Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/eMeW4GoO1lFhl2YUzgKu_0h1kKs.roa
File: eMeW4GoO1lFhl2YUzgKu_0h1kKs.roa (raw, json)
Hash identifier: plnKWE56rayTsdlUKlwIlH4kdXSOwFO6FmJVfcfDbVI=
Subject key identifier: 78:C7:96:E0:6A:0E:D6:51:61:97:66:14:CE:02:AE:FF:48:75:90:AB
Certificate issuer: /CN=e4c86da3f483246518d368034bc86113906a55a3
Certificate serial: 01927AB7B295BF7AD7302A0B90D6B5F4FD1A
Authority key identifier: E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/eMeW4GoO1lFhl2YUzgKu_0h1kKs.roa
Signing time: Fri 11 Oct 2024 08:35:12 +0000
ROA not before: Fri 11 Oct 2024 08:35:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3320
IP address blocks: 185.10.120.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 12:08:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7a:b7:b2:95:bf:7a:d7:30:2a:0b:90:d6:b5:f4:fd:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4c86da3f483246518d368034bc86113906a55a3
Validity
Not Before: Oct 11 08:35:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78c796e06a0ed65161976614ce02aeff487590ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:39:dc:47:b9:60:6c:ce:ab:05:1c:85:33:c6:
77:a9:25:ef:29:3a:58:5e:de:62:89:d4:74:7f:8a:
61:cc:66:ac:4f:86:71:99:d9:d1:46:1d:e8:69:05:
b9:98:c3:0a:86:7e:7c:d9:c6:f4:6d:06:cd:cd:7a:
26:f4:b3:46:b5:45:a7:91:fc:84:2d:5f:de:57:a9:
01:f6:bf:ef:d6:7f:5f:b1:65:72:b9:19:79:6f:60:
4e:4c:d3:25:c6:79:9b:7c:8e:54:7e:8a:52:65:ca:
43:63:ab:9f:31:c8:29:38:d7:20:de:83:44:19:43:
30:68:d2:08:db:64:cc:c2:28:35:b8:e1:bb:c7:7d:
c2:82:4e:d9:ef:32:24:b6:4d:f8:54:68:f8:ec:bd:
38:2b:1c:77:32:b7:36:4a:42:52:4f:2a:52:3b:da:
34:ce:7e:cd:ab:d0:94:22:17:61:1a:d1:a5:1e:36:
63:93:d3:1c:98:fa:3e:e6:77:f6:70:79:22:1b:94:
5b:9c:60:33:5a:35:68:34:e0:55:0f:88:aa:dd:3d:
ad:5c:be:58:87:29:0a:fa:74:73:6c:93:1f:f3:8e:
3e:ab:07:b4:81:ed:ed:88:a9:49:c3:a0:3c:3c:4f:
f4:c0:a9:b6:a8:d4:ff:ac:ee:dd:f9:c4:51:d7:e9:
29:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C7:96:E0:6A:0E:D6:51:61:97:66:14:CE:02:AE:FF:48:75:90:AB
X509v3 Authority Key Identifier:
keyid:E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/eMeW4GoO1lFhl2YUzgKu_0h1kKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/5Mhto_SDJGUY02gDS8hhE5BqVaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.120.0/23
Signature Algorithm: sha256WithRSAEncryption
00:73:2b:09:37:11:74:cd:aa:8b:3e:53:d4:61:f2:63:49:ac:
33:da:5f:43:9f:1a:17:61:0a:75:6e:6d:eb:ca:42:52:e2:55:
78:e7:c2:d8:b3:65:08:96:b5:11:aa:27:e3:66:8a:d9:42:db:
9c:99:65:b0:0c:ce:dc:01:12:50:93:74:ec:78:46:09:7f:25:
8c:7f:b5:47:25:f6:90:f9:d1:c6:db:7f:8a:ae:04:7f:8d:b6:
d5:c6:da:ae:65:04:6d:29:fb:fc:73:82:fa:8c:a9:9a:c6:22:
ee:9f:27:91:c2:dc:31:c5:6e:91:64:6f:dc:ee:24:02:81:72:
a8:b0:fd:64:ec:8d:95:68:f8:df:67:9f:21:d0:f4:80:ed:cd:
bf:06:42:b1:6a:df:4d:83:7f:04:28:74:1d:07:e5:67:e8:00:
4d:2c:c6:06:98:b6:9c:9d:d8:8b:e0:aa:2e:80:63:05:53:1c:
92:6c:62:b4:aa:33:d9:04:f2:06:df:7a:83:62:ee:fe:85:05:
5d:0b:a1:77:0a:f2:bd:5c:65:d8:c4:0b:fa:02:1a:77:28:e4:
ab:4d:43:b3:d8:21:a2:8a:da:e9:3d:ae:89:64:98:0d:ee:d2:
8d:5d:cc:25:98:fa:9f:32:9c:32:d3:7f:c7:f7:41:24:15:db:
46:27:2e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 17:24:45 2024 by rpki-client on console-fra.rpki-client.org