Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/EJLZ5roAZLqpWUM4n5jPmaKa8K8.roa
File: EJLZ5roAZLqpWUM4n5jPmaKa8K8.roa (raw, json)
Hash identifier: JEQoMHnQ0KOfZMJZdvouwNdJRcgNxy3uPHx41pXCUrU=
Subject key identifier: 10:92:D9:E6:BA:00:64:BA:A9:59:43:38:9F:98:CF:99:A2:9A:F0:AF
Certificate issuer: /CN=458d12f095053c35876b88b47685d6435421fcf2
Certificate serial: 0187343EA9126C2168E7A29CBB2EDB69BB62
Authority key identifier: 45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/EJLZ5roAZLqpWUM4n5jPmaKa8K8.roa
Signing time: Thu 30 Mar 2023 20:38:54 +0000
ROA not before: Thu 30 Mar 2023 20:38:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200220
IP address blocks: 79.132.135.0/24 maxlen: 24
2a0b:7140:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 May 2023 10:25:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:34:3e:a9:12:6c:21:68:e7:a2:9c:bb:2e:db:69:bb:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=458d12f095053c35876b88b47685d6435421fcf2
Validity
Not Before: Mar 30 20:38:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1092d9e6ba0064baa95943389f98cf99a29af0af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e2:3c:81:4f:6c:d0:16:d5:2f:a7:de:ce:d6:
5f:db:fe:36:8d:42:ee:95:d3:00:41:26:e4:83:37:
0e:6f:bd:53:c2:a8:00:d5:85:21:6c:8d:1c:7d:e9:
10:f9:c9:04:70:2b:40:6a:3a:fa:1a:74:4d:0a:1f:
b7:96:01:99:4d:32:29:d6:5b:28:ff:2a:ae:92:dd:
6d:72:87:32:9b:94:e4:f9:77:68:27:52:84:fd:6e:
0f:3e:3e:70:5b:1f:f4:66:99:4c:e4:d1:20:57:a4:
f6:37:20:b7:67:80:ee:80:9d:bf:2a:48:7b:f0:68:
81:08:4f:d1:fb:11:60:e9:b3:08:95:83:c2:69:44:
01:e9:b1:d9:77:5c:f5:8e:c5:d1:b4:10:d2:f6:f6:
0b:15:8b:33:ab:df:4a:6d:ad:b7:af:84:12:dd:77:
f7:c4:9b:6c:e1:d3:c5:bd:51:63:8a:8d:29:d0:ed:
9b:b0:dc:32:4c:c8:81:f3:eb:92:c4:36:c4:a1:ab:
c8:1f:45:f0:19:30:90:ee:38:e7:34:a2:d4:4f:d7:
13:ff:1a:77:29:5a:17:dd:81:3f:1e:61:b6:08:4c:
f2:6d:20:9f:cd:7f:41:19:58:fb:39:ac:2a:b6:b6:
d4:ef:47:b3:8a:59:20:56:2c:ff:dc:3d:b8:a7:8d:
63:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:92:D9:E6:BA:00:64:BA:A9:59:43:38:9F:98:CF:99:A2:9A:F0:AF
X509v3 Authority Key Identifier:
keyid:45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/EJLZ5roAZLqpWUM4n5jPmaKa8K8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.135.0/24
IPv6:
2a0b:7140:9::/48
Signature Algorithm: sha256WithRSAEncryption
8a:b5:d2:4b:3a:2a:6e:34:14:31:52:92:7d:a2:34:c8:76:b6:
e3:d9:23:23:2b:73:7c:45:6b:06:f2:1a:13:9d:42:09:8d:75:
d5:a4:94:ab:9e:20:b3:66:3a:5c:6c:af:00:1e:01:ea:08:a6:
d8:ef:7b:0e:7c:d7:53:eb:4d:d2:0b:6a:f5:bd:e4:73:7d:bc:
73:b7:11:0b:cf:c9:bc:3d:d5:b7:5f:6e:af:76:1e:8e:6f:54:
98:e4:24:63:7c:f3:dd:e0:7f:4e:d3:14:23:74:49:d6:5a:66:
e2:3d:9e:66:a6:fe:f6:65:8b:97:3f:83:66:64:5c:f7:45:e8:
d3:bb:7b:51:1e:cb:f6:6a:89:8f:8c:6f:48:59:2b:c4:1e:16:
98:a9:3b:16:92:98:cb:b1:d8:26:22:46:9e:17:36:89:da:62:
7b:ec:fb:a3:d7:90:ab:9c:cb:c3:c5:d4:d5:c2:ce:f2:e9:97:
12:7e:3d:7f:8c:9f:66:19:70:d4:e7:cf:3e:74:ce:60:4c:15:
be:42:8e:81:6d:6e:be:7f:53:c4:d9:53:2b:42:56:85:dd:14:
e0:75:92:4b:18:1b:8f:cc:fa:b9:44:d9:e6:3d:ea:db:b6:da:
e7:56:45:51:f9:32:aa:ab:bb:31:d0:35:42:d4:fc:0b:23:0f:
a3:bf:9b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:55 2024 by rpki-client on console-ams.rpki-client.org