Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/v13Zino9FRx8IY0NSb_scFt18qw.roa
File: v13Zino9FRx8IY0NSb_scFt18qw.roa (raw, json)
Hash identifier: PsmmVokqHtK+4UTpi+gCMpCsT0ADL3T6y8MsKPzOYBI=
Subject key identifier: BF:5D:D9:8A:7A:3D:15:1C:7C:21:8D:0D:49:BF:EC:70:5B:75:F2:AC
Certificate issuer: /CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Certificate serial: 01856C4A4EE92086ADFFD5C5D967BF075C15
Authority key identifier: A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/v13Zino9FRx8IY0NSb_scFt18qw.roa
Signing time: Sun 01 Jan 2023 07:44:47 +0000
ROA not before: Sun 01 Jan 2023 07:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213159
IP address blocks: 147.78.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:4e:e9:20:86:ad:ff:d5:c5:d9:67:bf:07:5c:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Validity
Not Before: Jan 1 07:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf5dd98a7a3d151c7c218d0d49bfec705b75f2ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a8:78:eb:58:18:db:4d:7d:80:b1:cf:dc:c7:
f6:37:93:59:55:cb:39:ab:df:2c:c0:cb:cc:1e:c8:
19:3e:4b:be:67:0b:3b:e8:6c:b0:54:23:f4:a6:f9:
97:92:51:b9:ee:24:f1:21:5b:15:f2:4c:27:4e:69:
c5:2d:8e:c3:e4:d5:45:6c:53:e5:39:79:6d:53:30:
f5:f3:a2:52:da:05:3c:81:df:81:fb:6a:e4:a2:e2:
67:ff:ec:b8:cf:ce:7b:ed:e9:14:86:a2:b0:e9:a4:
d6:8c:81:77:48:4a:b8:21:22:49:fc:9f:42:fd:65:
7a:3e:0d:2f:ad:4f:6d:25:70:a8:56:06:c3:ee:f1:
10:e1:53:e3:fa:f1:f2:bb:bc:c6:3e:1b:c0:af:d3:
07:24:4b:b9:bd:8d:b9:53:8f:45:1f:c1:f0:fa:22:
7f:99:b3:56:8b:8c:2f:e3:d2:09:1d:2c:d3:1e:4c:
ea:fb:50:23:aa:cd:cc:fb:f3:9d:2b:1b:c0:80:3b:
53:21:12:07:c3:74:07:c8:35:ef:42:e4:1e:23:e8:
0a:90:22:4a:7b:b9:9c:3c:95:cf:e8:9a:6c:3e:f3:
a7:29:ec:0b:91:e5:2d:5e:4d:3c:f4:4f:b3:2c:c8:
4c:e8:a0:a9:22:15:fd:61:6b:b2:b2:28:ba:bf:48:
dc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:5D:D9:8A:7A:3D:15:1C:7C:21:8D:0D:49:BF:EC:70:5B:75:F2:AC
X509v3 Authority Key Identifier:
keyid:A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/v13Zino9FRx8IY0NSb_scFt18qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/preJsy4W6d0vcFExGdx36mH_Hgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.119.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:39:d6:eb:6d:91:3b:d8:5d:47:8c:1e:bf:cc:a6:66:ae:b4:
bd:72:0a:89:1b:d0:9e:89:0a:ab:39:7b:63:15:d5:74:ce:9c:
b2:0b:d7:bb:4d:d0:7a:51:9e:14:b3:89:86:87:b7:7f:e4:3c:
98:68:a3:e3:77:29:e6:92:5b:54:94:f0:22:f4:67:a2:9b:24:
30:7f:fd:f3:2e:d0:18:6a:33:31:88:dd:d7:8e:82:8e:70:ad:
f9:42:54:91:63:f3:7c:1e:9d:59:ec:01:8b:85:69:39:d8:dc:
50:23:40:ea:44:7b:5f:a4:18:e6:36:db:bb:9c:1c:7b:4f:5a:
1b:59:50:bf:0b:52:aa:b9:35:06:9d:d5:fd:79:27:ba:4b:9c:
d6:e0:5a:4b:cc:a9:82:16:0b:64:2f:fb:79:4e:d1:4b:da:e3:
23:cb:cf:4e:f7:91:9a:62:24:70:fe:a2:e0:ac:d3:f3:cc:68:
7e:fc:43:41:63:e7:d6:63:d9:1a:95:28:ab:c1:35:45:a2:db:
fe:98:b6:9c:7e:c2:ae:be:bc:2a:46:b5:a7:13:c8:06:53:ff:
cb:3a:78:4c:b9:2f:9e:5c:b9:da:bf:96:01:35:b1:83:58:5b:
b7:55:11:32:99:82:1d:aa:e3:eb:29:1d:b8:7a:ad:5e:8b:c5:
f1:86:2d:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:30 2024 by rpki-client on console-ams.rpki-client.org