Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_P-hKMeQAoyh61qml9uydl6_9Z0.roa
File: _P-hKMeQAoyh61qml9uydl6_9Z0.roa (raw, json)
Hash identifier: b7PgAg/lmoEYOZBESKO02BcvttoaUpdmM00f8iqzkXA=
Subject key identifier: FC:FF:A1:28:C7:90:02:8C:A1:EB:5A:A6:97:DB:B2:76:5E:BF:F5:9D
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018A709B835CD5A079A991423B38E47E0D15
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_P-hKMeQAoyh61qml9uydl6_9Z0.roa
Signing time: Thu 07 Sep 2023 17:05:54 +0000
ROA not before: Thu 07 Sep 2023 17:05:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47585
IP address blocks: 78.135.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:70:9b:83:5c:d5:a0:79:a9:91:42:3b:38:e4:7e:0d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Sep 7 17:05:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcffa128c790028ca1eb5aa697dbb2765ebff59d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:90:00:12:9a:a5:63:de:ad:b0:88:d2:48:f4:
36:c6:6e:54:93:8d:fa:60:59:f8:62:33:4c:03:8e:
32:0e:4f:75:c7:63:c5:3c:52:fb:41:a8:a4:ae:9b:
06:63:c0:54:d9:ce:84:84:6c:45:50:66:ee:91:ef:
f0:a6:cd:33:c7:1d:3c:ef:ce:f2:4e:34:7f:c2:d3:
ed:f0:8d:6a:68:65:77:c5:0a:c6:dc:33:5e:08:4f:
4d:93:53:b3:75:8e:ab:69:8a:dd:81:a0:17:f3:9b:
aa:29:a3:00:f1:0b:fa:43:f1:93:8e:12:d2:95:9b:
43:bb:17:f0:d0:38:bb:88:11:3a:a4:09:07:2b:9c:
6f:0f:4b:95:1d:b9:87:c9:92:26:d3:74:7d:39:e9:
66:b8:43:43:b4:06:a8:0c:38:8e:31:f1:5a:5a:e8:
5f:5a:ee:2f:73:ca:d5:8f:bf:a8:e9:23:d4:28:71:
4a:1c:30:c4:02:f6:cd:9b:e3:0a:30:99:a9:47:d3:
f1:d9:ae:4d:71:ea:83:ba:53:21:7b:fa:e1:4f:39:
67:ee:7b:98:a8:17:bc:bf:c2:30:60:b2:27:ff:5b:
1e:5d:45:27:1d:d2:97:4c:0f:ec:b2:29:4c:bb:a6:
0f:e2:8c:a7:05:d2:cd:0e:18:f6:fb:21:8c:93:4c:
bb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:FF:A1:28:C7:90:02:8C:A1:EB:5A:A6:97:DB:B2:76:5E:BF:F5:9D
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_P-hKMeQAoyh61qml9uydl6_9Z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.111.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f4:58:29:d2:ad:37:77:30:f4:60:64:fd:46:cb:20:0f:ba:
eb:b9:20:ad:dc:15:0a:47:b9:09:9f:bf:3c:64:0a:46:8f:92:
cc:b7:1b:d5:29:27:bd:08:1b:ac:f9:3b:09:3d:f2:c1:1e:8a:
9b:c3:d6:5e:ef:d5:02:45:47:f6:3d:bf:2d:ba:d2:20:2f:7b:
9e:97:16:6b:a9:ee:5f:c6:7c:ad:1d:e2:0b:f1:f7:03:71:21:
41:ac:cf:56:1d:b1:bb:2d:b4:0c:d0:93:e4:5f:1b:fb:2a:c2:
d8:c2:ac:81:e1:59:1f:ab:6a:a4:99:ae:89:90:30:64:3e:b2:
b4:1f:5e:ba:8f:98:e6:69:20:ce:81:a3:ad:a4:ca:24:65:1b:
17:8b:a8:e7:b1:54:f6:b2:e1:46:92:18:f0:41:ce:d9:23:81:
d9:12:f6:99:ce:8d:ec:c0:20:27:ae:dc:09:b5:c2:28:0f:07:
1f:83:4b:d9:27:95:3c:4b:1b:3e:e6:fb:74:5b:53:f5:9f:ab:
a4:0c:30:f6:6c:52:ae:50:1f:26:9c:ba:47:3e:11:51:e8:f6:
0f:88:b2:3c:c6:f7:81:b7:2c:b3:55:f8:25:65:09:fc:a0:41:
4e:fb:af:d8:62:e2:81:32:d1:06:d7:19:d2:b3:41:23:30:9d:
b5:83:57:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org