Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Fem5zAlVQUiOVASbbOvUmdrsgsA.roa
File: Fem5zAlVQUiOVASbbOvUmdrsgsA.roa (raw, json)
Hash identifier: 1vxhgooSavR0aA/WYv3OLA22QFAg9kCOHToMx9q5aG8=
Subject key identifier: 15:E9:B9:CC:09:55:41:48:8E:54:04:9B:6C:EB:D4:99:DA:EC:82:C0
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018CC8DF7DCE4B30D714B3CAC524924DEE18
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Fem5zAlVQUiOVASbbOvUmdrsgsA.roa
Signing time: Tue 02 Jan 2024 06:32:19 +0000
ROA not before: Tue 02 Jan 2024 06:32:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51540
IP address blocks: 78.135.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 19:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:7d:ce:4b:30:d7:14:b3:ca:c5:24:92:4d:ee:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 06:32:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15e9b9cc095541488e54049b6cebd499daec82c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:52:8e:5f:31:fc:aa:d2:27:55:b5:a9:5a:6b:
e0:0b:7b:bd:f4:c9:dd:c6:72:8e:bc:f4:40:a5:49:
f4:45:f2:22:95:58:bf:2f:10:d6:4f:1f:ff:6b:d1:
71:1d:95:b8:7d:9e:ab:7f:ac:dd:89:ac:67:53:4f:
7d:3a:7f:87:d4:47:03:d2:7a:48:56:9a:36:16:74:
27:d9:15:81:b0:7b:bf:9b:2a:7c:f0:2c:8a:6a:b9:
30:74:31:1c:59:48:f8:a9:87:cd:fc:39:c5:7e:c0:
38:7b:d8:fb:bb:3e:ca:d1:00:6b:2a:5e:0b:e5:75:
71:fc:b0:78:3c:85:c3:98:56:60:3d:a0:3b:01:81:
e8:1f:43:54:59:b0:a1:aa:1b:60:04:9a:c0:d7:c9:
ab:e5:4d:f8:b8:3c:d7:0e:66:06:5c:16:8f:b1:32:
14:34:63:61:23:81:02:f8:20:8f:e0:85:9b:45:b5:
46:4a:be:77:a6:8c:f1:c5:4a:d9:18:7d:1a:0d:72:
81:9a:dc:1a:34:98:45:f0:ab:fc:7b:e0:ec:e7:c1:
71:70:23:39:3d:86:c4:8d:31:e6:71:84:ad:fc:c3:
88:dd:f3:2b:bd:e2:f9:d5:e7:85:4f:70:6e:54:76:
e1:26:d5:31:65:be:c5:bc:8c:b2:7f:29:71:6c:34:
88:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E9:B9:CC:09:55:41:48:8E:54:04:9B:6C:EB:D4:99:DA:EC:82:C0
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Fem5zAlVQUiOVASbbOvUmdrsgsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.84.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:1d:d6:fd:7f:98:67:ae:a0:d8:b4:5f:75:16:d6:74:9e:35:
3b:f1:77:9c:38:de:a1:d9:76:5f:3f:6b:e3:7e:22:49:c6:d4:
95:f1:ca:3f:62:75:bd:ff:85:14:28:cb:09:4d:9d:37:98:db:
ff:ec:ca:fa:e1:fa:01:c7:6a:93:fc:c8:1d:0b:81:90:a8:46:
02:2b:44:30:ac:bc:82:cf:d4:2a:a7:2c:c2:a9:1b:18:6f:d1:
dd:85:51:fb:08:17:5e:20:65:e2:f7:79:29:f9:3f:1d:20:6a:
c2:09:30:35:9b:ae:02:dc:52:36:40:fd:bc:c4:9f:03:e4:1e:
7e:51:ac:a4:23:96:e7:7f:83:12:39:35:00:e5:8c:95:4f:14:
f5:15:55:cc:af:13:8b:20:a5:67:60:26:ca:29:7c:48:49:20:
8e:bc:57:62:86:3f:97:f7:e7:b1:14:9b:b2:66:e3:50:4a:90:
04:7b:63:c6:1e:d4:05:ed:f8:90:8a:3f:ac:bd:a4:ae:58:09:
77:e8:97:d4:48:a0:6e:5d:94:db:4f:90:fd:3e:30:31:e8:fb:
1e:79:09:e1:17:5c:fa:a1:37:fa:8c:0f:4a:bc:97:4f:29:83:
4f:bb:94:09:2f:af:2e:8c:72:82:85:22:09:35:92:7f:5e:cd:
8e:9d:b5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org