Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/eDIFlhqWl33Z3wX3YYv_PuvWWiA.roa
File: eDIFlhqWl33Z3wX3YYv_PuvWWiA.roa (raw, json)
Hash identifier: FHeGnXTfiOplq+AjQs4NCqjzzBu5aFf0qCDaxJYwbxM=
Subject key identifier: 78:32:05:96:1A:96:97:7D:D9:DF:05:F7:61:8B:FF:3E:EB:D6:5A:20
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 01903B061BF6B6E4108577635CC54FBDDE60
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/eDIFlhqWl33Z3wX3YYv_PuvWWiA.roa
Signing time: Fri 21 Jun 2024 13:39:34 +0000
ROA not before: Fri 21 Jun 2024 13:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 147.161.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Jun 2024 19:11:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3b:06:1b:f6:b6:e4:10:85:77:63:5c:c5:4f:bd:de:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Jun 21 13:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=783205961a96977dd9df05f7618bff3eebd65a20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e3:88:ae:ad:e4:f6:e5:cb:d7:a6:04:d5:19:
f7:4e:23:d3:43:e8:11:c4:81:22:50:6f:0e:84:89:
22:72:a4:26:a6:24:e7:ad:3e:10:5f:2b:6c:f0:45:
ee:43:e1:ce:24:90:d0:b1:e9:44:23:e8:85:03:d8:
07:fd:62:42:b4:d7:0f:c1:23:45:2e:02:0a:49:ad:
a3:77:73:7c:fa:c6:4f:8a:e5:48:a2:8b:5f:ce:6f:
de:fa:2b:aa:40:b1:55:63:98:58:58:71:fe:8f:62:
02:86:37:56:3e:93:3b:60:7f:2f:92:a0:e3:3b:fb:
a8:76:9a:7c:67:5b:f7:f8:bc:9d:71:03:75:f7:8f:
cb:34:3c:f1:0d:c4:89:e2:46:01:f4:29:1c:06:23:
64:af:dd:a1:eb:7c:e4:34:cd:45:02:73:48:92:95:
f7:11:dd:54:8c:b6:8e:84:7f:ff:7e:c5:49:69:90:
68:a8:e5:f4:61:e4:a0:ed:f4:d1:0c:e0:c6:e6:4f:
2a:a6:ac:b0:36:53:4c:84:2f:28:71:b2:fc:e1:eb:
93:46:70:d4:ed:34:b3:b6:1d:df:e8:c1:58:36:c5:
c2:91:db:40:44:d8:51:ba:44:05:59:f2:0f:b9:53:
88:8a:50:26:4c:77:2e:31:45:62:a7:5a:16:76:9f:
06:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:32:05:96:1A:96:97:7D:D9:DF:05:F7:61:8B:FF:3E:EB:D6:5A:20
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/eDIFlhqWl33Z3wX3YYv_PuvWWiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.3.0/24
Signature Algorithm: sha256WithRSAEncryption
60:86:4e:35:48:0e:5c:a0:d7:4b:af:e6:d5:1d:dc:03:56:c0:
b1:78:8c:67:74:96:2b:3c:b1:11:a6:e9:cc:09:0e:fe:e3:d9:
83:bd:5d:87:5d:4a:e8:7a:5a:02:62:06:ab:03:16:6e:7e:56:
cd:81:01:16:91:f9:bc:ba:7d:6b:17:d5:4a:c8:d0:11:6f:05:
e6:bc:08:f6:d4:48:87:44:40:2c:40:42:12:62:36:99:79:20:
0e:58:65:9c:d9:b8:74:f9:1c:48:14:d8:4d:33:ef:81:f5:51:
4b:b3:c3:b1:07:78:37:10:ae:21:a6:9c:a7:7a:ec:98:c7:0b:
81:90:49:c2:f5:25:b4:c0:49:73:3c:e0:1e:14:1c:52:7b:a4:
da:c8:ba:93:2c:9a:52:7c:30:18:3d:df:03:95:ee:ad:16:4b:
e1:60:06:1e:54:db:c2:9d:8d:bd:9a:95:fd:4b:bf:12:b6:56:
44:77:13:49:b4:d5:14:51:33:ad:e5:dd:f7:c4:be:04:74:5c:
f1:13:7d:27:4a:bc:18:f8:25:5e:37:fd:30:71:7a:29:6e:70:
86:af:c5:11:75:eb:1b:1b:8d:a2:96:02:2e:c6:ed:0e:51:4a:
36:9d:fd:1b:72:81:27:3f:b5:8f:1e:2b:ce:1f:40:ea:42:3f:
ea:b3:87:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 23:00:12 2024 by rpki-client on console-ams.rpki-client.org