Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/38b4de-68c4-4df8-9e0c-40ee5646c747/1/F0lJIWQ3VdK4ITtini8gF62Fu7o.roa
File: F0lJIWQ3VdK4ITtini8gF62Fu7o.roa (raw, json)
Hash identifier: T6SYd6P3yZ8PiFVXo+8XunlQkfkQhBRveyuSG1lRKrE=
Subject key identifier: 17:49:49:21:64:37:55:D2:B8:21:3B:62:9E:2F:20:17:AD:85:BB:BA
Certificate issuer: /CN=b1e526405d45174247994feedb2d7e5dd40793dd
Certificate serial: 0185724C94B3765B58E35DC8B2E02D954057
Authority key identifier: B1:E5:26:40:5D:45:17:42:47:99:4F:EE:DB:2D:7E:5D:D4:07:93:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/seUmQF1FF0JHmU_u2y1-XdQHk90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/38b4de-68c4-4df8-9e0c-40ee5646c747/1/F0lJIWQ3VdK4ITtini8gF62Fu7o.roa
Signing time: Mon 02 Jan 2023 11:44:59 +0000
ROA not before: Mon 02 Jan 2023 11:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208574
IP address blocks: 147.78.40.0/22 maxlen: 24
2a09:1cc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:94:b3:76:5b:58:e3:5d:c8:b2:e0:2d:95:40:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1e526405d45174247994feedb2d7e5dd40793dd
Validity
Not Before: Jan 2 11:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17494921643755d2b8213b629e2f2017ad85bbba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:df:83:14:67:56:c1:11:8c:d4:99:a8:6e:88:
65:21:57:ba:b1:88:f1:9a:fd:fb:49:d9:f8:f3:d9:
ff:ed:db:01:df:dd:0e:af:ba:a6:3f:4e:79:e7:5c:
8a:56:ce:cb:da:af:56:03:4d:10:a5:01:2f:68:4a:
9c:c4:84:a7:27:ac:2d:14:ca:3d:03:56:8c:19:51:
7f:d3:3c:9f:fc:4e:dc:9c:b7:37:f2:d7:1c:3d:04:
e6:a9:95:12:f0:33:97:2c:ce:33:3d:0c:6c:6b:bf:
7b:75:4b:17:b0:16:46:0e:95:e5:a7:f8:d9:b9:9f:
2e:84:70:f4:ff:3c:1f:67:f8:e4:51:c0:60:7f:24:
50:e4:8b:da:c2:b4:7a:2c:25:59:f1:b3:98:a1:5e:
58:5a:d1:f4:ee:a9:34:31:07:bc:be:65:5c:be:6f:
7e:68:97:99:a1:1d:85:0e:d6:ab:3b:6b:83:a2:21:
0c:5d:c2:46:67:4b:81:0b:e5:80:a6:bd:0f:09:48:
3d:e1:e6:26:1e:5b:e3:22:7f:bb:6f:8a:be:c3:dc:
d7:87:b1:15:76:07:ea:2b:e1:61:db:9a:d9:78:66:
c4:fd:07:bf:ab:4c:9e:0a:c2:8e:f0:b6:de:aa:37:
1b:51:99:46:e1:16:cf:88:1c:fc:2a:b9:37:5d:1f:
e3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:49:49:21:64:37:55:D2:B8:21:3B:62:9E:2F:20:17:AD:85:BB:BA
X509v3 Authority Key Identifier:
keyid:B1:E5:26:40:5D:45:17:42:47:99:4F:EE:DB:2D:7E:5D:D4:07:93:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/seUmQF1FF0JHmU_u2y1-XdQHk90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/38b4de-68c4-4df8-9e0c-40ee5646c747/1/F0lJIWQ3VdK4ITtini8gF62Fu7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/38b4de-68c4-4df8-9e0c-40ee5646c747/1/seUmQF1FF0JHmU_u2y1-XdQHk90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.40.0/22
IPv6:
2a09:1cc0::/29
Signature Algorithm: sha256WithRSAEncryption
8e:85:a6:aa:df:fb:45:68:3c:7b:78:77:07:1b:bb:15:19:d3:
c2:69:27:08:56:59:ba:fb:c1:8f:21:6b:7b:20:fb:41:fb:ad:
49:df:9e:7a:8c:8e:b8:89:3c:49:91:eb:be:99:eb:f0:d3:85:
0a:cd:c5:64:7a:73:c5:f7:df:f9:b2:e3:ce:f5:b3:3c:6d:c4:
3c:fc:66:50:6b:0a:c0:dd:30:5b:54:f1:1e:ed:7e:c8:4c:40:
e6:0f:2f:15:fe:92:dc:a9:2b:6a:92:3b:2e:e1:13:a0:51:70:
61:ae:3b:b4:09:13:83:d5:22:d5:1c:9b:49:51:3f:b0:7a:62:
59:75:32:37:89:19:5d:98:43:c4:6f:ec:f4:48:28:f4:0d:2b:
49:8e:09:e1:28:0f:ff:22:ac:8e:c4:a2:7d:e1:84:a4:54:a9:
3b:9f:44:b4:fe:89:e2:b9:38:4d:54:40:c1:4b:f6:9b:08:a9:
7c:97:83:62:f6:14:30:ca:05:7d:bd:02:55:6d:f4:28:a0:84:
fa:0a:37:7f:0d:aa:35:60:29:36:4c:88:bd:20:4b:72:93:c7:
81:93:6d:17:a3:0f:38:21:89:4d:0d:89:2b:0d:d8:6e:e2:91:
e5:c5:49:85:e5:b1:ea:8d:d3:be:57:1f:85:69:7a:a8:89:a5:
95:a5:a7:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:28 2024 by rpki-client on console-ams.rpki-client.org