Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/2P41OlKpFQVSTxgKaZiUXWxJI6g.roa
File: 2P41OlKpFQVSTxgKaZiUXWxJI6g.roa (raw, json)
Hash identifier: 91TQdmPNClfHIQgNBXRfhnTc+mN2lxRaq1yTyI92gaQ=
Subject key identifier: D8:FE:35:3A:52:A9:15:05:52:4F:18:0A:69:98:94:5D:6C:49:23:A8
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 01856CF850F9683CA1B46EBD6DCD9420D6E0
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/2P41OlKpFQVSTxgKaZiUXWxJI6g.roa
Signing time: Sun 01 Jan 2023 10:54:50 +0000
ROA not before: Sun 01 Jan 2023 10:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8877
IP address blocks: 78.142.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 12:09:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:50:f9:68:3c:a1:b4:6e:bd:6d:cd:94:20:d6:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 1 10:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8fe353a52a91505524f180a6998945d6c4923a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d2:54:14:11:03:b6:00:f1:15:ee:ed:7f:6e:
98:17:80:f6:d3:66:c4:22:5c:45:fb:9a:57:f2:85:
30:2e:bf:83:38:f0:9c:1c:62:a8:cc:fb:73:33:d9:
37:2f:3b:84:bc:b9:06:b7:11:4f:87:8f:6b:55:3b:
5b:cb:64:94:d6:b5:47:e5:f1:46:07:e5:ff:29:ae:
72:74:3d:77:f6:91:1c:05:45:58:5d:fc:4a:40:8c:
56:85:f3:15:1e:6b:62:73:c7:3d:a7:d3:03:c8:bf:
6d:76:2a:36:e2:97:49:d2:cf:52:7f:32:79:ac:2d:
79:15:bb:b8:80:55:6a:a4:9f:e8:06:23:1d:58:51:
12:50:70:b8:c3:c2:66:8c:3a:cf:88:fd:64:97:cb:
3d:0e:30:77:a2:d0:d0:87:06:43:ef:9f:e3:67:d7:
3e:60:c4:35:f8:8f:88:4c:b3:9a:6c:5e:96:79:52:
be:20:7d:fd:9c:97:e3:4b:36:b6:fd:f8:11:c6:a2:
84:d4:57:b3:82:4f:58:32:e8:5d:c5:c6:b0:19:f9:
96:9b:1c:35:fc:3f:69:40:f8:ff:f5:2a:58:1a:19:
6f:95:28:3a:a8:bf:4f:2c:15:d3:b7:14:f7:51:79:
eb:2a:91:2e:a4:6b:9e:60:2a:4d:77:31:c2:58:e6:
c5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:FE:35:3A:52:A9:15:05:52:4F:18:0A:69:98:94:5D:6C:49:23:A8
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/2P41OlKpFQVSTxgKaZiUXWxJI6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.60.0/24
Signature Algorithm: sha256WithRSAEncryption
55:37:2d:fd:0c:6d:47:d2:90:e6:24:f2:70:5b:b8:b7:6e:21:
3b:3a:78:20:df:a8:50:74:16:da:e2:de:9e:29:45:1d:cb:78:
a6:e7:6c:58:b6:a7:b0:26:00:dc:5a:e5:80:b5:0b:9d:21:48:
fe:b7:b3:7e:8b:f9:72:a4:2b:30:eb:24:91:a7:98:2e:58:09:
15:a6:9f:cd:2c:ef:09:f1:71:d3:22:4e:0f:a4:57:3b:e2:ec:
33:90:7c:9c:b2:59:4d:ff:5b:60:91:58:5d:91:e8:f6:05:5d:
12:0e:95:3c:5d:09:65:d3:93:88:78:3f:26:d5:40:13:b3:6a:
6a:ba:c4:ff:48:ba:57:5f:ec:d4:a1:11:37:17:d9:f1:9a:c6:
5e:cc:26:ba:de:98:93:ea:98:87:f4:63:9f:89:d2:61:73:d0:
66:19:4a:db:63:26:65:19:0c:9c:df:72:8c:1b:38:c3:06:7e:
1e:e0:36:af:39:c8:94:f1:51:8a:95:cc:00:3d:44:4e:d7:5b:
01:f9:56:e2:43:4d:32:b4:52:3e:4b:40:18:87:b3:eb:c7:b5:
e4:5a:ca:92:90:d0:e1:be:2b:f8:d4:ab:d6:b3:eb:17:69:7f:
a7:04:17:ce:04:7a:76:f2:76:8c:8a:76:1c:ae:a4:2a:4c:b4:
3f:0b:20:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org