Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ebjZurbICv7ntiEbMJiwSUAE-9Q.roa
File: ebjZurbICv7ntiEbMJiwSUAE-9Q.roa (raw, json)
Hash identifier: RBQvmrBoOeBXHbl/aL1ZosqJv/PWet0l+dD+qyrsiq0=
Subject key identifier: 79:B8:D9:BA:B6:C8:0A:FE:E7:B6:21:1B:30:98:B0:49:40:04:FB:D4
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0185966DD73D1B75CF40445359640DDAF9F4
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ebjZurbICv7ntiEbMJiwSUAE-9Q.roa
Signing time: Mon 09 Jan 2023 12:07:38 +0000
ROA not before: Mon 09 Jan 2023 12:07:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 86.107.168.0/24 maxlen: 24
94.177.150.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Jan 2023 07:03:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:6d:d7:3d:1b:75:cf:40:44:53:59:64:0d:da:f9:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 9 12:07:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79b8d9bab6c80afee7b6211b3098b0494004fbd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b5:0f:49:a5:1d:5a:97:90:06:c7:0d:71:28:
3c:76:a9:7b:81:e1:1e:07:72:10:18:23:8d:93:3d:
38:39:a6:b1:fc:8b:1a:72:f8:78:d2:5c:0b:d5:47:
5f:4b:b0:a3:32:3e:db:76:95:70:1d:a0:e1:28:bb:
83:f4:69:9f:40:07:13:2c:57:e6:8f:cd:a6:73:29:
ca:32:6a:4b:b7:ea:e2:93:1d:0f:40:75:c5:1f:09:
f1:94:92:cc:10:89:1f:1c:75:42:23:87:a7:30:f6:
d3:92:d4:55:ff:a9:81:2e:33:cb:72:25:8b:f3:b6:
b9:65:d1:85:11:0f:9d:4b:91:1b:10:2b:d2:7e:ac:
f3:e7:14:e9:bd:44:7c:a1:a2:d3:d9:82:dd:fa:15:
ce:78:4f:7c:82:00:c0:e7:d4:12:d1:88:ea:40:43:
b9:5a:2a:cf:62:df:86:7d:d4:ec:94:85:8a:53:bc:
b6:df:11:f6:e3:6f:31:42:68:69:91:37:a1:1e:04:
70:40:1f:13:7e:c7:9d:49:c6:3f:e8:40:88:b2:75:
4d:0d:77:42:4c:18:b8:b6:07:29:f2:63:24:61:17:
bf:73:f6:d9:06:64:3d:2f:1d:ce:c2:af:37:9d:27:
7a:af:31:0c:08:e3:eb:2e:cc:4e:ea:ef:73:a0:0f:
94:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B8:D9:BA:B6:C8:0A:FE:E7:B6:21:1B:30:98:B0:49:40:04:FB:D4
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/ebjZurbICv7ntiEbMJiwSUAE-9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
86.107.168.0/24
94.177.150.0/24
Signature Algorithm: sha256WithRSAEncryption
36:12:ca:c6:8c:bd:5c:2d:f1:76:0b:ef:e9:c7:0a:62:bb:ca:
53:f3:8e:f8:63:43:92:84:7a:48:05:b7:46:cf:6d:0b:bc:cd:
c6:a0:85:40:9e:09:4d:e5:b3:13:d7:29:fa:10:95:30:f4:f4:
5d:c2:09:70:54:95:18:3e:fc:d5:ef:6e:64:2f:31:d1:59:22:
84:7d:b9:4e:6a:38:eb:06:54:0f:f6:47:04:73:96:88:c8:f1:
b8:77:f5:1c:d0:13:79:af:38:0b:22:21:ba:40:96:90:40:0c:
75:8a:a0:57:9f:49:3f:d3:4d:8d:a0:86:f9:b2:69:4a:b6:95:
fb:f5:67:1a:97:56:77:51:cf:ef:11:80:2c:81:a0:4b:9e:d1:
14:37:4d:e4:45:ef:1d:26:5e:0f:67:53:1c:1b:ef:f5:43:d3:
ff:72:49:11:9e:c9:e9:25:1a:ae:30:bd:80:12:f0:77:d4:14:
34:a3:77:dd:26:b8:56:e9:70:85:75:6b:dc:c3:d9:04:76:d5:
b3:6e:e0:13:ea:ed:63:00:1e:95:55:80:6f:58:2a:82:60:a7:
70:15:6c:f4:3b:66:42:1b:07:ec:5f:fe:bd:c2:a9:f1:be:c1:
0a:d0:e6:a7:0f:e5:53:b5:a4:92:dd:5b:d9:e4:1b:99:37:19:
20:57:22:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org