Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/ELxEt-aCxoyIflCfbCWOEkBAQ0Q.roa
File: ELxEt-aCxoyIflCfbCWOEkBAQ0Q.roa (raw, json)
Hash identifier: W6tEb+S/wChBm4oSEUAmVXD/jCHzRZ/8Rc/6BHtqnRk=
Subject key identifier: 10:BC:44:B7:E6:82:C6:8C:88:7E:50:9F:6C:25:8E:12:40:40:43:44
Certificate issuer: /CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Certificate serial: 01856C53B076B4536BBFED9A463961924462
Authority key identifier: 96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/ELxEt-aCxoyIflCfbCWOEkBAQ0Q.roa
Signing time: Sun 01 Jan 2023 07:55:02 +0000
ROA not before: Sun 01 Jan 2023 07:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61157
IP address blocks: 134.97.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:b0:76:b4:53:6b:bf:ed:9a:46:39:61:92:44:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Validity
Not Before: Jan 1 07:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10bc44b7e682c68c887e509f6c258e1240404344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0b:55:f3:82:a2:2c:2d:af:b9:fb:c1:2f:bc:
88:cd:fb:4a:d5:39:b3:35:46:9d:48:57:d9:8c:00:
72:eb:d1:21:73:8a:93:7b:f0:93:80:dc:33:b5:39:
c3:46:fe:c1:83:1a:51:c2:ff:00:6b:00:1c:c7:5e:
e3:55:1a:0c:94:23:52:3d:49:8a:6f:c4:1c:ca:8a:
28:b4:6d:de:a4:71:aa:2d:fb:9c:a0:5b:14:b0:a9:
07:94:21:7c:0a:91:ba:88:12:40:75:74:6c:2d:9b:
8b:23:0b:78:1f:9a:59:11:46:9f:8e:72:cb:bf:e3:
91:69:b6:14:55:b2:f4:8d:e3:89:bc:10:cd:bc:a0:
60:00:e4:f0:14:da:4d:4e:0d:0c:f2:39:2d:c4:85:
58:c8:51:5d:3a:47:75:b6:8c:1f:23:8a:c2:7a:4d:
e1:20:b8:2b:5c:5c:c0:cf:4f:1f:54:f5:0a:c4:08:
3c:80:9d:d5:42:80:1b:38:19:e5:09:04:47:17:4e:
35:3d:17:03:e3:ff:9b:85:76:ea:78:5e:07:dd:8b:
32:b0:f1:48:4f:ee:3d:c6:18:65:00:bf:34:d2:aa:
78:f0:df:7b:20:63:7e:7a:da:bf:0e:d4:10:d1:bb:
ca:11:92:a4:4c:4d:18:a7:11:31:39:a9:40:04:15:
47:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:BC:44:B7:E6:82:C6:8C:88:7E:50:9F:6C:25:8E:12:40:40:43:44
X509v3 Authority Key Identifier:
keyid:96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/ELxEt-aCxoyIflCfbCWOEkBAQ0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/lplI0P5Nf5nVS6i__NmaGmCK4NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.97.4.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:42:66:d3:3c:e2:80:e6:af:7d:fd:97:bc:20:ac:46:aa:45:
97:75:65:0a:bc:6b:1a:07:da:c4:54:aa:5b:d3:84:ea:9c:ef:
a0:8d:e7:b1:f4:fd:f9:66:34:d1:60:ff:ee:c5:d9:34:da:87:
2a:86:de:ef:f5:be:f8:e0:86:6a:94:26:85:5e:eb:92:85:90:
15:7e:3c:25:bd:47:ea:f0:45:02:8b:79:83:30:2f:f4:da:d2:
1c:57:8a:e0:a9:35:23:83:f5:4b:f1:3f:ba:e3:72:7c:dc:69:
1f:3d:0b:fb:9b:71:03:39:e1:4e:6e:23:ed:0d:08:d5:48:c4:
f8:2c:27:68:94:4e:30:83:9a:01:58:44:cb:18:78:75:b4:06:
e2:c9:54:c6:15:22:e7:ee:39:d2:05:22:8f:b6:ba:f1:f5:cb:
7a:85:6e:d2:55:58:6f:e3:50:40:1b:1c:e1:91:2f:31:8f:d9:
2b:f6:19:b6:88:e5:84:0f:6e:0c:5f:37:e1:7d:4d:13:bc:f5:
fe:9b:7f:74:46:2d:44:ca:c6:21:cb:54:fa:d8:25:ca:93:59:
e3:bc:60:ec:74:9e:e7:07:cb:67:ac:ee:6e:f6:17:20:e1:8f:
d7:60:49:f8:93:2e:5a:6d:82:56:27:99:86:99:ee:c3:f8:dd:
94:9b:2e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:02 2024 by rpki-client on console-ams.rpki-client.org