Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/m5bLEuAC1wmzmkEFyxztUEXz5z0.roa
File: m5bLEuAC1wmzmkEFyxztUEXz5z0.roa (raw, json)
Hash identifier: hkaZdzCiJgy5zx9hOym6Y1z5HX/HHzJX2j33z8t2ytY=
Subject key identifier: 9B:96:CB:12:E0:02:D7:09:B3:9A:41:05:CB:1C:ED:50:45:F3:E7:3D
Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06
Certificate serial: 01874EA80EE0E6BD8B0AB2C38885C0CFA987
Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/m5bLEuAC1wmzmkEFyxztUEXz5z0.roa
Signing time: Tue 04 Apr 2023 23:44:09 +0000
ROA not before: Tue 04 Apr 2023 23:44:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 128.139.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 14:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4e:a8:0e:e0:e6:bd:8b:0a:b2:c3:88:85:c0:cf:a9:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06
Validity
Not Before: Apr 4 23:44:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b96cb12e002d709b39a4105cb1ced5045f3e73d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3f:79:bc:b8:69:de:a6:69:61:23:86:6e:60:
aa:fc:d2:76:ec:3a:63:dd:84:69:5f:4b:f0:49:f2:
be:d2:a7:2a:70:dd:fe:91:02:80:6f:9d:4d:b8:22:
fb:d0:76:3c:c6:d9:90:15:1a:d0:41:8d:2c:ba:bf:
e5:68:3c:50:b3:f5:31:74:9c:6a:8a:15:04:1a:65:
99:90:a5:4c:0e:cd:67:4f:3e:e5:c6:06:bb:97:69:
18:7a:ff:8f:9e:4d:81:f6:2e:27:3c:d7:12:b5:a0:
a1:f4:52:e7:b8:1b:49:67:64:41:45:da:89:50:da:
ed:49:38:53:af:66:5c:e4:69:ce:a6:27:e2:99:f5:
00:ea:0e:54:9c:e3:43:3f:88:84:33:4d:32:4f:69:
1b:b8:b7:e8:29:1c:14:83:b2:4c:9b:f5:72:e8:6c:
10:b0:89:04:67:80:28:25:35:2b:da:69:f4:11:99:
26:de:5a:42:e0:5c:16:81:2f:f4:b5:66:fd:dc:6f:
94:2a:ec:0a:df:6f:51:f9:5d:89:3a:92:75:02:f6:
26:a5:f8:26:f0:a6:dd:fa:3c:05:50:88:a2:15:f7:
e6:ea:58:0d:75:74:8e:08:e4:2b:49:7a:b5:cd:fb:
5d:ba:bc:3d:42:b9:e9:5e:92:ac:6e:4b:ba:34:1e:
e8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:96:CB:12:E0:02:D7:09:B3:9A:41:05:CB:1C:ED:50:45:F3:E7:3D
X509v3 Authority Key Identifier:
keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/m5bLEuAC1wmzmkEFyxztUEXz5z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.139.7.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:2b:80:3a:69:65:c3:fd:94:6c:b8:4b:71:5b:78:8e:2a:ff:
8b:a1:e0:d7:0d:95:62:09:a2:c9:69:11:7b:1e:c4:2e:1a:41:
85:5b:1c:aa:87:31:37:15:08:4c:de:09:bb:74:6b:6d:82:f3:
a0:0f:f0:e7:e5:b1:0d:3b:80:98:87:3c:7a:b8:2e:69:a2:f0:
b4:a7:87:67:f5:6a:35:c0:5b:46:ee:d9:2d:ce:33:90:7b:ea:
7f:36:c9:55:52:7b:30:96:93:d7:0a:b9:99:06:cb:a9:20:b7:
02:13:b9:62:18:c8:70:69:d4:6b:fa:72:cb:5a:a0:fc:63:d9:
84:85:27:61:41:8b:fe:73:81:71:54:68:26:9c:e6:4b:5b:af:
56:05:14:0b:a5:6c:be:1c:60:41:e1:7f:f3:75:66:dd:5c:31:
29:e7:8e:03:4a:3b:45:90:e5:a5:67:e8:68:41:97:6f:52:ee:
02:c1:32:c4:47:14:69:84:d3:a3:95:85:18:62:6f:f2:88:94:
d3:f4:03:15:d9:72:3a:6c:5f:09:60:06:4c:78:b5:e0:eb:28:
78:12:e8:57:94:79:ae:ad:b0:61:64:5f:28:16:29:87:8b:f4:
8b:72:45:9b:15:c7:31:5f:ab:cc:42:01:f1:87:76:53:6f:33:
f7:b3:d2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:31 2024 by rpki-client on console-fra.rpki-client.org