Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/k5Hh8yHW2J5rv4GvLb9zoKbHQHo.roa
File: k5Hh8yHW2J5rv4GvLb9zoKbHQHo.roa (raw, json)
Hash identifier: HU5aW6aXZ8Hbn3qLdwdtxfsijhC6R6aRuyaELdTUdOQ=
Subject key identifier: 93:91:E1:F3:21:D6:D8:9E:6B:BF:81:AF:2D:BF:73:A0:A6:C7:40:7A
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 019038B6AF1F2D4A0EFBB6DEAAA7F902C719
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/k5Hh8yHW2J5rv4GvLb9zoKbHQHo.roa
Signing time: Fri 21 Jun 2024 02:53:34 +0000
ROA not before: Fri 21 Jun 2024 02:53:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 79.135.102.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 10:08:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:38:b6:af:1f:2d:4a:0e:fb:b6:de:aa:a7:f9:02:c7:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Jun 21 02:53:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9391e1f321d6d89e6bbf81af2dbf73a0a6c7407a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:11:63:26:35:ff:40:52:36:93:75:5f:a9:26:
2a:9c:df:b4:38:08:d7:35:ba:42:fc:b0:e2:a1:1c:
5c:78:a6:9f:59:09:25:a1:ee:dc:d8:0d:cc:b4:f6:
40:e5:03:cc:01:48:1a:c4:74:3c:e4:d9:81:92:d8:
88:52:ea:16:7f:5c:ab:34:77:8d:f8:69:30:cb:33:
36:1b:3a:57:86:46:51:e3:f8:ef:fe:89:4d:b4:74:
62:20:cf:35:b9:d8:db:3b:04:f5:cf:28:7e:78:60:
de:d3:10:4f:36:88:71:3b:0e:5f:8d:4a:25:8a:8d:
c4:8e:f9:c4:9c:44:ba:7b:5d:5e:a3:69:f7:0c:22:
bc:34:29:a1:5b:55:03:0d:a3:91:49:d4:be:c4:bf:
2c:29:7e:6b:a2:ea:66:9a:17:b7:52:40:d5:76:b1:
bb:19:4c:c6:b2:b6:f6:16:23:c1:eb:11:91:b2:7f:
7a:48:75:e9:cd:44:f9:64:6a:f7:ff:a8:76:d4:29:
73:47:0b:ef:24:3f:8d:77:b0:4a:6a:8c:82:2e:6b:
98:80:69:d6:14:12:c6:36:74:24:9e:26:c1:2f:3e:
87:55:57:cf:7e:b0:91:0a:9f:e0:3f:49:df:d0:76:
a6:2d:d4:f8:0c:8b:f4:67:0a:55:32:05:0e:07:ce:
11:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:91:E1:F3:21:D6:D8:9E:6B:BF:81:AF:2D:BF:73:A0:A6:C7:40:7A
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/k5Hh8yHW2J5rv4GvLb9zoKbHQHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.135.102.0/23
Signature Algorithm: sha256WithRSAEncryption
48:97:4b:4b:99:54:61:26:5e:9d:91:b4:e9:bd:1f:5c:4b:d0:
d4:82:f0:70:45:63:07:56:44:7e:cd:68:02:4f:80:8e:c7:e8:
f0:91:c0:84:fe:ea:49:40:97:5c:7f:97:8c:03:c7:5d:f2:cf:
60:20:63:09:25:12:ed:58:5a:c4:c5:2f:61:4c:4c:bc:45:69:
52:88:30:78:bb:e2:b9:70:b8:a4:18:0c:78:2a:8e:1c:e1:8c:
79:34:dc:a9:b2:84:30:e7:6b:95:09:8f:29:7e:6b:b6:c6:52:
24:cc:ff:e5:75:d5:0b:3a:a9:dc:98:c0:73:4f:3a:29:bd:09:
12:32:7e:8c:0e:cc:6b:3d:45:8e:49:73:db:c8:20:16:d5:3a:
0a:d9:49:eb:8d:bc:26:3f:9c:09:ed:12:9c:76:65:30:9c:f5:
42:a7:3d:1e:3e:9c:1b:37:3f:3d:08:67:56:1c:21:2f:15:6a:
ce:69:cd:ae:75:fc:5a:af:1d:c9:04:5f:93:26:5b:ab:58:14:
68:68:6d:1f:0d:32:d2:8f:9f:fa:b1:71:2a:de:a4:8b:b6:18:
e7:06:40:96:20:8e:e6:36:d2:11:94:5b:16:b6:ec:27:ab:48:
d7:50:c3:88:be:2a:d5:e8:92:17:4c:51:1a:e4:22:bb:2d:31:
c3:77:c1:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 21 12:09:15 2024 by rpki-client on console-ams.rpki-client.org