Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/IGovB_hEJsMFlnnx9sS0_v2aRD4.roa
File: IGovB_hEJsMFlnnx9sS0_v2aRD4.roa (raw, json)
Hash identifier: 5KBLoRJQmmDhosd5u8+IZPmC8r+GOk3swEt+DZLRl+A=
Subject key identifier: 20:6A:2F:07:F8:44:26:C3:05:96:79:F1:F6:C4:B4:FE:FD:9A:44:3E
Certificate issuer: /CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Certificate serial: 01856D66106B921023EBC35E9F1F59E2B22D
Authority key identifier: E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/IGovB_hEJsMFlnnx9sS0_v2aRD4.roa
Signing time: Sun 01 Jan 2023 12:54:43 +0000
ROA not before: Sun 01 Jan 2023 12:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60946
IP address blocks: 159.146.124.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:10:6b:92:10:23:eb:c3:5e:9f:1f:59:e2:b2:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Validity
Not Before: Jan 1 12:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=206a2f07f84426c3059679f1f6c4b4fefd9a443e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:57:c4:ba:4e:42:3f:9b:a1:9c:c1:d8:70:d0:
34:66:4e:98:c7:69:be:15:19:43:94:17:82:69:8f:
f8:c2:9b:4f:9d:68:09:6c:ec:5a:8c:eb:ff:13:6f:
65:65:25:96:d7:74:6f:83:cd:d7:f5:71:98:6d:97:
b3:eb:8b:ab:57:c9:42:9e:61:12:2c:d1:7c:7e:13:
36:b6:f9:41:3c:ff:21:6c:ee:4a:71:b0:11:ff:a4:
36:ec:3a:f5:d3:85:08:51:45:f9:8d:9a:da:82:cf:
c8:ad:85:41:73:54:cf:2c:16:80:04:13:3b:29:75:
4b:6b:72:02:90:9a:34:00:90:77:a2:1f:86:a8:1b:
8d:0e:55:f6:f6:fa:95:70:8a:fd:55:db:2d:c9:dc:
49:68:1c:ee:e0:ad:c1:9f:b3:88:e0:49:d4:0f:d6:
18:7b:d0:f8:3e:a7:62:ce:34:40:36:14:8f:7c:da:
71:78:7f:db:20:e2:c8:9d:77:09:0e:83:6e:cb:8d:
5a:64:77:bb:3f:c1:24:d4:a8:4b:11:21:e2:a1:70:
8c:6d:c4:25:ed:75:4f:97:f6:af:10:ce:79:f4:f1:
22:8d:9b:0c:2b:dd:a7:47:10:5d:db:c0:52:67:b5:
1c:10:43:f7:0c:3c:e6:70:bb:d0:38:a7:81:e4:fe:
c2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:6A:2F:07:F8:44:26:C3:05:96:79:F1:F6:C4:B4:FE:FD:9A:44:3E
X509v3 Authority Key Identifier:
keyid:E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/IGovB_hEJsMFlnnx9sS0_v2aRD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.146.124.0/24
Signature Algorithm: sha256WithRSAEncryption
02:ce:6f:fe:f4:c4:14:27:09:cf:08:04:e5:ab:03:59:12:eb:
15:4f:9c:b2:66:5f:ed:54:29:f8:81:3a:e3:65:49:23:46:1e:
f2:e1:db:7c:40:be:cd:2a:ea:e1:56:a7:f2:08:a6:e3:92:84:
12:7e:ad:9b:bf:12:2a:5e:53:f2:e6:4a:1a:7d:33:68:c7:2e:
8f:74:57:32:dd:14:3f:59:e1:d8:dc:d4:f6:e0:c3:06:e5:f2:
6c:8e:62:4e:fb:96:83:d2:c5:b6:b7:62:dc:90:d3:ee:64:43:
3f:8e:3c:bb:f8:f4:06:8b:57:f0:84:a2:18:da:db:55:1c:ad:
a6:63:7f:72:31:06:1b:a4:2c:c9:bd:41:aa:b7:06:6c:b7:7a:
5f:00:19:11:98:8b:87:6d:2b:19:53:2b:cd:de:62:5f:64:10:
cd:1f:ee:84:73:49:1f:73:5b:32:10:da:e5:75:2e:45:f2:c0:
e0:eb:09:d7:66:8c:29:05:60:7f:13:8c:71:69:83:91:78:15:
98:27:8b:e9:53:f8:70:9b:41:b7:5e:c0:42:a9:00:aa:9e:ad:
b9:cb:7e:f4:87:5c:38:07:3e:c9:29:1b:06:4e:52:58:04:c2:
e9:4a:45:b7:f0:b9:6b:42:a3:a2:3c:54:e0:97:d9:28:9c:51:
f6:6a:e1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:29 2024 by rpki-client on console-fra.rpki-client.org