Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/1EI-hND_huc9kmYJL03KX_P5_oI.roa
File: 1EI-hND_huc9kmYJL03KX_P5_oI.roa (raw, json)
Hash identifier: wl3OCcX7qpEL1O+Sb+/NXl6Vhbwa6tlftRxPAGh8NFQ=
Subject key identifier: D4:42:3E:84:D0:FF:86:E7:3D:92:66:09:2F:4D:CA:5F:F3:F9:FE:82
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 0185712796AB96C88BD551B04FAF0AF0E82F
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/1EI-hND_huc9kmYJL03KX_P5_oI.roa
Signing time: Mon 02 Jan 2023 06:24:57 +0000
ROA not before: Mon 02 Jan 2023 06:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21472
IP address blocks: 78.143.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:96:ab:96:c8:8b:d5:51:b0:4f:af:0a:f0:e8:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Jan 2 06:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4423e84d0ff86e73d9266092f4dca5ff3f9fe82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:20:a9:e4:93:4b:be:a3:5b:f7:ae:e0:d9:b0:
a6:29:ce:ec:5e:12:5c:b0:9e:b7:7d:b3:86:b1:31:
2c:2e:c8:75:b3:3e:91:7e:77:8f:72:38:72:de:8d:
a7:e1:5e:22:08:5e:76:31:75:fb:9a:36:39:83:a4:
0a:f4:b4:b4:5f:30:51:8c:2e:87:e3:53:7b:6d:f6:
02:a7:9f:af:fa:da:b6:d1:9d:93:56:5a:1b:89:49:
f1:67:cd:32:47:f6:7b:36:84:13:5b:67:6e:69:6b:
0b:17:24:4e:7e:ba:27:08:bd:c9:83:76:c1:b8:b1:
cf:d7:c2:ef:80:c3:17:98:0d:da:88:30:ff:4f:6d:
48:c7:ed:ca:1d:02:a1:bf:dc:5e:3d:0a:bb:d5:35:
b7:ff:4c:bc:00:43:59:54:e3:2c:e8:91:b3:ed:93:
58:53:99:9c:4f:57:62:2d:39:36:a6:e9:5e:b7:1a:
9b:30:ae:5f:c2:6e:4e:a7:2b:63:8e:b8:45:b1:03:
f8:e0:3a:37:b7:6d:00:01:bc:fb:9e:06:7f:b6:71:
96:90:71:bc:2c:76:47:3e:c3:b4:06:fa:16:42:0d:
a8:99:8a:82:44:ba:53:fe:c8:20:a8:33:ea:37:16:
47:ad:da:50:85:59:48:e1:ad:c7:6a:b1:34:9b:06:
d4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:42:3E:84:D0:FF:86:E7:3D:92:66:09:2F:4D:CA:5F:F3:F9:FE:82
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/1EI-hND_huc9kmYJL03KX_P5_oI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.143.255.0/24
Signature Algorithm: sha256WithRSAEncryption
15:d7:5e:07:fc:63:75:98:2f:56:8f:9a:ab:e2:75:b0:87:5d:
d1:a5:e5:5e:3b:d1:11:05:33:dd:43:5b:78:54:e5:6d:89:b6:
dd:0f:8e:45:0b:c3:fb:aa:e5:b0:70:9b:cc:8d:d0:68:d0:38:
e1:d7:a9:69:d7:63:14:6e:d2:0f:3e:43:f4:f9:f6:e3:9f:e6:
1b:6a:fb:9c:9a:4a:75:a2:a3:b8:bc:8a:46:85:a9:70:e6:97:
49:18:13:df:8f:82:77:51:4d:ce:b0:d7:43:d1:9f:14:28:f2:
fc:19:ab:07:96:2f:96:83:b9:b3:e0:e1:04:fc:d5:da:dd:35:
d3:ef:a2:ea:1f:bb:98:c1:d7:75:bd:a6:f7:4e:50:a7:eb:fb:
d0:82:15:e3:52:98:12:7a:10:cc:9c:10:f9:ea:4c:90:2a:ac:
7e:7b:44:d4:2e:22:3a:71:d3:c4:29:f6:75:1a:1b:54:ad:d7:
a4:a9:83:f9:95:61:b5:0a:45:74:df:f2:27:fd:da:0f:9d:fb:
e7:02:b8:f3:59:88:6f:d0:cd:57:9f:0b:87:48:99:87:f4:2c:
17:13:a0:f8:a1:03:b0:c9:4c:db:a2:b4:50:54:c2:ea:7c:00:
24:8f:de:ca:23:f5:cd:6b:80:39:f0:42:86:48:b5:0d:43:f5:
65:d9:26:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:19 2024 by rpki-client on console-fra.rpki-client.org