Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/499c41-945e-4da3-a498-9209f7b7ef81/1/78Mz0la_ju4BIRx28G_XWQMtqvc.roa
File: 78Mz0la_ju4BIRx28G_XWQMtqvc.roa (raw, json)
Hash identifier: hJHNN475AQjN8LYhrG7XDNRbyitacNiDT7dfegSncM8=
Subject key identifier: EF:C3:33:D2:56:BF:8E:EE:01:21:1C:76:F0:6F:D7:59:03:2D:AA:F7
Certificate issuer: /CN=c39bc30a748960b227a1bf26216067edd05c1a7d
Certificate serial: 018D3B85FDA83F6003F7A1C3D01DDCCE5022
Authority key identifier: C3:9B:C3:0A:74:89:60:B2:27:A1:BF:26:21:60:67:ED:D0:5C:1A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5vDCnSJYLInob8mIWBn7dBcGn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/499c41-945e-4da3-a498-9209f7b7ef81/1/78Mz0la_ju4BIRx28G_XWQMtqvc.roa
Signing time: Wed 24 Jan 2024 12:50:53 +0000
ROA not before: Wed 24 Jan 2024 12:50:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51683
IP address blocks: 31.40.241.0/24 maxlen: 24
185.115.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 09:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3b:85:fd:a8:3f:60:03:f7:a1:c3:d0:1d:dc:ce:50:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c39bc30a748960b227a1bf26216067edd05c1a7d
Validity
Not Before: Jan 24 12:50:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=efc333d256bf8eee01211c76f06fd759032daaf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:04:1c:99:b4:fb:60:bc:32:4d:e2:57:3f:08:
48:cc:0f:e1:6f:5b:6f:8a:94:ca:74:52:7d:4f:48:
9d:be:44:ba:33:3f:07:87:68:ae:56:dd:ee:7a:a0:
bf:b3:79:69:9b:5e:6b:7c:ce:4c:34:c4:16:43:56:
ad:69:0f:5a:be:bb:17:61:d3:81:0b:a2:6a:e0:46:
30:23:97:f0:61:a8:6d:0e:87:4c:c9:35:fe:3d:4e:
9d:7c:c3:4c:75:99:b5:d1:1e:b3:67:e7:f9:ec:57:
66:59:06:45:ba:b1:62:b1:26:4c:d1:a6:d1:48:b0:
7b:67:2f:63:f5:0e:86:7d:d7:02:77:84:06:4a:e3:
e1:93:1f:de:a0:f2:32:c7:7f:1b:62:d7:93:97:2d:
72:8a:a8:21:f2:d2:64:29:d0:5a:d4:4a:b0:a6:da:
27:05:f0:20:b5:19:8d:c5:2f:29:e4:dd:5e:d3:24:
d0:b3:0a:8c:99:de:b0:a9:78:42:02:c4:95:ec:02:
9a:b6:c3:cb:74:f5:e2:43:dd:ae:44:db:42:2c:cc:
c1:27:75:eb:31:0a:e8:c4:b7:e2:8d:4a:05:eb:c8:
df:e6:85:07:e1:4e:ae:04:03:a3:42:43:18:88:ce:
fa:32:a4:30:c5:ce:90:62:23:18:65:33:76:9a:9f:
c7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C3:33:D2:56:BF:8E:EE:01:21:1C:76:F0:6F:D7:59:03:2D:AA:F7
X509v3 Authority Key Identifier:
keyid:C3:9B:C3:0A:74:89:60:B2:27:A1:BF:26:21:60:67:ED:D0:5C:1A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5vDCnSJYLInob8mIWBn7dBcGn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/499c41-945e-4da3-a498-9209f7b7ef81/1/78Mz0la_ju4BIRx28G_XWQMtqvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/499c41-945e-4da3-a498-9209f7b7ef81/1/w5vDCnSJYLInob8mIWBn7dBcGn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.241.0/24
185.115.209.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:05:ef:b2:a6:fd:20:bd:11:65:0e:38:bd:1e:0f:e2:df:b7:
30:b7:3a:9d:4b:2d:22:ce:bc:d4:9a:dc:01:b7:69:00:c5:e8:
36:fb:55:b4:7b:1e:4a:be:95:63:ec:7a:f4:01:87:ad:23:e1:
08:ab:3e:f7:a6:45:8f:b4:f4:87:b8:60:29:04:1c:25:9c:81:
6a:29:fa:d5:10:9a:97:fd:7a:32:9f:b7:ec:b9:97:d2:a3:2b:
c6:10:85:83:cc:9b:71:72:a3:5b:7d:f3:14:46:d4:c7:87:af:
8b:92:47:1f:f4:46:02:7a:1e:5b:cf:b0:c1:51:54:85:63:fd:
ba:1f:95:ec:b4:0f:1f:0d:48:b9:43:67:45:cf:8e:be:c8:16:
87:f0:9d:a0:2b:bc:5d:d1:72:fd:03:95:d4:52:71:9a:8a:77:
b9:68:99:69:3a:85:ee:1a:1f:eb:7a:72:70:61:40:d0:0f:22:
ce:c2:64:24:35:53:83:03:de:01:aa:e5:0e:1b:e8:53:06:6b:
9b:19:e4:1c:1d:37:ea:ce:68:6c:ae:78:58:6d:83:e7:f4:d9:
1f:b2:3e:37:ea:fb:a1:a2:3f:88:3d:7f:0c:32:22:90:11:4f:
3c:ac:b8:96:b5:e6:16:77:c8:e7:72:a6:cb:c7:f0:46:2b:7c:
bb:91:32:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 13:29:06 2024 by rpki-client on console-fra.rpki-client.org