Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/pAHJNXc26ZP1VJ-vihRskxd8yt0.roa
File: pAHJNXc26ZP1VJ-vihRskxd8yt0.roa (raw, json)
Hash identifier: BM9H3mYCoyH7e8Be3jZvW1or1TmkPuLu+ghMiYnI9P8=
Subject key identifier: A4:01:C9:35:77:36:E9:93:F5:54:9F:AF:8A:14:6C:93:17:7C:CA:DD
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 01856B8113F62E1ECCB3779305AB202D92EA
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/pAHJNXc26ZP1VJ-vihRskxd8yt0.roa
Signing time: Sun 01 Jan 2023 04:04:59 +0000
ROA not before: Sun 01 Jan 2023 04:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34173
IP address blocks: 78.153.245.0/24 maxlen: 24
85.31.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:13:f6:2e:1e:cc:b3:77:93:05:ab:20:2d:92:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Jan 1 04:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a401c9357736e993f5549faf8a146c93177ccadd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:30:75:75:b4:55:5c:78:8b:7f:36:e4:ae:ef:
11:0b:4f:27:e9:a2:18:89:a4:52:ad:5d:a2:1c:de:
36:18:63:40:e9:4e:4a:6b:f7:a3:80:92:7d:35:5f:
6f:73:b1:eb:f2:90:23:51:36:90:6a:dd:c7:42:91:
49:81:e9:18:c7:f8:7b:ea:e7:93:bc:86:0b:12:9c:
a6:a1:9b:dc:c3:f6:8f:55:1c:74:1e:dc:2e:60:f7:
19:81:aa:cb:fa:fe:cd:a5:c2:76:3e:16:5f:5d:55:
46:93:4d:68:8f:75:bc:b5:ba:c2:27:88:1c:d4:6f:
65:30:b2:74:77:c2:a4:d4:f0:39:f5:cb:a0:a3:5a:
ed:c2:ec:62:8d:6d:38:d3:8f:84:10:62:ad:ba:8f:
56:64:3e:dd:01:c8:1e:1e:63:ef:80:aa:23:bc:da:
9f:07:f9:be:52:a1:39:ee:02:f5:c6:d7:b2:99:61:
05:8a:e9:40:5c:0f:81:ea:2e:2b:a7:71:f2:1f:93:
48:11:a4:51:0e:6b:5a:e4:c6:c2:22:e4:88:74:0a:
e9:43:f8:17:d6:ce:54:cc:bf:f0:cf:ba:5c:c0:d2:
e9:47:59:d2:f0:82:a3:9b:ce:6b:92:b0:78:36:c0:
4c:26:88:cc:f3:4f:7f:5a:d8:2b:c7:d3:52:1a:fd:
7e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:01:C9:35:77:36:E9:93:F5:54:9F:AF:8A:14:6C:93:17:7C:CA:DD
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/pAHJNXc26ZP1VJ-vihRskxd8yt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.153.245.0/24
85.31.215.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:f1:fd:22:d8:0c:ab:14:3b:a0:8a:e5:1b:23:5f:b5:be:f0:
36:1b:d0:82:0c:38:a4:a9:ea:74:3a:c3:9d:95:1c:73:c1:e5:
66:97:f3:90:e4:ea:ff:65:6c:7a:29:73:c6:84:60:83:ad:60:
24:38:6c:16:57:87:c9:39:25:0f:07:ac:8d:a0:3c:25:4a:f1:
ef:e3:7b:71:aa:c2:a1:0a:e8:36:76:b7:02:3c:11:57:e0:71:
b7:bc:c4:22:83:1d:4e:f6:e2:32:ab:b8:17:bc:c4:54:e0:98:
84:02:c4:53:72:73:48:b6:7a:53:d5:85:96:44:eb:cd:01:fa:
40:5b:62:68:b0:23:c9:7c:d6:4e:f3:ef:44:6a:91:f5:35:39:
1a:4d:e7:01:3c:45:58:a3:42:ed:10:cf:fe:b8:95:e2:d1:a2:
0c:f6:67:28:76:e7:b4:e2:52:72:15:27:5d:49:36:41:05:60:
a9:7b:d4:5e:b4:9c:34:7d:89:04:05:ca:f7:a3:ca:b6:39:12:
e4:0a:bd:32:59:7c:c6:ca:59:d0:0a:20:2f:89:85:f0:79:99:
1d:da:c0:a3:87:04:b0:87:7e:7e:d2:07:cd:3d:94:e5:34:34:
ba:a4:42:76:04:af:dc:87:95:b9:22:aa:c2:6e:74:26:90:12:
eb:11:74:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org