Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/vDks2YI1rEKStins_2e90CNuu4Y.roa
File: vDks2YI1rEKStins_2e90CNuu4Y.roa (raw, json)
Hash identifier: Haxc+UX9gRHo6no97b/GgCHD43vZx9/sIq1MSE/7d9w=
Subject key identifier: BC:39:2C:D9:82:35:AC:42:92:B6:29:EC:FF:67:BD:D0:23:6E:BB:86
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018570029CE5B3BC997DF2EEEB0B0E7C4B3C
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/vDks2YI1rEKStins_2e90CNuu4Y.roa
Signing time: Mon 02 Jan 2023 01:04:57 +0000
ROA not before: Mon 02 Jan 2023 01:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211735
IP address blocks: 78.135.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Feb 2023 12:28:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:9c:e5:b3:bc:99:7d:f2:ee:eb:0b:0e:7c:4b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc392cd98235ac4292b629ecff67bdd0236ebb86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:46:f9:90:77:9c:1e:24:ed:7f:40:53:cf:29:
0d:2a:87:65:de:dc:45:56:b6:20:c2:bb:76:db:28:
83:1e:18:b6:8c:94:50:7a:42:5d:17:f4:93:8e:80:
7e:60:e7:d6:9f:32:d0:e8:ef:99:00:1a:52:86:6f:
aa:4b:8f:70:fd:41:6e:68:6c:e7:b6:f1:c9:6c:28:
36:3b:87:9a:86:31:9d:d9:a0:1a:51:91:6a:99:df:
e2:cd:1c:c4:5c:95:c3:a4:85:3b:ef:0a:98:0f:18:
40:bb:38:d9:0a:42:ed:d1:00:bb:9a:01:82:bc:0f:
74:ea:d1:b2:9f:24:fb:4a:86:93:4c:18:8c:02:0a:
36:ff:5b:ea:6c:8a:e4:d6:da:92:34:a7:77:67:e6:
ae:9c:4b:22:18:9e:85:34:26:1f:0a:bc:e6:24:83:
57:0a:2a:ea:7d:72:65:bf:0a:ac:9a:80:8c:56:97:
a5:49:03:d4:f6:ae:1c:51:c2:d0:2d:cb:c5:5c:3d:
9c:09:90:79:10:62:bd:d7:0f:3b:d7:cb:7b:2c:13:
49:be:5f:44:1a:7c:b4:e5:22:92:74:45:ba:21:06:
8f:c6:d6:da:e9:d0:d3:25:8d:fe:f5:f1:f6:f1:a6:
7d:10:01:a1:cc:25:da:ea:a7:a5:5d:c8:0c:a4:25:
80:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:39:2C:D9:82:35:AC:42:92:B6:29:EC:FF:67:BD:D0:23:6E:BB:86
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/vDks2YI1rEKStins_2e90CNuu4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.68.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:66:00:5d:fb:8e:b7:0e:d7:5c:12:e5:bd:b1:7e:da:d0:a8:
6b:80:20:24:78:1a:42:23:2d:f9:2e:ac:b9:da:75:18:6d:37:
e9:75:9b:d5:dc:c1:1f:68:63:5c:0a:55:e5:f4:50:37:e3:6e:
f1:b5:73:8b:d9:61:2a:05:79:46:01:d5:fb:61:cb:70:26:90:
48:4d:bb:ff:6e:7a:10:74:58:e9:e0:c3:78:b5:41:9a:4d:4b:
58:34:bf:5f:4d:8f:69:8c:60:4d:85:bf:9b:26:cf:9a:c4:b2:
fe:d4:99:67:40:3f:7d:d8:db:8c:71:ee:f1:34:27:d1:cf:6b:
15:e0:a0:49:6d:f7:a3:ef:66:92:02:bd:79:f1:d2:22:fd:29:
f8:2a:a4:e9:d0:fa:fb:d6:5f:14:c0:c5:6f:63:72:2f:8e:93:
30:0f:15:e6:92:32:3f:16:ab:64:bb:48:e3:e6:7e:33:42:dd:
ad:b0:50:f2:3c:af:6a:dc:0b:ec:cf:bf:b0:f5:92:7a:f3:e5:
16:e0:f4:82:9c:d0:68:e5:ad:fe:32:60:6b:7c:ab:eb:31:ac:
a2:35:f4:58:5f:cc:65:eb:4d:d8:5b:36:c7:44:e4:7f:d7:94:
72:56:ae:73:be:e1:1d:21:72:da:58:69:c4:3a:ae:7b:b9:12:
7b:dc:77:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org