Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/hGP0-OVFGXpsPJQ-O48bhR3g4-8.roa
File: hGP0-OVFGXpsPJQ-O48bhR3g4-8.roa (raw, json)
Hash identifier: SLL+7Gph21auogJemp+swU5dBxhpQKAPPb1/6ELQbGs=
Subject key identifier: 84:63:F4:F8:E5:45:19:7A:6C:3C:94:3E:3B:8F:1B:85:1D:E0:E3:EF
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018570029B11CEB5D7AFA9445F4BCA22027B
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/hGP0-OVFGXpsPJQ-O48bhR3g4-8.roa
Signing time: Mon 02 Jan 2023 01:04:56 +0000
ROA not before: Mon 02 Jan 2023 01:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211603
IP address blocks: 78.135.92.0/24 maxlen: 24
78.135.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Jan 2023 21:24:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:9b:11:ce:b5:d7:af:a9:44:5f:4b:ca:22:02:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8463f4f8e545197a6c3c943e3b8f1b851de0e3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5c:dd:58:57:e2:87:36:ad:2b:cc:fd:eb:e9:
18:7d:5d:97:40:ee:13:b4:5b:08:e4:e1:1d:53:6d:
73:9d:76:e6:5e:a7:55:43:48:cd:e3:78:fe:4f:0b:
b4:11:86:67:5d:64:77:b5:47:2a:6a:3f:32:2b:85:
32:fa:69:18:42:ba:9f:5e:80:f2:a5:e4:1c:66:a0:
07:22:40:6c:90:e4:67:f3:ca:ee:ca:b9:21:93:41:
29:1b:7d:97:b7:c8:1c:6a:81:cc:34:b3:9c:6c:f3:
17:ab:d1:ac:a6:97:92:25:52:b1:1f:b4:28:b2:50:
0f:ef:db:8f:a6:35:3b:fd:19:24:b2:f8:80:aa:ac:
a1:b6:a0:d6:88:1f:12:c7:01:5e:a7:b5:01:cc:b6:
c0:29:d0:fb:48:e2:22:d2:ed:f9:75:1e:e6:91:da:
37:00:b5:da:46:88:7e:19:f7:a6:9f:9f:b1:f1:02:
d9:d3:92:67:f0:fd:bd:76:5e:e2:91:13:1a:d2:e8:
14:b9:b5:b4:e0:06:d4:f1:6a:8e:10:6b:e0:3a:18:
79:12:b7:b1:62:bb:51:85:a9:18:40:09:3e:d2:81:
9a:64:11:28:cf:4b:1c:b4:ca:5e:8b:9c:8d:72:e4:
cb:26:05:eb:79:d5:31:d7:ce:dc:8c:d5:0b:25:bc:
7e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:63:F4:F8:E5:45:19:7A:6C:3C:94:3E:3B:8F:1B:85:1D:E0:E3:EF
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/hGP0-OVFGXpsPJQ-O48bhR3g4-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.92.0/24
78.135.104.0/24
Signature Algorithm: sha256WithRSAEncryption
88:ef:cd:d9:aa:aa:09:bf:8e:14:00:02:42:60:e4:e3:50:65:
47:2a:39:f4:bf:7b:d8:5a:be:09:4f:57:78:0f:d0:c4:e3:3e:
9e:d2:45:29:c9:80:64:53:48:7e:74:95:9b:61:9f:38:4d:06:
f7:96:3c:e0:2a:9d:da:1c:7b:1c:31:89:53:28:7e:38:bc:e7:
b4:50:c8:09:32:5f:a2:44:b3:4c:74:c0:22:11:f4:94:9c:e0:
b2:06:98:44:db:24:e1:49:ad:81:6c:4a:5c:1a:8c:ea:0a:c2:
f7:8a:c8:82:f6:28:de:6f:b6:9a:d7:a8:c0:c8:5a:a1:13:aa:
1b:1c:b8:3e:ba:28:83:47:cd:c4:6b:e0:28:c6:23:54:d5:ce:
c0:b7:f7:2b:2c:a4:f5:ad:25:72:56:91:6d:4a:37:2e:4f:c6:
cb:f9:e3:46:90:dd:48:e8:16:ed:ef:a5:c7:b5:fa:b1:e6:50:
6a:6d:ac:dc:74:42:3c:6f:cc:c7:c1:4c:bb:c5:a5:93:f0:9c:
19:5a:d9:64:6c:97:d9:89:58:1d:bf:c2:0c:e1:56:d5:52:02:
58:27:db:e8:5d:5e:3f:fe:0b:2c:f8:bd:b3:9a:93:d8:62:e8:
9a:a6:da:dc:73:d2:b7:38:97:09:93:86:bb:df:c7:97:0f:d8:
03:16:4e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org