Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/E_kamGJFobXdqPfTMFIqmAwpysQ.roa
File: E_kamGJFobXdqPfTMFIqmAwpysQ.roa (raw, json)
Hash identifier: tEKHoQgcX6OWiXyWiZSKyaNlrgpETz1iVUySpzI0yCs=
Subject key identifier: 13:F9:1A:98:62:45:A1:B5:DD:A8:F7:D3:30:52:2A:98:0C:29:CA:C4
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 01856E79054C2F88A3B1FD43F46FF673A800
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/E_kamGJFobXdqPfTMFIqmAwpysQ.roa
Signing time: Sun 01 Jan 2023 17:55:03 +0000
ROA not before: Sun 01 Jan 2023 17:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20454
IP address blocks: 176.111.218.0/24 maxlen: 24
147.189.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:79:05:4c:2f:88:a3:b1:fd:43:f4:6f:f6:73:a8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 17:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13f91a986245a1b5dda8f7d330522a980c29cac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:3a:9c:31:c0:9e:be:24:a9:5b:b5:d9:5a:0c:
66:dd:41:9c:02:c3:de:41:dc:ca:f6:78:d4:a9:83:
f9:8a:25:53:5b:9a:2d:0a:ad:ef:9f:34:f6:49:6d:
46:b8:52:a7:5c:df:3e:90:7d:83:fa:9e:db:32:02:
35:66:38:14:ba:fb:97:da:4a:fb:33:0d:dc:a7:6b:
fc:5b:ee:c3:f7:2d:2f:59:76:6b:71:92:25:5e:7f:
78:16:89:bc:00:aa:46:aa:9a:9a:5b:61:ba:dc:81:
a8:ff:f4:6d:6a:c8:02:68:7a:4a:2e:6b:e5:ab:9f:
ce:29:ea:42:1d:a0:dd:32:b6:8c:86:3d:80:00:1c:
2b:dd:64:1d:38:71:12:24:7c:95:79:c4:61:ad:be:
7d:4a:a8:f9:91:c7:7b:c3:59:7e:1e:4d:42:46:23:
77:ea:75:17:99:06:ed:e6:07:c0:89:5f:50:2b:80:
50:08:b5:76:17:b4:4f:a5:43:f0:1d:bb:18:bc:5e:
3a:74:2c:c0:65:b6:2a:2b:03:5a:6b:ef:c8:5f:56:
33:83:8c:67:c4:10:f0:04:42:80:44:1d:04:a9:3e:
89:33:04:af:31:d6:22:5c:5f:78:38:db:66:a3:b6:
c8:7a:7b:2a:ad:32:00:65:2c:7f:55:c3:30:29:b5:
66:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:F9:1A:98:62:45:A1:B5:DD:A8:F7:D3:30:52:2A:98:0C:29:CA:C4
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/E_kamGJFobXdqPfTMFIqmAwpysQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.129.0/24
176.111.218.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:0b:57:8a:a5:e7:c3:2c:39:eb:b8:d4:40:03:b1:f8:45:f4:
17:81:c3:62:c4:40:ce:4b:ef:d6:0a:c0:19:e4:db:a3:97:c7:
35:c6:9b:89:fe:5c:d0:7e:46:35:a6:03:68:67:34:1d:59:1e:
47:c0:50:db:9a:b9:ce:67:bd:43:04:4e:0e:ac:5b:f3:90:c1:
8c:87:98:32:34:3e:2a:8b:91:a1:d9:9c:cf:ce:8e:cb:cf:aa:
77:05:1e:30:71:c4:6e:7d:d5:ab:fa:9c:fd:3e:d5:59:c3:80:
47:71:7b:06:39:1b:ad:92:6e:72:5b:16:65:27:39:de:05:bf:
ff:73:91:51:2f:71:c2:87:d7:fa:6f:ba:3b:32:66:cd:fd:4c:
fa:a8:90:d7:d8:23:8f:ea:21:b3:37:af:a9:e3:df:ff:b1:ec:
70:03:12:b8:19:9b:6d:67:1c:92:5e:26:53:d8:5e:4e:e3:a5:
71:1f:a3:b6:02:36:43:be:7a:f1:b1:e2:b5:2a:bc:28:39:e3:
7f:4d:05:01:9a:31:6f:bb:d2:13:ca:c9:48:fd:c9:9c:75:d7:
0c:cf:ff:26:91:79:10:42:45:e2:ed:98:d8:67:d2:b7:d8:7e:
5a:31:c6:e4:9c:f5:e2:26:0b:38:2c:a4:d0:c8:41:4a:5b:d6:
d9:17:11:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:08 2024 by rpki-client on console-ams.rpki-client.org