Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/7NEwjEpfu3KU6eFsBKuPQLcH2UM.roa
File: 7NEwjEpfu3KU6eFsBKuPQLcH2UM.roa (raw, json)
Hash identifier: SnVyk8j7vY3JUmgs9MWW3A/muoSPgCe5ZBBrhFGKFtw=
Subject key identifier: EC:D1:30:8C:4A:5F:BB:72:94:E9:E1:6C:04:AB:8F:40:B7:07:D9:43
Certificate issuer: /CN=e916dc9db4e49de71b2fd0819dae853aeb053b06
Certificate serial: 018B864992543A0F7DDE2BAB23A11679A34F
Authority key identifier: E9:16:DC:9D:B4:E4:9D:E7:1B:2F:D0:81:9D:AE:85:3A:EB:05:3B:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6RbcnbTknecbL9CBna6FOusFOwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/7NEwjEpfu3KU6eFsBKuPQLcH2UM.roa
Signing time: Tue 31 Oct 2023 15:10:50 +0000
ROA not before: Tue 31 Oct 2023 15:10:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216129
IP address blocks: 107.161.154.0/24 maxlen: 24
199.83.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Dec 2023 12:58:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:86:49:92:54:3a:0f:7d:de:2b:ab:23:a1:16:79:a3:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e916dc9db4e49de71b2fd0819dae853aeb053b06
Validity
Not Before: Oct 31 15:10:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecd1308c4a5fbb7294e9e16c04ab8f40b707d943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:72:a8:0f:98:31:3a:3b:71:34:13:0d:10:55:
a2:5e:b1:ce:a1:df:5e:8a:a0:8f:ba:4f:73:8d:54:
5d:e5:8f:6f:fb:c7:8c:df:7f:af:1a:dc:d5:a4:1b:
e9:e9:56:a3:5c:52:ab:7f:ff:b5:8e:30:21:13:cb:
27:cd:2e:94:c8:11:ef:51:3d:8a:14:85:7c:3f:d9:
46:eb:25:c1:ee:f7:97:df:d4:83:6e:da:5b:f3:33:
9d:07:4b:5f:16:4e:f1:8c:0b:59:f1:50:8b:64:0b:
56:07:0d:19:91:60:86:1a:1b:cf:e2:86:11:ea:be:
0f:18:ce:fa:09:66:23:7d:15:8d:ad:68:38:6d:b0:
37:1b:67:60:27:ac:22:53:2b:10:57:42:26:a6:ba:
40:e1:c0:6a:27:6b:e9:b1:86:40:a2:98:71:bc:36:
a3:95:ac:24:af:13:0b:d0:ac:02:4b:78:47:ac:e4:
e4:1e:d8:9b:4f:f8:68:8a:78:63:75:d2:c1:03:d2:
a2:2c:0f:9f:94:49:1f:34:91:94:b3:2d:9b:b1:17:
8c:38:68:d2:80:5b:b6:d6:ac:00:3d:d1:76:41:06:
33:5f:3f:2d:a5:42:a3:c7:8c:aa:d3:97:07:50:42:
6c:67:06:eb:83:2f:78:1e:97:13:fd:1a:bb:37:bd:
fb:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D1:30:8C:4A:5F:BB:72:94:E9:E1:6C:04:AB:8F:40:B7:07:D9:43
X509v3 Authority Key Identifier:
keyid:E9:16:DC:9D:B4:E4:9D:E7:1B:2F:D0:81:9D:AE:85:3A:EB:05:3B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6RbcnbTknecbL9CBna6FOusFOwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/7NEwjEpfu3KU6eFsBKuPQLcH2UM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/1af4a5-0d6c-4776-be5c-be852f644201/1/6RbcnbTknecbL9CBna6FOusFOwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.161.154.0/24
199.83.103.0/24
Signature Algorithm: sha256WithRSAEncryption
62:7e:2c:ff:4a:2d:e4:29:8b:13:0d:d9:16:8e:db:22:f0:b5:
15:1f:3b:7e:9f:20:47:c1:a8:72:44:73:06:51:6f:3a:6b:0b:
79:02:2b:fb:36:12:ec:23:5c:5d:f2:1d:d2:c0:d8:c2:e5:48:
22:26:c9:86:8a:51:25:b5:46:77:73:77:ce:6b:a3:6f:15:8f:
8c:c7:7b:ae:26:e6:5f:00:bb:95:9b:05:29:32:0e:1d:3a:4c:
cf:1d:e6:e2:b2:f7:fd:7e:c8:02:65:90:de:69:dd:77:1c:f5:
f8:2a:c9:24:d2:61:58:94:a1:e9:d8:df:00:46:0c:33:59:a0:
6f:b2:cb:21:06:32:85:6e:8c:e1:99:5c:a9:7b:3b:2a:b8:af:
eb:af:04:09:67:52:bf:81:62:3a:16:8c:8f:a9:13:3a:32:a7:
6e:83:c2:e3:65:92:23:d9:d7:b6:da:bb:18:37:a1:02:9c:ac:
44:e6:40:2a:16:14:c6:f0:b6:90:0d:1c:09:ac:5e:ba:d0:b6:
34:83:e6:86:84:a6:a7:ac:77:6f:1d:cf:3b:49:28:b9:e6:be:
93:7f:cf:2e:81:2a:fd:42:08:b2:ef:58:33:a2:67:d9:d0:e9:
7c:bd:82:cd:45:21:a1:d3:c1:75:5e:10:47:9a:80:27:79:96:
70:95:7a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:03 2024 by rpki-client on console-ams.rpki-client.org