Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/8abMRjlFgxDTL_8C6WiFmG3X6_c.roa
File: 8abMRjlFgxDTL_8C6WiFmG3X6_c.roa (raw, json)
Hash identifier: C+0lzrTGpG0iyvyyXWhfYSH2tLvTIfqSUsqTbN80J0s=
Subject key identifier: F1:A6:CC:46:39:45:83:10:D3:2F:FF:02:E9:68:85:98:6D:D7:EB:F7
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 018CF3598A8E0634B268C2B0430EBEF768EB
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/8abMRjlFgxDTL_8C6WiFmG3X6_c.roa
Signing time: Wed 10 Jan 2024 12:29:40 +0000
ROA not before: Wed 10 Jan 2024 12:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 141.226.246.0/24 maxlen: 24
213.137.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 05:41:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:59:8a:8e:06:34:b2:68:c2:b0:43:0e:be:f7:68:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Jan 10 12:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1a6cc4639458310d32fff02e96885986dd7ebf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:48:94:94:9d:a1:7a:07:be:db:7b:2a:55:0f:
62:16:11:8f:1b:f9:36:37:b5:22:14:65:3b:a9:e8:
8e:2c:ad:cd:d7:83:18:81:b5:9c:88:82:bb:c4:71:
90:e5:d8:bb:08:51:14:8d:1a:6a:df:89:bc:e9:87:
82:47:ec:3a:84:19:45:3a:e3:02:17:d5:fc:98:0c:
69:c2:bf:3d:80:08:e4:d8:42:1e:7d:bf:4e:3c:da:
15:48:18:8c:1f:4a:21:cb:41:96:b7:30:fe:95:a8:
b1:3e:1f:ec:bc:5b:10:d9:31:b5:95:23:bb:94:56:
07:87:71:16:8b:b4:73:60:e6:5f:ab:43:0b:0c:a6:
e3:ab:d7:2b:40:8d:41:6c:55:b1:45:b5:79:af:55:
a4:61:ca:7c:ab:96:64:92:bc:74:04:8f:44:81:e2:
16:3b:59:25:06:8b:86:36:92:7c:7f:4f:81:43:77:
05:dc:90:de:84:24:6c:78:94:64:05:df:0a:50:ad:
54:4b:48:59:09:f2:16:42:9f:03:e0:6d:f2:bc:54:
15:10:58:2c:e3:af:6c:fe:d8:74:d3:0b:8c:a3:78:
f0:29:1b:a5:bb:2c:3d:a4:5f:8c:c4:0a:6c:e2:29:
ae:03:1d:68:81:e9:71:d4:33:47:92:15:2b:b1:ca:
9b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A6:CC:46:39:45:83:10:D3:2F:FF:02:E9:68:85:98:6D:D7:EB:F7
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/8abMRjlFgxDTL_8C6WiFmG3X6_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.246.0/24
213.137.83.0/24
Signature Algorithm: sha256WithRSAEncryption
76:77:f2:11:8f:d9:d0:48:ed:1a:4b:75:e5:8c:58:d1:72:27:
a3:08:76:b0:31:2a:aa:d4:48:b9:ab:5c:46:87:bc:62:38:cf:
db:58:22:e6:b7:5f:23:e3:3d:be:57:aa:c1:23:94:e3:bb:82:
0b:80:fc:6d:b4:bf:cf:34:cf:19:48:45:1b:76:6f:05:13:a2:
74:b5:ed:0c:71:93:c5:f3:2a:72:56:b7:27:64:99:c8:06:07:
61:f2:92:12:43:fe:ff:ac:64:b9:f2:e1:11:76:8d:6e:0c:14:
dc:83:24:d9:87:fa:df:02:82:dd:75:20:bf:ac:24:df:da:46:
45:37:5e:26:46:07:ce:7b:6e:5a:4b:fc:cb:c2:9a:2f:a1:2d:
81:7f:0e:57:da:1c:2b:12:58:86:d3:29:18:63:74:69:ef:4f:
d1:d1:94:7a:be:58:ae:dd:27:5d:95:85:47:7d:8f:4f:ff:77:
33:c3:04:2a:e7:6a:24:87:c0:d1:99:cf:d1:85:94:dd:88:e5:
78:86:53:ae:46:4f:1d:01:3d:78:50:fb:e2:3d:07:47:ec:5a:
02:39:47:86:7d:e2:43:c8:58:9b:98:d7:d9:77:87:dd:c5:77:
38:ad:eb:1e:4e:6f:72:44:6b:de:c0:55:79:83:12:5b:2e:a5:
3e:85:fb:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:06 2024 by rpki-client on console-fra.rpki-client.org