:2b:
df:1e:a3:a7:7a:56:42:8c:da:e2:1b:60:77:ba:ac:
2c:61:c4:a9:44:10:6a:a2:3e:5a:a4:03:65:f3:ec:
82:f7:a7:84:05:f6:c4:28:86:6c:18:11:f0:c5:e5:
a1:7f:c7:ab:ae:94:d2:f5:f6:ae:27:03:01:81:da:
0b:be:48:bc:a2:36:29:1c:ac:df:f4:37:aa:53:34:
aa:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:FD:5B:24:D6:BF:E9:30:32:F3:CE:26:F1:6D:64:3D:07:4A:18:8A
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/u_1bJNa_6TAy884m8W1kPQdKGIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.240.150.0/24
Signature Algorithm: sha256WithRSAEncryption
13:e6:47:fd:0f:c3:cf:1f:02:ec:7f:7a:96:a9:7d:ce:5f:69:
e4:e8:15:7c:59:67:81:3c:b5:2e:cd:de:91:89:b0:c1:ff:76:
69:34:83:ee:b8:fc:7a:7b:b4:ab:60:d8:44:be:63:8b:59:c6:
75:6f:25:49:47:a4:c1:9d:5c:12:ac:fe:0a:09:77:41:44:9b:
50:6d:f4:6c:30:73:88:65:a8:26:06:59:cd:e7:a8:78:25:1b:
d3:a0:3e:f0:e3:01:b6:c9:a9:d3:ea:08:bb:6b:cc:ca:78:24:
84:0f:fd:42:39:a3:26:da:6d:74:0b:85:53:d8:e6:b9:fb:c7:
90:ee:f2:86:e9:b1:65:52:b9:53:8d:9b:84:17:75:8c:af:20:
f6:4c:96:ed:79:cd:37:0b:ae:76:f7:dd:8b:94:33:da:80:e7:
98:5b:fb:2e:84:84:e3:2d:03:4c:85:7e:b9:44:b4:bf:b5:fd:
e8:00:0a:d3:22:a4:f6:83:d4:e4:41:a3:c9:da:1d:ee:73:66:
93:be:c4:50:64:00:57:ee:47:24:6c:61:34:cd:ba:67:c1:32:
13:63:8c:dc:2b:40:ec:1a:bd:c5:b1:57:91:60:2d:1d:72:c0:
df:24:a9:20:d5:a2:89:5b:54:3a:af:c6:6c:b8:36:71:46:e6:
67:28:8b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 23:22:28 2024 by rpki-client on console-ams.rpki-client.org