Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/lAhTs4eN5GCdlLvZHPW7KPKgiKQ.roa
File: lAhTs4eN5GCdlLvZHPW7KPKgiKQ.roa (raw, json)
Hash identifier: TVNf7iLvG1nLcXN54wmgNrubJ7uOqoIDww9eY52XG6I=
Subject key identifier: 94:08:53:B3:87:8D:E4:60:9D:94:BB:D9:1C:F5:BB:28:F2:A0:88:A4
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 0191A9FD1AD2C9AC65989D721845474B6DC7
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/lAhTs4eN5GCdlLvZHPW7KPKgiKQ.roa
Signing time: Sat 31 Aug 2024 19:50:22 +0000
ROA not before: Sat 31 Aug 2024 19:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42994
IP address blocks: 141.226.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 13:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a9:fd:1a:d2:c9:ac:65:98:9d:72:18:45:47:4b:6d:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Aug 31 19:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=940853b3878de4609d94bbd91cf5bb28f2a088a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dd:0c:dd:f5:ef:d4:40:3e:ec:6c:41:c1:39:
b3:2b:94:8b:30:20:a4:06:1b:6b:5c:b7:5c:9c:e9:
3b:7e:71:38:c6:ba:ba:4c:3b:91:04:b7:ac:6c:7f:
af:2e:fd:8d:d6:a9:29:d2:94:7b:e6:83:72:a0:a3:
00:2c:c3:5a:ce:71:2d:b2:76:f1:07:34:e4:d5:48:
c2:9b:cb:95:c7:a7:5e:f3:d7:f7:d5:58:07:54:91:
88:ed:b2:da:00:0e:9e:f0:7f:1e:59:2e:cf:b6:cf:
06:4e:77:21:ae:f3:7e:6a:e8:07:88:8a:3d:44:2b:
24:5a:60:89:5e:c4:d0:16:9b:7d:a9:32:b6:f6:1d:
34:62:b1:0d:03:17:53:11:46:d6:25:7c:f2:16:1f:
44:ee:e6:6f:fd:d1:f6:e1:5e:2a:3a:5a:32:e4:eb:
48:21:e4:d7:6f:a9:da:27:c8:96:de:40:14:c9:cb:
40:f2:74:94:f4:b3:2e:66:51:50:85:05:9c:84:8b:
90:e7:0a:52:16:75:bd:37:fd:98:f2:21:6c:29:c1:
a2:21:19:b0:b4:ad:e9:b4:89:01:5a:cb:42:cc:f8:
7a:9e:4d:cb:10:5d:24:17:4e:32:0b:28:f8:93:8f:
df:65:f6:0d:ef:de:4f:8f:ae:93:76:b5:ea:95:35:
eb:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:08:53:B3:87:8D:E4:60:9D:94:BB:D9:1C:F5:BB:28:F2:A0:88:A4
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/lAhTs4eN5GCdlLvZHPW7KPKgiKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.242.0/24
Signature Algorithm: sha256WithRSAEncryption
63:77:80:58:cf:cd:73:1b:8f:8c:0d:db:d0:f5:36:5c:20:0a:
b8:72:ba:b6:a4:ea:da:4a:5b:a5:d8:1c:1c:3e:de:a1:dd:7f:
d7:87:dd:0e:77:fe:bd:8c:e4:4f:70:4d:6f:e3:bb:15:70:0e:
67:79:8d:cc:1d:d2:ab:0c:37:e3:2a:c1:3c:77:a4:02:01:c1:
8f:0e:37:95:07:fb:a6:0c:54:71:7c:2f:ed:4a:0a:0f:9e:7c:
38:78:b9:2f:5c:47:14:e3:8b:52:a5:a5:bd:12:5d:1b:33:a6:
f0:09:58:aa:ef:65:38:c5:4a:fd:91:52:33:d5:3d:ba:3d:48:
c7:8d:4a:79:12:07:33:32:c6:dc:7b:00:50:b0:84:1a:22:44:
ea:33:7c:58:43:0a:67:f5:6e:3b:a9:65:6d:17:4e:a6:5a:a1:
25:01:6f:05:56:60:8a:f2:89:1a:9b:2d:7b:d3:cc:fe:dd:38:
b7:b1:a2:15:a6:b8:42:d0:37:bb:1a:18:0d:af:f0:1c:da:db:
dd:e6:2d:1c:77:14:8b:ff:5f:03:8b:87:07:a6:b1:c1:15:f7:
4d:3e:63:b3:fd:82:ea:6d:2c:80:4c:46:ce:1f:c2:1f:95:b2:
8f:3c:d3:fb:be:14:c7:12:99:9c:2a:a7:a8:cc:4e:56:cf:c0:
42:cf:79:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 17:27:32 2024 by rpki-client on console-ams.rpki-client.org