Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/h1HKECyL1VuevgcIU6HO0R0aXKs.roa
File: h1HKECyL1VuevgcIU6HO0R0aXKs.roa (raw, json)
Hash identifier: 7IKPxXK6JxhMw8lfcqX8/ePRS/otzbQ945UwmoGTBTQ=
Subject key identifier: 87:51:CA:10:2C:8B:D5:5B:9E:BE:07:08:53:A1:CE:D1:1D:1A:5C:AB
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 01893FB45C7F54FF702B0BBF42A33A92C4DD
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/h1HKECyL1VuevgcIU6HO0R0aXKs.roa
Signing time: Mon 10 Jul 2023 12:08:51 +0000
ROA not before: Mon 10 Jul 2023 12:08:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48147
IP address blocks: 78.39.47.0/24 maxlen: 24
2.189.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Aug 2023 09:49:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3f:b4:5c:7f:54:ff:70:2b:0b:bf:42:a3:3a:92:c4:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jul 10 12:08:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8751ca102c8bd55b9ebe070853a1ced11d1a5cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7a:3b:e8:9a:f4:19:33:a2:81:87:91:a3:11:
e1:ed:f6:55:7f:7f:b7:b2:5e:5f:10:ba:05:bd:f0:
aa:29:97:39:15:2e:8c:6b:60:5d:fe:47:d3:89:97:
35:36:4e:93:82:f0:70:2d:4e:22:64:88:d3:78:cd:
9c:da:75:bc:83:37:db:6c:68:6c:6a:ce:26:5b:8a:
ef:70:39:81:32:d9:69:31:16:aa:af:da:90:ed:cc:
24:1d:1e:b2:5c:c4:ee:6f:43:63:b0:16:af:8f:1c:
3f:78:b5:7f:75:ac:a0:fa:26:81:a6:07:62:39:b9:
cc:a7:99:c7:d7:79:a6:30:85:82:3e:47:b4:86:b7:
44:ff:b2:31:8c:a2:14:ef:27:16:99:cf:c3:75:6c:
50:7a:0a:28:b3:33:22:a2:97:c9:cc:ec:4e:53:30:
10:92:db:b2:b3:20:b1:98:c5:9d:29:b6:57:09:6e:
e1:d0:c7:a4:ac:77:eb:e0:a6:3a:ac:52:b3:5d:52:
ec:73:6a:3a:4e:c8:be:a5:35:17:46:b1:b9:18:e3:
3c:ff:3d:51:d5:dc:ef:8b:58:0c:84:80:8d:8d:cb:
44:ce:4f:20:ef:a8:ce:a9:b2:56:86:42:66:33:91:
14:16:ec:b7:90:e2:76:ca:50:90:de:58:b8:3d:93:
98:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:51:CA:10:2C:8B:D5:5B:9E:BE:07:08:53:A1:CE:D1:1D:1A:5C:AB
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/h1HKECyL1VuevgcIU6HO0R0aXKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.189.58.0/24
78.39.47.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:65:33:9e:7b:f5:c8:8e:6a:e8:e1:4c:b6:24:cc:c4:2d:5a:
b4:ef:de:76:7f:ea:95:26:a5:4e:6b:c8:86:d2:cb:a6:15:58:
16:f4:2c:80:86:40:50:1e:d6:8f:56:f0:fa:39:71:a7:fb:34:
db:84:c1:ee:53:a5:86:74:3f:07:df:38:bd:6e:b5:ac:16:05:
6d:00:b2:37:82:50:e4:6f:d9:4c:8b:ae:58:68:cd:99:6d:88:
3b:9c:b6:2a:22:57:ec:cd:21:f5:bc:58:74:1e:6d:37:58:ee:
10:f0:00:d5:b0:a4:b6:17:63:4f:8c:54:9f:ea:3b:98:de:9d:
8c:9e:2a:51:0b:e0:82:11:46:2c:5e:60:48:2e:f9:6c:a8:2d:
c1:49:bc:4c:4a:c4:0a:57:a5:37:c3:c2:53:79:68:29:27:6e:
30:23:1b:d7:66:b6:a2:e8:55:b0:87:23:5b:3f:e6:7f:47:9e:
44:0d:96:cf:95:f4:74:0b:96:64:d1:ec:3e:4a:1d:fb:e8:9b:
b3:b7:36:aa:7e:3f:52:85:47:02:80:b2:64:f8:9c:2d:d9:e9:
48:4b:a0:32:e1:c0:0f:3b:a1:48:06:1b:c7:a0:c6:4f:52:fc:
d4:8f:6b:9c:af:06:59:92:fc:9d:3d:e4:5b:58:d4:04:68:5c:
1e:3e:9b:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org