Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef98e4-01e5-4b88-bbf1-0483d1c01b25/1/zjNLeq4r6yQuB7byuFju7I_Njck.roa
File: zjNLeq4r6yQuB7byuFju7I_Njck.roa (raw, json)
Hash identifier: /44F53UflIEB/cEQWMpoDEcOlWvAmDy9cLuGVxkyTR4=
Subject key identifier: CE:33:4B:7A:AE:2B:EB:24:2E:07:B6:F2:B8:58:EE:EC:8F:CD:8D:C9
Certificate issuer: /CN=5259e000c991f78f243fde5980cd5cef649409e6
Certificate serial: 0185E30CFCA2C8C3B5F17BE1C9993FC383FC
Authority key identifier: 52:59:E0:00:C9:91:F7:8F:24:3F:DE:59:80:CD:5C:EF:64:94:09:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlngAMmR948kP95ZgM1c72SUCeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef98e4-01e5-4b88-bbf1-0483d1c01b25/1/zjNLeq4r6yQuB7byuFju7I_Njck.roa
Signing time: Tue 24 Jan 2023 09:12:37 +0000
ROA not before: Tue 24 Jan 2023 09:12:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3209
IP address blocks: 87.239.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Feb 2023 10:04:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e3:0c:fc:a2:c8:c3:b5:f1:7b:e1:c9:99:3f:c3:83:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5259e000c991f78f243fde5980cd5cef649409e6
Validity
Not Before: Jan 24 09:12:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce334b7aae2beb242e07b6f2b858eeec8fcd8dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f4:b9:33:99:b6:b6:6d:7c:5b:71:cf:ae:4a:
6d:7f:f2:24:f3:f4:2f:a6:96:16:15:5b:d2:9d:63:
24:37:16:af:45:57:b9:02:1b:78:09:33:ee:73:93:
b3:a3:a0:d3:22:e3:05:ed:1c:89:21:d1:46:b4:73:
3e:0f:c5:65:fe:86:ea:0f:e4:6e:ca:64:ff:a7:d5:
f6:d2:8b:2d:a2:20:75:82:c4:d2:ea:ed:02:7b:1d:
f1:72:8b:9e:f3:63:2a:e2:4c:01:02:0f:48:8b:8f:
f9:ca:dc:c2:59:dd:f5:d4:67:10:35:ed:9e:6b:88:
1b:16:23:15:75:ef:96:1a:d8:d8:62:e5:6f:c6:9f:
7e:77:5a:68:45:99:3e:41:f3:ba:fb:78:55:18:7a:
88:17:7b:4d:3c:c9:a5:36:e5:3e:3b:55:01:d4:a0:
1c:42:a8:a5:2b:6b:f3:7d:cd:7a:1d:c8:45:08:15:
93:37:67:25:61:5a:6d:f8:12:95:c4:69:20:1c:d3:
83:16:e1:03:a0:a2:18:ae:b1:1a:f7:52:62:be:6e:
09:2f:f2:26:5c:6e:45:66:d0:1a:3c:3a:01:47:aa:
2d:87:4d:78:13:36:0d:75:86:2c:6c:ef:67:08:9e:
d0:55:96:91:a4:97:81:d8:7c:f1:c6:a5:d7:5a:1f:
bc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:33:4B:7A:AE:2B:EB:24:2E:07:B6:F2:B8:58:EE:EC:8F:CD:8D:C9
X509v3 Authority Key Identifier:
keyid:52:59:E0:00:C9:91:F7:8F:24:3F:DE:59:80:CD:5C:EF:64:94:09:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlngAMmR948kP95ZgM1c72SUCeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef98e4-01e5-4b88-bbf1-0483d1c01b25/1/zjNLeq4r6yQuB7byuFju7I_Njck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef98e4-01e5-4b88-bbf1-0483d1c01b25/1/UlngAMmR948kP95ZgM1c72SUCeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.143.0/24
Signature Algorithm: sha256WithRSAEncryption
60:da:af:75:07:a6:75:f7:fe:ea:fe:74:5e:82:52:09:df:5e:
e7:74:b7:06:3f:46:58:6b:0b:3d:98:09:2c:c3:ea:4b:71:ec:
85:b1:e1:3d:7d:78:3b:87:09:f2:5b:2a:ae:f7:42:1d:29:db:
cf:67:cc:0f:3d:e2:94:3d:79:2d:12:db:9e:9c:c9:24:20:d4:
b0:27:a9:ce:de:30:f6:64:1d:6b:4b:c1:f6:c0:70:bd:7c:5b:
e5:67:40:9c:9d:98:34:85:f5:4d:fa:89:25:05:ea:b5:cf:2c:
45:db:62:9a:b0:b6:88:39:63:86:2a:5d:26:bf:00:cf:80:cb:
77:5c:e7:14:eb:78:05:fe:c9:2b:b2:d2:24:3f:fb:32:07:37:
de:27:6a:57:27:34:28:17:ef:bc:68:9f:7b:88:35:d3:b2:02:
b3:9d:56:a4:df:77:31:06:6b:dd:85:5e:72:0b:5b:a6:2b:4c:
e9:28:14:1e:77:4b:44:63:f3:b3:15:4f:3d:44:b6:93:19:30:
5f:bb:a5:95:4e:d9:4e:8d:63:ec:40:07:4a:62:0d:9c:67:e1:
19:a7:df:35:2a:46:0f:16:3b:9e:20:26:9e:b7:29:6d:f6:e2:
0e:1c:5a:a2:80:9b:b1:31:97:00:fa:5a:dc:5b:a3:d4:50:d2:
b5:11:9d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:50 2024 by rpki-client on console-ams.rpki-client.org