Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/38aqmh7esQL8WbDaVOthEFPW0Qc.roa
File: 38aqmh7esQL8WbDaVOthEFPW0Qc.roa (raw, json)
Hash identifier: s6soN5qWIP9h86UTfTsR+edZMvS5Dp3EADIWUzJ1e+E=
Subject key identifier: DF:C6:AA:9A:1E:DE:B1:02:FC:59:B0:DA:54:EB:61:10:53:D6:D1:07
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246EC59E8A8EEB961AF8C46E4106FB2
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/38aqmh7esQL8WbDaVOthEFPW0Qc.roa
Signing time: Mon 02 Jan 2023 11:38:48 +0000
ROA not before: Mon 02 Jan 2023 11:38:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204554
IP address blocks: 151.237.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:ec:59:e8:a8:ee:b9:61:af:8c:46:e4:10:6f:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfc6aa9a1edeb102fc59b0da54eb611053d6d107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ac:a6:97:64:02:f7:15:ac:77:94:4d:ed:e8:
01:d6:da:63:f8:fb:5e:0f:2d:ce:52:3c:66:b3:f7:
db:8c:88:7f:f4:47:c7:84:29:62:38:03:c0:91:6f:
34:72:29:36:33:17:df:76:56:6e:64:fc:2e:bb:db:
4a:ba:d0:94:93:90:8c:a4:24:4f:ad:b7:fe:27:93:
aa:fc:49:b3:ba:bf:08:0c:8b:25:17:99:2c:b0:e4:
ed:91:20:7e:c7:5c:d1:04:06:20:00:35:94:5b:7a:
14:3f:b9:af:7f:1e:a3:a1:9e:ce:44:41:fc:d2:8b:
8d:78:f6:6d:36:e6:ba:c5:69:cf:a9:6b:3e:b8:66:
2a:d8:94:c9:16:3e:e8:ca:98:e7:a1:ad:35:41:8d:
5b:f1:52:bc:a6:69:ad:93:f3:31:83:b0:20:3c:32:
61:bd:40:4a:23:25:19:85:50:98:df:41:f0:b4:51:
15:01:2a:45:49:be:0c:33:75:56:ea:db:97:e6:02:
fc:e5:19:a7:8c:a6:be:61:8b:ad:3a:a1:8b:94:fa:
b8:e2:00:b4:41:a7:0d:fb:54:72:8f:5f:6d:40:19:
c1:ce:1a:a3:fd:58:64:75:b8:f3:4a:1c:73:06:81:
ac:b5:22:11:2c:d2:30:41:12:b1:b0:e4:7e:e7:c6:
90:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C6:AA:9A:1E:DE:B1:02:FC:59:B0:DA:54:EB:61:10:53:D6:D1:07
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/38aqmh7esQL8WbDaVOthEFPW0Qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.28.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4e:aa:e2:8b:4e:4a:66:f6:59:63:4d:bc:b2:b6:f9:6e:dc:
33:bf:94:e2:e0:b4:92:2e:75:26:5f:fb:55:a6:fe:62:95:69:
fb:83:92:ad:d3:80:43:89:b7:3a:d9:54:63:6c:27:5b:3e:3d:
8a:4e:fe:f1:6c:59:2a:36:6f:c1:ae:f7:c2:46:a0:e4:4f:57:
7f:da:ad:17:ad:4c:a9:5d:d5:07:87:cc:b3:40:fe:2d:87:ac:
62:cb:db:20:77:a2:1f:32:72:c3:be:fe:b8:5d:0b:65:b5:63:
b3:1f:66:55:d5:47:f9:74:99:7d:dc:67:11:5b:58:d4:a8:73:
a2:d5:6a:83:75:6b:f8:67:71:7f:dd:8d:8e:7e:8a:bc:91:6b:
d3:3f:67:45:96:2b:48:24:05:2a:d9:67:a4:51:e8:61:a7:60:
6f:bc:1e:61:5e:e9:53:4e:d1:9e:54:6e:8f:bb:03:36:6a:1a:
ae:13:69:64:4c:c7:a5:92:64:fa:ec:a6:20:10:45:5e:bc:f7:
c4:cc:68:5b:2f:4f:b3:47:b6:ca:94:98:9e:3c:8d:6d:33:84:
15:82:1f:e1:5e:42:8f:b6:10:6b:5d:a2:75:76:4c:13:08:cb:
f9:a1:f9:45:c7:06:6d:69:0c:a7:4c:03:46:b7:15:40:77:6a:
be:96:4c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org