Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/shS3i8OgLvF2rL1WNW7MIFJx1PU.roa
File: shS3i8OgLvF2rL1WNW7MIFJx1PU.roa (raw, json)
Hash identifier: sa0RiYZG9+Q5ycGBZ0LLJCh9RRv0stR0dHqhwEKywTI=
Subject key identifier: B2:14:B7:8B:C3:A0:2E:F1:76:AC:BD:56:35:6E:CC:20:52:71:D4:F5
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0192FD84F2B61E6922415DEAC3CA9960DCAF
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/shS3i8OgLvF2rL1WNW7MIFJx1PU.roa
Signing time: Tue 05 Nov 2024 18:10:01 +0000
ROA not before: Tue 05 Nov 2024 18:10:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214208
IP address blocks: 78.40.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 06 Nov 2024 17:21:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fd:84:f2:b6:1e:69:22:41:5d:ea:c3:ca:99:60:dc:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Nov 5 18:10:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b214b78bc3a02ef176acbd56356ecc205271d4f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f9:7c:f9:a1:e2:9b:ac:75:b5:5a:91:73:4f:
67:a9:dc:7d:96:7b:c6:db:c1:8f:de:0f:6b:82:a7:
b1:6d:2e:c7:bb:e8:13:f7:87:c4:45:a7:ec:51:b2:
4b:aa:10:37:c9:64:27:02:be:41:92:a6:f0:32:a6:
06:00:ca:b6:b4:b3:cd:07:5a:18:f8:9f:ef:01:8a:
38:e8:8c:39:d0:af:f0:b6:bd:33:77:73:16:f8:05:
5a:ac:d0:40:64:0e:45:fd:92:7e:9f:a2:09:de:1d:
54:6b:f3:29:3d:85:ea:cf:32:d4:bc:3d:5a:ef:36:
33:d1:3d:2f:ae:a7:4f:83:6f:5a:a1:53:62:2c:63:
01:39:a7:9a:4c:af:51:ce:86:01:79:58:b3:fd:d2:
91:10:3d:ef:ae:39:51:e1:20:6f:03:c9:2d:ac:5a:
e1:52:ac:bb:a4:65:35:16:ee:82:32:c1:eb:19:3f:
8d:75:c1:79:bb:0d:62:17:23:53:f7:6a:f5:77:25:
3a:e9:73:06:ab:73:31:01:e1:be:62:c7:8c:ef:c2:
cd:3d:46:fb:f5:53:54:48:85:b7:b9:c1:d6:a2:ac:
d3:15:6a:44:78:9e:17:19:e0:af:b1:db:cc:e5:6a:
47:a7:3d:fa:5e:19:8a:98:88:32:11:68:5b:ab:99:
f5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:14:B7:8B:C3:A0:2E:F1:76:AC:BD:56:35:6E:CC:20:52:71:D4:F5
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/shS3i8OgLvF2rL1WNW7MIFJx1PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.40.208.0/22
Signature Algorithm: sha256WithRSAEncryption
54:69:7e:1b:76:e6:66:2f:99:00:65:f0:25:49:3a:f6:d6:59:
4a:10:cf:7d:a2:89:ec:4c:16:63:57:a5:63:90:92:dc:ab:60:
e4:f3:45:7b:14:9b:83:23:62:83:a2:7a:ec:50:78:5f:90:92:
02:99:a4:40:91:54:92:1a:af:5b:12:48:51:50:88:f5:28:00:
65:e6:e1:27:e1:3f:90:c9:f6:c7:34:aa:a3:69:22:f5:fb:1b:
4f:90:2f:9b:da:34:65:62:31:7e:d0:1f:88:8a:98:87:fc:d5:
5e:3e:dc:0b:2a:39:5f:cc:1d:c9:f4:50:0f:2a:cc:31:09:53:
98:9b:97:7e:5a:31:fc:b0:d7:18:fe:ed:81:26:0e:b8:13:e4:
3a:de:2b:c0:8d:0f:52:17:c1:5b:11:ec:b4:4f:8a:4d:be:77:
a5:94:80:7f:80:e6:aa:ab:0d:58:2c:10:29:dc:3f:36:9c:de:
5b:0f:5f:8e:ba:eb:fc:08:05:5d:72:78:09:e9:8d:78:40:f1:
dc:eb:5f:26:fa:f8:65:75:40:f8:ea:52:66:9a:06:3f:82:4f:
77:05:d8:17:d2:0f:e7:f4:b1:c0:7a:01:18:fd:dc:60:0f:3e:
78:ef:53:b4:87:c1:44:34:14:88:66:ef:ec:97:be:73:36:1d:
95:0b:44:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 19:54:07 2024 by rpki-client on console-ams.rpki-client.org