Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/EMsqOAySOYWSXV4iaahKnCIboh0.roa
File: EMsqOAySOYWSXV4iaahKnCIboh0.roa (raw, json)
Hash identifier: TU/9Xj0hHkoMLeVrs1Ln2lhqo9Hb22m3gM8HGEiT/JU=
Subject key identifier: 10:CB:2A:38:0C:92:39:85:92:5D:5E:22:69:A8:4A:9C:22:1B:A2:1D
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018FCAEDB82F8EBA8988212534455AE32338
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/EMsqOAySOYWSXV4iaahKnCIboh0.roa
Signing time: Thu 30 May 2024 19:15:27 +0000
ROA not before: Thu 30 May 2024 19:15:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 83.147.223.0/24 maxlen: 24
94.241.136.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jun 2024 12:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ca:ed:b8:2f:8e:ba:89:88:21:25:34:45:5a:e3:23:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 30 19:15:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10cb2a380c923985925d5e2269a84a9c221ba21d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:30:a6:c6:7c:3b:94:5f:f6:72:a6:9b:99:59:
db:2e:ef:f9:94:d1:23:94:c3:fb:f1:e2:27:0f:12:
ed:1b:ee:1f:91:f8:c6:fe:55:a1:33:35:b8:c7:33:
c6:da:bc:c1:76:d5:81:c9:3e:dc:c8:88:b4:62:41:
1a:e4:0d:2b:47:5b:38:a5:5f:6c:e0:ff:40:5c:b4:
85:2d:7f:6b:09:bd:f5:e8:84:1c:bf:53:99:28:e7:
9e:ee:53:b0:1e:7b:4f:16:c8:80:0b:7b:52:6d:39:
75:c9:37:98:69:21:6c:41:4b:1e:c3:af:2c:51:a2:
67:ab:23:a2:e3:7a:f0:44:e6:39:9d:25:de:d8:42:
44:7c:2c:31:bc:c2:6e:ee:16:1f:bd:db:49:6a:6a:
62:ca:f5:6a:25:bd:aa:f4:a0:11:1c:f0:8f:3b:1d:
bb:00:a4:3b:ad:e8:30:35:55:f2:8f:37:ea:23:40:
b7:3f:e2:c2:1e:79:6d:c4:35:85:21:6b:c0:79:0f:
63:49:66:a0:d0:b2:e3:66:a8:67:be:4b:a0:36:c8:
65:0d:b7:ea:34:66:2d:08:5c:ca:68:32:0d:dc:b0:
24:1d:32:51:7c:64:84:e4:81:24:ef:b1:2f:7c:18:
15:d2:70:c4:05:d0:51:88:1d:bb:9d:f5:70:04:3b:
72:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CB:2A:38:0C:92:39:85:92:5D:5E:22:69:A8:4A:9C:22:1B:A2:1D
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/EMsqOAySOYWSXV4iaahKnCIboh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.223.0/24
94.241.136.0/23
Signature Algorithm: sha256WithRSAEncryption
54:8e:37:c4:48:3d:ed:aa:96:64:8f:80:8a:4f:0b:22:d7:12:
78:18:67:f6:ee:ac:17:9b:30:ce:5d:93:9f:d3:4f:c9:fe:8c:
90:1b:82:f0:5a:bf:90:ce:82:31:a3:8f:ae:f2:89:05:de:c5:
d3:58:b3:8a:9b:0c:79:66:e2:85:43:f0:9d:eb:94:46:5d:2c:
f1:63:2e:66:1a:df:c4:04:00:e1:99:1a:76:17:06:ec:fa:95:
72:4a:67:a8:64:93:4f:0d:69:9b:33:de:8a:b1:90:50:42:4f:
18:3f:b3:de:80:a9:ee:db:35:d3:61:b4:07:f0:ba:ff:d0:22:
f6:1b:37:cb:fa:4c:1e:dc:d5:b2:c8:ab:9e:13:d5:35:43:37:
ee:c0:89:97:9a:03:61:8b:d9:94:8e:fb:ac:df:79:8a:5a:ab:
0e:47:3c:12:8b:d9:46:17:e8:eb:af:76:1b:23:b8:fc:d7:7b:
60:be:95:7b:2a:ba:14:dd:f3:5a:60:8f:b4:58:de:2c:d3:c4:
69:ee:d8:a5:90:9e:74:be:bf:35:ab:c2:9d:28:7b:3e:b1:71:
1c:82:0d:70:ba:9f:d2:55:70:44:1f:f9:86:45:ed:50:b0:0c:
de:a3:59:2a:c8:20:81:01:24:8e:a6:c3:4d:5a:1d:54:53:60:
fe:57:83:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 16:21:31 2024 by rpki-client on console-fra.rpki-client.org