Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/eImbWH1qGfw2-xE015uNsufawBQ.roa
File: eImbWH1qGfw2-xE015uNsufawBQ.roa (raw, json)
Hash identifier: wL5BNCI/bdZyqVyMMw+zmQFOvKl/Y3qwq8to4YACR2M=
Subject key identifier: 78:89:9B:58:7D:6A:19:FC:36:FB:11:34:D7:9B:8D:B2:E7:DA:C0:14
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018856C89085CE4FA4E8E9FAE4A3BB3275D3
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/eImbWH1qGfw2-xE015uNsufawBQ.roa
Signing time: Fri 26 May 2023 06:39:24 +0000
ROA not before: Fri 26 May 2023 06:39:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211359
IP address blocks: 194.224.205.0/24 maxlen: 24
194.224.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 May 2023 08:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:56:c8:90:85:ce:4f:a4:e8:e9:fa:e4:a3:bb:32:75:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: May 26 06:39:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78899b587d6a19fc36fb1134d79b8db2e7dac014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d5:23:55:6c:40:04:3f:55:01:50:4d:16:14:
79:d8:86:cb:1b:27:3d:a5:e1:74:b6:e8:dc:e0:8c:
91:ea:17:93:c6:b9:ec:29:a7:9b:4a:f4:1d:4a:5e:
3b:da:86:11:a0:16:a1:6e:04:77:a7:af:44:b0:91:
4c:42:d0:c8:13:c8:ec:8a:14:b7:c9:f9:f5:d3:a8:
73:9d:d5:71:17:c7:55:b7:ca:cc:19:5f:ea:96:c6:
77:74:7a:dd:3c:5e:6d:81:a2:9e:cd:67:73:06:2d:
e8:06:ca:f0:2f:ed:22:f8:2b:a1:e4:b3:24:bd:33:
5e:f8:65:93:51:e0:59:3a:6d:d7:2e:09:52:7f:7c:
c2:d6:bb:bd:fd:82:8e:08:8d:8f:1e:a4:40:09:6b:
4e:ea:7d:e3:41:7f:56:eb:c6:86:62:17:ed:9b:d2:
44:ae:6c:5b:6a:46:da:1f:32:aa:57:bd:79:c7:7d:
d8:17:e2:b6:dc:f0:d7:37:6a:2a:d1:82:ae:d1:50:
f2:55:a9:5f:97:c1:a1:bd:18:e2:13:c2:b5:b0:17:
d3:9a:16:3b:7b:29:cb:48:05:43:e9:17:f7:31:43:
6f:d9:0f:3b:c3:e2:5a:3a:f3:b5:22:60:d9:3e:69:
ae:8e:56:33:ca:c5:18:72:ec:cb:11:99:4b:85:e2:
47:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:89:9B:58:7D:6A:19:FC:36:FB:11:34:D7:9B:8D:B2:E7:DA:C0:14
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/eImbWH1qGfw2-xE015uNsufawBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.224.204.0/23
Signature Algorithm: sha256WithRSAEncryption
85:c5:2b:04:68:46:f4:39:bd:6b:77:8f:59:e3:56:4a:9d:ae:
32:1e:ee:b4:7c:f1:16:c5:df:d9:ff:a8:b9:f3:c7:cc:d8:9c:
2c:c8:03:7d:49:07:49:7d:e7:42:13:cc:f1:3c:b3:88:53:b9:
ce:37:cc:3f:94:2a:6b:a9:36:b7:11:30:b8:b4:5e:cb:96:4c:
fd:cf:d9:65:27:9d:f2:b3:49:2a:6a:a8:84:eb:04:d4:10:65:
b5:d4:3f:1d:f2:f7:54:14:3c:cc:69:63:ad:7c:74:6f:9a:3f:
a3:d8:ac:9f:d3:d9:07:de:74:42:6d:55:b2:01:ae:93:c2:30:
ea:b1:e9:55:82:cb:b8:73:ca:2e:b9:b2:d8:c1:71:ca:e8:db:
21:12:9d:e2:d0:d4:a3:c2:73:ca:d8:f6:55:84:6f:2a:54:47:
81:2a:0a:ea:af:5e:76:5c:38:32:2e:70:56:d8:92:80:4d:7a:
be:a2:06:e2:2d:d8:e5:42:fb:ab:ba:b9:d5:08:c0:cc:89:d2:
3f:41:ea:7f:5f:49:4c:96:5f:93:56:68:85:c9:33:22:31:c2:
39:c6:82:0e:33:80:aa:8f:12:0e:87:c2:44:92:3f:78:75:8f:
6a:a3:2f:ba:98:0c:19:e1:2e:32:67:cb:c0:e5:22:69:eb:b4:
1a:b8:e8:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:13 2024 by rpki-client on console-ams.rpki-client.org