Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/EMnz5o5K5g7M4pEMNCNezmtaYSM.roa
File: EMnz5o5K5g7M4pEMNCNezmtaYSM.roa (raw, json)
Hash identifier: IAwbmguMgFrWBtdV8UflFCts31EKLSk2nFq48lbxOzM=
Subject key identifier: 10:C9:F3:E6:8E:4A:E6:0E:CC:E2:91:0C:34:23:5E:CE:6B:5A:61:23
Certificate issuer: /CN=13ea78b28f054f72f5226ae3ec454980ed2a10c9
Certificate serial: 0189B2E8ECDC0D928F29758CB126924FE7F9
Authority key identifier: 13:EA:78:B2:8F:05:4F:72:F5:22:6A:E3:EC:45:49:80:ED:2A:10:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-p4so8FT3L1Imrj7EVJgO0qEMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/EMnz5o5K5g7M4pEMNCNezmtaYSM.roa
Signing time: Tue 01 Aug 2023 21:02:36 +0000
ROA not before: Tue 01 Aug 2023 21:02:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8456
IP address blocks: 161.9.144.0/21 maxlen: 24
161.9.147.0/24 maxlen: 24
161.9.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b2:e8:ec:dc:0d:92:8f:29:75:8c:b1:26:92:4f:e7:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ea78b28f054f72f5226ae3ec454980ed2a10c9
Validity
Not Before: Aug 1 21:02:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10c9f3e68e4ae60ecce2910c34235ece6b5a6123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:aa:d5:f6:34:14:81:d7:ce:c8:da:7c:59:70:
77:5a:d1:02:fa:e3:84:71:42:21:db:f6:af:27:f2:
a8:56:8c:67:b2:4e:41:b0:66:4e:cb:35:70:18:a7:
b6:63:1c:14:90:79:29:85:ba:26:fe:71:4a:a5:04:
12:0e:c5:39:ec:6e:c0:2c:0f:76:36:d7:7f:41:b8:
46:e9:20:1d:7a:cf:3e:b5:09:a9:b5:85:30:1d:69:
12:50:75:0b:8c:6e:cd:76:ca:00:f0:6c:f0:2c:c8:
8e:56:b7:d2:f1:dd:b8:84:77:81:7a:43:29:6c:3a:
50:5c:14:3b:3e:40:f6:e4:03:57:16:4a:13:e4:c5:
d4:2c:2c:eb:8a:fe:90:7f:5d:84:13:42:3c:9c:97:
58:44:c2:9e:93:5b:3e:02:e6:58:f7:cd:8d:27:6a:
8d:91:3e:bb:ec:f0:08:1d:6d:d8:80:97:32:6f:ac:
5f:4d:94:9a:35:a6:4e:23:a9:88:32:db:bd:18:16:
a2:1e:b2:ac:0a:20:0f:22:54:53:15:1c:91:c5:25:
d0:8c:c0:e0:68:0a:0b:be:db:69:6d:0d:bf:6b:6e:
8b:ca:62:85:bb:21:bf:68:58:95:68:0e:1b:22:97:
75:6d:27:74:91:4e:a3:c1:ca:35:bb:e2:9e:12:4b:
06:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C9:F3:E6:8E:4A:E6:0E:CC:E2:91:0C:34:23:5E:CE:6B:5A:61:23
X509v3 Authority Key Identifier:
keyid:13:EA:78:B2:8F:05:4F:72:F5:22:6A:E3:EC:45:49:80:ED:2A:10:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-p4so8FT3L1Imrj7EVJgO0qEMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/EMnz5o5K5g7M4pEMNCNezmtaYSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/E-p4so8FT3L1Imrj7EVJgO0qEMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.9.144.0/21
161.9.154.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:96:67:88:a5:de:98:52:c5:a8:0c:35:84:00:06:b5:4b:68:
2c:ce:82:32:ff:1a:8e:fd:f3:90:83:d1:5f:3d:7c:81:28:a3:
2f:e3:6d:55:bf:c0:c8:4e:93:18:92:14:a3:ab:02:58:a1:5c:
a8:32:0c:0d:43:01:c1:e4:01:ca:a1:22:c6:f2:49:90:d0:ca:
59:55:08:bd:9b:b7:62:d6:58:11:9e:42:28:09:ce:a7:f9:5e:
c6:c9:a6:6a:0e:89:a9:69:60:16:03:18:a2:a3:1e:22:39:0a:
b3:c6:1d:f5:cb:db:39:15:4e:45:e5:84:45:ea:7c:69:29:d6:
9f:95:9d:f6:76:f3:3d:c9:47:02:5f:3b:29:a1:48:81:2e:1d:
5b:c6:83:d6:2f:35:60:70:27:7b:af:21:09:eb:e1:b6:df:1e:
d7:ab:75:29:44:53:48:1e:60:66:dd:be:ff:6b:82:fb:e1:93:
dd:2a:67:e4:32:ca:3e:24:3b:cd:7d:11:e7:fb:2c:81:b8:70:
3c:a5:ea:fc:d6:99:50:93:cf:18:b0:60:e5:05:8b:62:87:c5:
28:8f:00:17:5e:ad:22:31:e2:b7:84:5f:f2:c6:e3:9a:71:fe:
2d:8e:9c:34:3c:12:67:82:cd:8e:01:92:3b:28:b3:fb:b8:94:
d4:87:c5:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:47 2024 by rpki-client on console-fra.rpki-client.org