Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/vU1M5sh75SJAdspmDsc98lZOJNU.roa
File: vU1M5sh75SJAdspmDsc98lZOJNU.roa (raw, json)
Hash identifier: +7E2fBdnfeqwb3PtFz1Oyx/IFEzAfqfmOfR6QgISHtU=
Subject key identifier: BD:4D:4C:E6:C8:7B:E5:22:40:76:CA:66:0E:C7:3D:F2:56:4E:24:D5
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0191FAF4206EFB3F32D556F8BAF61B8A1E8C
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/vU1M5sh75SJAdspmDsc98lZOJNU.roa
Signing time: Mon 16 Sep 2024 13:09:48 +0000
ROA not before: Mon 16 Sep 2024 13:09:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 207.244.208.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 16 Oct 2024 06:05:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:f4:20:6e:fb:3f:32:d5:56:f8:ba:f6:1b:8a:1e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Sep 16 13:09:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd4d4ce6c87be5224076ca660ec73df2564e24d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f3:c3:9a:1e:bf:2a:4e:a9:e2:a3:f3:be:f1:
0e:e5:56:1c:87:fc:94:d5:9f:2c:9a:0d:11:3d:fb:
4b:59:be:d1:fa:16:94:de:88:d7:4e:af:65:c0:8b:
67:fc:4b:ec:3c:51:1e:33:3b:9b:ce:7d:94:c4:a5:
44:48:db:83:1c:84:2c:75:c7:8f:b9:f9:6a:95:25:
17:b5:6b:1e:80:a3:89:11:2f:04:a4:d8:25:6a:57:
ca:85:3b:66:3c:18:b3:db:c9:60:60:ce:82:6c:38:
d5:32:1d:9d:9d:88:90:05:7c:75:36:22:42:db:36:
a4:60:14:28:b7:24:4f:6b:53:cd:cf:c1:c9:42:4e:
5d:8b:79:ba:e9:65:f5:cf:43:00:72:ef:2d:47:b1:
53:b7:eb:6b:ac:04:b8:69:90:7d:ca:fc:94:36:b2:
f6:4b:bd:b7:aa:df:b5:3e:6c:a5:20:f8:60:d6:38:
30:cb:3d:cd:00:f2:3d:02:ac:95:9a:b5:fc:5b:b0:
66:c8:f8:73:6c:27:97:ab:a5:f8:98:5d:2b:20:d8:
32:39:57:71:79:00:0c:fb:65:e0:02:29:72:20:05:
79:82:a9:d3:ae:ca:bd:71:f7:8b:0d:5c:90:94:f0:
86:a6:6d:fa:b6:54:93:7e:61:30:76:ca:a0:98:8b:
f1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:4D:4C:E6:C8:7B:E5:22:40:76:CA:66:0E:C7:3D:F2:56:4E:24:D5
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/vU1M5sh75SJAdspmDsc98lZOJNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.244.208.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:08:b8:16:a9:3a:dc:9c:67:0d:6b:16:dd:45:2f:de:c3:b3:
1a:fa:0b:57:05:71:dd:67:55:5c:28:33:22:76:b9:41:52:f3:
d1:86:c1:73:5a:ae:17:c5:b2:cd:bd:8d:89:e7:31:cd:ac:11:
e2:50:69:e1:49:bd:14:ab:1f:58:23:9a:db:04:a8:30:dc:89:
89:72:34:d5:6f:4c:eb:a8:1b:67:1c:f9:c1:5a:84:fc:51:75:
da:4b:5e:e8:91:64:de:75:97:71:64:7a:e2:3e:85:72:5b:ee:
1b:73:d8:ea:19:23:3c:14:55:30:3d:48:7d:d1:67:1e:a9:f2:
b8:93:c3:9b:82:f4:79:03:cd:b9:70:c3:3a:e7:1e:04:84:08:
d8:17:b8:04:be:17:53:3e:fa:93:1c:0c:4f:13:0f:05:e3:61:
87:3b:d9:cd:3a:fa:9f:c1:9a:c8:7a:89:85:a8:9d:bc:b3:13:
68:76:47:54:77:5c:01:56:4d:5a:6e:0c:8e:ef:1e:9b:cf:5d:
86:4e:2c:a4:d1:b9:ec:a6:e9:cd:5a:d1:eb:8a:5e:0e:27:ae:
86:a7:a2:61:ff:19:1f:9c:d1:c7:ed:69:39:88:0f:6d:ff:fd:
80:6f:01:dc:e0:e8:c9:2b:65:4f:b0:3d:03:fd:12:fc:38:c1:
71:11:83:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 08:33:52 2024 by rpki-client on console-ams.rpki-client.org