Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ei5ZZ7YTPbD4zhOsk7I22_rEPn0.roa
File: ei5ZZ7YTPbD4zhOsk7I22_rEPn0.roa (raw, json)
Hash identifier: pb9Z8rFgLhThKPb0FmvoByQiOZKISG7Bc7EIEf3uBVg=
Subject key identifier: 7A:2E:59:67:B6:13:3D:B0:F8:CE:13:AC:93:B2:36:DB:FA:C4:3E:7D
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018CE33D3494AF8647770BD972DB1CD175FB
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ei5ZZ7YTPbD4zhOsk7I22_rEPn0.roa
Signing time: Sun 07 Jan 2024 09:24:48 +0000
ROA not before: Sun 07 Jan 2024 09:24:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152179
IP address blocks: 149.126.92.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 19:37:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e3:3d:34:94:af:86:47:77:0b:d9:72:db:1c:d1:75:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 7 09:24:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a2e5967b6133db0f8ce13ac93b236dbfac43e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d6:77:86:43:b3:94:c2:ec:14:36:24:4d:a2:
bc:86:fc:d2:23:15:02:16:45:d4:32:5b:96:b2:f3:
c2:1c:a7:cd:6f:9b:eb:50:64:ef:30:97:e9:db:f8:
68:7d:6f:3e:84:62:10:ba:db:a9:29:c2:b3:06:74:
e6:83:32:bd:61:5c:6c:54:8e:17:50:c6:5c:5c:f6:
b6:fc:0a:74:33:1a:b1:34:e9:5b:f5:cb:fe:5d:6b:
b3:67:bb:75:c6:cb:dd:2a:d2:7b:26:9b:df:5f:3e:
7e:b2:a5:8b:90:d0:94:04:08:66:55:3b:02:35:0a:
92:b6:27:a7:d3:d3:2d:70:b5:a3:a3:67:8f:1b:e5:
97:60:15:10:57:9c:13:99:f7:26:84:5c:1e:7b:ba:
e5:de:85:80:30:b5:c9:53:26:7d:90:16:d2:34:ee:
5a:9e:5e:60:1e:e9:72:92:81:ba:e9:3e:78:5b:43:
fc:2d:ba:27:5f:62:8b:bc:9a:d2:17:85:56:96:12:
09:c8:18:ed:97:3f:29:48:b3:d3:31:a5:33:a7:9f:
42:dd:d8:4b:98:4f:d7:0e:bf:26:f6:3d:47:8d:8a:
89:c1:7d:b6:c6:8a:74:ec:27:8d:0f:10:fc:ba:3f:
0b:11:46:4e:53:13:be:e2:ec:29:3c:f7:13:94:ed:
c2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:2E:59:67:B6:13:3D:B0:F8:CE:13:AC:93:B2:36:DB:FA:C4:3E:7D
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/ei5ZZ7YTPbD4zhOsk7I22_rEPn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.126.92.0/22
Signature Algorithm: sha256WithRSAEncryption
08:1f:f6:65:5a:44:8e:cd:23:10:bb:94:e9:c7:68:82:a0:d6:
6f:68:bd:be:59:a6:78:d2:85:a7:b1:d1:84:b2:e2:5e:41:5c:
c5:7e:f5:13:3f:2e:50:8e:9e:91:2d:2d:66:8e:0f:82:15:12:
09:ec:84:f6:53:ac:ae:73:b1:88:3a:24:9f:5c:d5:00:1a:6c:
e5:12:93:6c:41:f2:3b:e5:c7:cf:ff:6b:89:b1:70:45:a7:a8:
91:de:4c:87:45:b4:2f:96:22:bf:a8:b8:51:49:5f:3b:3a:c3:
17:b5:11:07:2b:95:4b:c1:a7:b9:de:02:13:25:ca:c0:d9:f2:
e2:91:ce:bf:97:b3:8d:58:44:28:48:bc:08:73:48:66:85:14:
14:a4:3e:73:71:cf:72:aa:fd:6c:4d:d3:02:3b:49:5e:fd:19:
16:b1:f0:35:00:89:22:2c:f7:fc:58:41:8f:64:24:e8:6b:11:
df:14:4a:44:d3:5c:32:18:45:1f:43:98:45:73:61:73:32:de:
8a:bd:0e:a6:25:9f:a1:c1:a2:8c:c4:ac:90:3f:fe:e5:9a:57:
0b:40:d4:ae:5c:18:3b:74:4a:e0:77:4c:c7:30:9b:b9:23:cc:
5e:14:9d:44:70:60:6c:52:d7:cf:fe:b3:8d:2e:9f:98:5a:d9:
a9:ca:8d:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org