Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/2PVrKbT0AEjbFjmacllrBkBRhx4.roa
File: 2PVrKbT0AEjbFjmacllrBkBRhx4.roa (raw, json)
Hash identifier: 1yI8e1t5rz/0Pq6ksCVc2KthMWJs+J9Vn7v4EOi19OE=
Subject key identifier: D8:F5:6B:29:B4:F4:00:48:DB:16:39:9A:72:59:6B:06:40:51:87:1E
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 01856F54AD0A2BD9D20A02067A3DA81D6533
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/2PVrKbT0AEjbFjmacllrBkBRhx4.roa
Signing time: Sun 01 Jan 2023 21:54:58 +0000
ROA not before: Sun 01 Jan 2023 21:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60637
IP address blocks: 78.157.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:ad:0a:2b:d9:d2:0a:02:06:7a:3d:a8:1d:65:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Jan 1 21:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8f56b29b4f40048db16399a72596b064051871e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4e:a2:be:12:b4:26:37:d0:78:08:52:97:a9:
78:49:27:7c:f2:e3:c2:5d:36:78:d0:25:00:f1:86:
9a:08:59:f3:12:0e:da:81:a4:93:34:76:5f:e5:a1:
cd:62:3a:76:05:dd:88:48:39:14:e1:fd:d3:f6:02:
34:62:32:27:c7:e3:57:fc:94:25:9b:cd:f3:c4:08:
3b:64:34:15:2e:b3:59:7d:7b:d1:ab:2e:3c:70:75:
87:6d:2c:5f:86:bf:dd:ca:3d:e4:07:89:02:40:b3:
5b:9d:01:ec:60:5a:e6:5c:2c:90:31:15:af:3f:ee:
4b:61:d8:20:5e:0f:14:50:bd:0d:84:74:0d:9c:d2:
c4:eb:21:56:29:c3:32:a2:f2:ff:bb:f6:b0:32:bb:
66:29:d5:85:aa:dc:2e:15:3b:68:5d:54:d3:39:a7:
95:5c:f5:dd:ea:f3:07:67:36:8e:6e:35:ca:b5:2a:
ad:a4:93:2e:74:5f:99:23:10:19:58:b4:63:0f:05:
9a:bb:f0:fe:4c:b7:a3:f6:31:6f:8a:d7:9a:d5:68:
8a:01:6e:f8:da:07:04:22:71:72:78:30:03:1a:e9:
b0:68:6b:c1:46:a4:19:f4:9d:cd:6c:10:40:cb:d8:
e6:54:36:94:b4:e0:cc:a4:a5:3d:3e:bd:12:f0:13:
98:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F5:6B:29:B4:F4:00:48:DB:16:39:9A:72:59:6B:06:40:51:87:1E
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/2PVrKbT0AEjbFjmacllrBkBRhx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.157.33.0/24
Signature Algorithm: sha256WithRSAEncryption
be:4f:e6:1a:33:7c:d0:9f:b5:fe:be:5d:b5:7d:c5:8c:d8:53:
b6:52:9e:92:41:03:95:5b:7e:5b:38:ef:1e:c2:8b:3c:a4:bd:
c4:ad:99:1b:ab:9b:79:3b:0f:3d:96:aa:14:3d:ed:27:09:30:
56:d8:8d:bb:6f:a0:6a:ed:21:8d:d1:6f:05:b5:53:de:c6:79:
e8:a2:4b:ac:b9:f5:c1:2c:59:8f:a1:96:b0:ad:e0:48:65:6b:
34:79:b1:7d:37:0e:de:d6:fe:38:b5:71:d7:4a:5e:70:30:12:
25:68:86:11:63:00:8d:a7:ba:0c:d8:a8:d1:2d:82:aa:d3:a2:
9c:60:78:73:66:95:1a:ed:31:bb:7a:b5:5a:d0:69:c7:b3:0e:
7c:49:11:7d:77:b5:33:9e:04:ff:a4:02:5d:a3:ae:09:4a:4c:
a5:54:40:32:3a:86:c2:04:7b:64:84:6a:fc:c9:3a:0e:2c:c2:
01:6a:7a:d8:3d:b6:96:a7:f5:1a:fd:aa:af:52:b6:c8:69:e7:
7c:01:48:fa:b0:6d:6f:b5:81:65:d2:18:9a:86:95:42:f0:5a:
39:86:67:1a:0e:4e:d0:1e:02:2d:b1:b8:91:cc:d1:50:96:0d:
46:08:61:d3:c1:36:9b:57:f5:10:d5:16:87:61:3f:bc:7e:a1:
9f:08:56:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:35 2024 by rpki-client on console-ams.rpki-client.org