Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/EMfqsDgNd45z7CKjA9Ze41vOMuc.roa
File: EMfqsDgNd45z7CKjA9Ze41vOMuc.roa (raw, json)
Hash identifier: 0gXra8yQMKtPfj1RJmjsO9qsHT7sb6olaBdzHjOJ1ts=
Subject key identifier: 10:C7:EA:B0:38:0D:77:8E:73:EC:22:A3:03:D6:5E:E3:5B:CE:32:E7
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 018A32187A9FC04C02E23FA55CAD4A62B7EB
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/EMfqsDgNd45z7CKjA9Ze41vOMuc.roa
Signing time: Sat 26 Aug 2023 13:46:19 +0000
ROA not before: Sat 26 Aug 2023 13:46:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 192.94.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Oct 2023 09:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:32:18:7a:9f:c0:4c:02:e2:3f:a5:5c:ad:4a:62:b7:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Aug 26 13:46:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10c7eab0380d778e73ec22a303d65ee35bce32e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:67:f7:e8:c1:20:d4:c5:1e:25:1f:38:21:e7:
da:e4:48:a3:f1:71:07:9d:27:44:a2:2b:6d:58:67:
ad:03:ac:29:58:6b:3c:02:b5:bf:46:7f:0b:ac:2b:
16:85:92:0d:06:1c:e6:2c:e2:c0:2c:df:28:08:37:
e0:ab:1f:6d:0c:00:46:10:c4:e3:50:66:95:51:00:
12:ae:e0:29:b9:a5:ba:b2:f4:b5:d8:9d:88:e2:ad:
9e:4e:54:96:73:5f:9c:70:2d:bc:64:92:98:a7:be:
48:8b:06:3e:e4:a0:6a:73:4a:50:4f:54:92:47:7d:
3e:d9:b5:c5:d1:40:2b:99:1d:45:4e:7a:5f:ea:3d:
34:32:dd:1c:a7:2c:eb:45:30:41:49:27:d3:45:fe:
23:48:88:25:25:ce:6a:00:2d:6d:ee:56:ff:6d:ec:
cd:a9:d1:7c:30:91:bb:34:05:fd:97:f6:6c:65:86:
28:dc:8e:0e:b9:92:69:e3:97:ee:fa:05:8e:41:0e:
e3:d8:4f:5d:00:30:26:89:c4:83:8c:bb:59:e4:f0:
12:59:20:ac:4e:fb:d1:6b:3e:c1:22:5e:36:03:d8:
58:b8:5e:ee:5b:7f:d2:a2:47:2c:1b:c2:96:af:14:
3b:cc:d4:6b:27:c4:c6:29:23:5d:df:7b:1c:e6:61:
d1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C7:EA:B0:38:0D:77:8E:73:EC:22:A3:03:D6:5E:E3:5B:CE:32:E7
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/EMfqsDgNd45z7CKjA9Ze41vOMuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.94.58.0/24
Signature Algorithm: sha256WithRSAEncryption
99:3e:0f:7c:44:7d:7f:7d:9e:73:d7:8c:a3:b5:44:32:40:3d:
63:65:a3:c1:c5:1a:e9:ec:21:41:12:bc:66:8f:ba:62:f1:05:
59:67:3f:c0:66:9f:97:f3:0f:20:f3:07:ce:03:04:9e:ff:c1:
10:9c:7d:a2:db:12:61:75:cc:af:23:a5:db:f4:f5:28:61:08:
c5:59:8a:f9:80:d9:cd:67:f9:30:ab:c7:6a:36:1a:ca:a9:6c:
69:1b:83:1e:92:59:b1:a0:95:22:b2:19:49:3d:85:12:6c:78:
47:27:b6:8f:5e:bb:58:38:b5:bd:5a:b8:04:0c:a8:cf:c0:21:
89:38:78:56:68:d9:4d:81:8c:40:c4:4f:a0:21:c6:b0:a0:e4:
a5:26:78:6d:b1:e1:e7:fd:4c:b2:d7:4c:b4:8c:ca:0c:66:72:
84:59:ac:9e:c0:09:67:a3:b0:b5:05:37:13:c9:6e:fb:9e:6f:
8e:57:eb:4e:ac:1d:91:14:04:a9:25:27:bc:d8:fb:24:ff:88:
59:68:0e:48:9c:59:d2:12:ed:a0:b8:fb:0f:7e:cc:d1:fd:cc:
d0:d4:87:58:15:66:ba:b9:53:ba:3d:0b:17:44:f5:aa:39:6b:
23:7c:48:27:58:fe:cd:bb:c9:6e:17:31:47:00:c1:e8:0a:fa:
a1:51:f1:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org