Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/fvRlGhDDtnCIueXPoPzRn9H6KoQ.roa
File: fvRlGhDDtnCIueXPoPzRn9H6KoQ.roa (raw, json)
Hash identifier: Hg7DDtiFrnOrIu6WLd2CodxMCdq31RpmbPWhUMC9kVw=
Subject key identifier: 7E:F4:65:1A:10:C3:B6:70:88:B9:E5:CF:A0:FC:D1:9F:D1:FA:2A:84
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 018CC94CA39B041C8C496196564ACC980310
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/fvRlGhDDtnCIueXPoPzRn9H6KoQ.roa
Signing time: Tue 02 Jan 2024 08:31:32 +0000
ROA not before: Tue 02 Jan 2024 08:31:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 141.226.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 12:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:a3:9b:04:1c:8c:49:61:96:56:4a:cc:98:03:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Jan 2 08:31:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ef4651a10c3b67088b9e5cfa0fcd19fd1fa2a84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ed:c5:ec:92:49:c7:f0:c8:9a:14:74:d9:2e:
5e:0b:7f:f5:0d:8a:68:b2:a0:3e:e7:91:ff:24:ed:
99:22:51:3c:6f:31:89:8b:08:7c:8a:da:fa:89:e6:
3f:6b:59:6c:df:7d:92:ff:be:cf:d7:af:7f:f8:f6:
ec:53:52:66:6a:9d:db:79:0b:7f:18:7e:38:68:3c:
73:bb:0d:b4:a6:ed:ac:ad:a2:8c:52:f5:74:d2:a9:
0a:6f:ab:91:2a:90:60:86:3b:49:c6:f3:ba:ba:39:
d1:dc:fe:ae:02:b3:9e:69:ab:61:7c:eb:8f:fe:70:
2b:9c:f1:b1:39:a4:6f:d1:25:75:69:39:29:68:90:
42:63:6e:5d:36:57:aa:de:9f:34:0f:fb:6a:f9:e6:
53:51:81:17:c0:af:94:df:52:06:73:0f:52:f1:56:
b5:a1:fa:ac:25:88:0f:ca:e9:7f:ce:b7:af:bd:31:
81:fc:34:a7:2b:3f:df:75:9c:24:0d:ea:3e:35:90:
9a:d9:23:28:2d:11:1f:88:24:71:bd:78:ee:fe:70:
20:18:5f:c9:de:84:9a:5f:03:38:b0:f0:a9:7b:c9:
3f:7c:9e:f7:cf:63:3e:e6:13:10:df:fa:c4:a6:72:
b8:9f:b0:ca:bb:14:ad:38:a5:18:73:95:0b:1f:bc:
22:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F4:65:1A:10:C3:B6:70:88:B9:E5:CF:A0:FC:D1:9F:D1:FA:2A:84
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/fvRlGhDDtnCIueXPoPzRn9H6KoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.246.0/24
Signature Algorithm: sha256WithRSAEncryption
75:d2:df:f3:ac:92:b9:e6:d8:fd:2b:8a:83:1a:1f:f3:8f:c4:
74:a5:7d:ae:ae:43:12:12:35:67:9a:4f:c8:08:86:0a:b5:f0:
41:22:a2:29:f1:55:34:4b:95:43:73:2f:42:7e:05:ba:c2:37:
2c:bc:12:58:97:f2:a3:b4:a0:64:f2:81:97:31:f2:58:e3:2a:
87:9b:2a:b6:1f:40:df:b1:64:f0:fd:9e:f1:91:b5:af:b5:b6:
9e:74:6d:d4:3b:04:41:63:e1:e1:01:5f:72:9a:cb:5f:d2:b0:
76:37:9c:6d:49:7e:5d:3b:a4:48:dd:d8:8c:1a:af:3e:00:59:
d2:1b:99:81:b8:a2:36:da:ba:5f:40:f3:8b:ec:90:e9:a6:1f:
f2:4e:7e:4c:f7:5a:41:ea:23:73:52:a0:09:cf:ab:03:f6:ef:
ba:58:8d:02:26:2a:5d:a8:83:37:4f:68:13:fc:60:b6:d0:ce:
e0:99:67:03:ef:31:5a:97:dd:18:f1:7b:71:94:6c:31:12:4a:
ee:06:7b:d3:ef:d0:99:69:3a:fc:1a:4b:7b:c0:2b:78:26:66:
55:c6:db:d4:21:20:45:5d:8c:9b:bd:90:9d:a9:77:75:95:f5:
0d:9d:30:96:dd:96:10:1e:9a:57:6b:82:65:28:68:5c:84:d7:
70:19:8f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:06 2024 by rpki-client on console-fra.rpki-client.org