Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/R7o2-3pJ9r219rvjrFT-_vUZvuw.roa
File: R7o2-3pJ9r219rvjrFT-_vUZvuw.roa (raw, json)
Hash identifier: 5S5xZhrnwHVx9jmdqdhfp8GffsRYklpWzOBCQNS9bVo=
Subject key identifier: 47:BA:36:FB:7A:49:F6:BD:B5:F6:BB:E3:AC:54:FE:FE:F5:19:BE:EC
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 0187108CAB19C3F02B464FFAED3A7C1223F1
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/R7o2-3pJ9r219rvjrFT-_vUZvuw.roa
Signing time: Thu 23 Mar 2023 22:17:46 +0000
ROA not before: Thu 23 Mar 2023 22:17:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29713
IP address blocks: 185.240.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Mar 2023 21:07:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:10:8c:ab:19:c3:f0:2b:46:4f:fa:ed:3a:7c:12:23:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Mar 23 22:17:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47ba36fb7a49f6bdb5f6bbe3ac54fefef519beec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:96:e6:82:68:6f:db:e7:de:71:9a:da:76:0d:
a0:7c:48:a1:e7:c2:f8:0b:ba:2c:66:e4:26:43:1b:
9f:8e:45:c4:00:58:3a:37:d7:71:bd:01:66:2a:0f:
97:8e:57:24:6c:97:63:d5:2f:b9:07:3b:af:57:29:
47:c4:d4:a2:31:a3:68:9f:66:2b:bb:9c:73:f8:38:
b3:7d:b7:ff:46:a2:09:91:90:56:ec:f4:e0:a5:6f:
7f:9b:88:3a:e8:78:dc:c9:0e:0d:69:3c:38:71:c4:
5c:46:e6:20:1c:05:ca:7b:59:cf:fe:68:29:29:23:
9c:05:fa:c8:6f:c7:10:e6:39:e4:25:69:d6:60:0c:
62:c2:dc:a7:0e:74:09:4f:63:90:73:d6:c9:fd:ca:
34:bd:89:36:3a:ed:3b:15:ed:45:45:85:ed:db:56:
9d:96:25:44:8c:19:da:82:d6:d1:83:29:d9:70:02:
27:bc:9a:ca:db:f4:42:73:a7:ba:47:46:e9:e1:7d:
44:c6:cb:a2:19:aa:d2:d5:6a:ca:21:ad:4f:61:db:
cf:06:8c:eb:6e:5e:ec:af:b5:4c:62:04:cd:cb:37:
aa:ec:06:5b:5a:5f:67:11:42:7d:6c:6f:5e:74:53:
b4:53:c1:e6:b6:44:de:fc:b0:08:50:cd:24:f0:7b:
a3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:BA:36:FB:7A:49:F6:BD:B5:F6:BB:E3:AC:54:FE:FE:F5:19:BE:EC
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/R7o2-3pJ9r219rvjrFT-_vUZvuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.87.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:0b:4c:eb:52:84:cf:1f:14:25:c0:b3:de:5e:8c:82:1f:e5:
9d:f3:45:3c:d0:bd:82:33:31:e6:c2:e5:c0:b0:c2:3d:2f:51:
2c:3c:b0:03:67:70:ac:4a:42:c5:12:e6:96:39:a0:6a:d8:57:
5f:11:19:3e:28:e3:6b:01:78:b7:a4:77:ef:96:7f:eb:d4:1d:
5a:8e:4f:38:f4:d1:e7:84:82:b3:31:46:cc:31:bc:de:f0:87:
2c:00:17:c5:d9:71:c3:27:92:1e:68:ce:ff:91:c4:45:0d:e4:
64:f1:d9:e2:92:5c:e4:15:28:af:9a:7f:71:cc:00:3a:c4:dc:
a3:74:41:fd:14:ad:4a:1e:5d:23:dd:36:93:68:7b:b2:00:e6:
53:b0:99:41:24:ef:b1:92:2f:cb:5d:0a:bf:9c:03:f6:de:81:
72:ef:23:8f:e8:b6:d1:01:45:48:34:d3:d3:ba:ef:50:53:88:
07:3a:f7:51:68:15:29:a8:c7:76:d2:b2:4e:8f:2a:26:83:71:
44:1c:9e:6e:4e:14:50:91:9c:a2:cb:50:8f:4e:f2:f7:5a:9a:
72:b1:ae:fc:3f:7a:47:c4:82:e1:60:e6:a2:4f:ae:55:f4:16:
14:88:88:a7:5b:c4:49:b8:f1:b5:b0:96:48:04:13:e8:93:ae:
2c:c4:bc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:20 2024 by rpki-client on console-ams.rpki-client.org