Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9d606e-08a6-4f4a-b980-b5abf440e893/1/PAJeigYUHUcSaOff9u1NmmwQaEo.roa
File: PAJeigYUHUcSaOff9u1NmmwQaEo.roa (raw, json)
Hash identifier: nESh3e1Mq3cF1aOTNfG0uyv9DcC/cOnn13mrhriGXq8=
Subject key identifier: 3C:02:5E:8A:06:14:1D:47:12:68:E7:DF:F6:ED:4D:9A:6C:10:68:4A
Certificate issuer: /CN=fb1a810e3ab1964b44ecb3778340b266dbda1126
Certificate serial: 018AE1D35CC92AEDB83CC00FC6334AD2F134
Authority key identifier: FB:1A:81:0E:3A:B1:96:4B:44:EC:B3:77:83:40:B2:66:DB:DA:11:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xqBDjqxlktE7LN3g0CyZtvaESY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9d606e-08a6-4f4a-b980-b5abf440e893/1/PAJeigYUHUcSaOff9u1NmmwQaEo.roa
Signing time: Fri 29 Sep 2023 16:43:59 +0000
ROA not before: Fri 29 Sep 2023 16:43:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 192.40.79.0/24 maxlen: 24
2a06:f044::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e1:d3:5c:c9:2a:ed:b8:3c:c0:0f:c6:33:4a:d2:f1:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1a810e3ab1964b44ecb3778340b266dbda1126
Validity
Not Before: Sep 29 16:43:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c025e8a06141d471268e7dff6ed4d9a6c10684a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6a:2e:5e:ad:f5:52:b0:64:09:82:05:47:ba:
48:46:62:3c:41:93:60:60:5b:82:59:fb:34:96:51:
d5:d1:0b:be:42:78:db:81:66:c9:c3:ad:22:4d:24:
9c:86:fa:3d:66:46:af:24:cb:3c:84:20:88:9c:70:
12:79:9b:cf:a8:df:e9:d6:52:2b:42:0d:1e:07:1e:
5b:65:17:f4:4d:4c:82:7c:e9:4d:0f:2f:6e:a7:70:
d3:cf:f1:ed:4e:59:04:ed:18:8e:02:c2:f4:0e:d0:
97:17:6d:b7:84:b6:20:4f:b1:c0:14:a9:e5:8b:1a:
c7:f1:dd:73:2b:3f:a8:56:60:47:67:2a:7d:cf:47:
1d:e0:62:0b:2b:ff:c1:82:29:9a:31:ca:ae:3b:a6:
1e:4f:58:c9:52:9e:0d:4e:22:33:8b:28:ef:6b:82:
0a:95:46:53:6f:19:57:db:9e:e7:0e:84:9f:ac:63:
f0:fd:9e:51:b3:84:33:03:d1:e7:69:62:6b:cd:3c:
a8:b2:8a:f7:b7:fd:3c:c4:8d:c6:2c:a1:bc:71:72:
7b:a1:db:19:5a:66:66:19:96:d8:16:7d:8e:f3:c2:
a9:cf:0d:8c:16:c0:ee:fc:21:4a:94:79:07:00:c0:
7d:b9:b2:b7:fa:12:ab:23:49:20:8d:ef:a2:0d:ac:
ec:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:02:5E:8A:06:14:1D:47:12:68:E7:DF:F6:ED:4D:9A:6C:10:68:4A
X509v3 Authority Key Identifier:
keyid:FB:1A:81:0E:3A:B1:96:4B:44:EC:B3:77:83:40:B2:66:DB:DA:11:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xqBDjqxlktE7LN3g0CyZtvaESY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9d606e-08a6-4f4a-b980-b5abf440e893/1/PAJeigYUHUcSaOff9u1NmmwQaEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9d606e-08a6-4f4a-b980-b5abf440e893/1/1-xqBDjqxlktE7LN3g0CyZtvaESY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.40.79.0/24
IPv6:
2a06:f044::/48
Signature Algorithm: sha256WithRSAEncryption
3a:16:8c:92:f6:69:64:3e:05:df:3c:92:fc:4d:01:2c:61:2b:
ee:e5:fd:72:b2:cc:f3:02:d1:93:56:ad:39:7d:cf:96:10:c4:
a9:80:26:3b:b2:8c:ff:19:66:3f:0c:a3:f9:66:3e:8d:47:ac:
47:65:f8:11:c9:27:49:5f:81:0f:08:1a:06:88:ef:d7:4b:5e:
38:99:19:85:08:e3:23:2f:b1:84:94:e9:64:99:64:ed:7d:d4:
9d:fc:d2:41:79:af:f9:dc:72:25:a1:a8:b9:ee:4e:d1:70:e0:
dd:34:5c:e2:45:6d:e3:a5:1c:c5:ab:35:08:ce:a4:f5:cd:b2:
92:e1:c0:79:34:3f:9b:ab:d8:73:0d:e1:5e:59:f6:94:ed:bf:
2a:c5:5b:cf:7b:c2:e7:84:70:8b:09:33:dc:3e:7a:fc:a8:18:
1a:f3:87:62:a6:df:bc:57:63:1e:e7:46:d7:fe:36:c3:46:eb:
b1:42:ff:c8:fe:de:9f:1f:a4:94:ca:b8:be:4b:28:b0:6c:36:
1c:e8:93:55:c9:97:d1:ba:43:80:13:67:ed:bc:b8:e9:5c:0f:
89:60:ae:61:b0:4c:64:d9:6f:90:4a:01:84:97:50:fe:ad:7e:
d6:b8:4e:a0:1d:14:cb:de:20:e5:c8:00:61:14:2f:74:77:0e:
65:c9:92:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org