Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/aiZsP79PXs18hrnE1oyRDniU8ro.roa
File: aiZsP79PXs18hrnE1oyRDniU8ro.roa (raw, json)
Hash identifier: xCFkvkPToHE2cFg2eZnP68HPpdpsKPJXo0cY613gEuM=
Subject key identifier: 6A:26:6C:3F:BF:4F:5E:CD:7C:86:B9:C4:D6:8C:91:0E:78:94:F2:BA
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018C8635DDB9E3A6AAEE7071FAA790309248
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/aiZsP79PXs18hrnE1oyRDniU8ro.roa
Signing time: Wed 20 Dec 2023 07:52:06 +0000
ROA not before: Wed 20 Dec 2023 07:52:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202309
IP address blocks: 79.124.42.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:35:dd:b9:e3:a6:aa:ee:70:71:fa:a7:90:30:92:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Dec 20 07:52:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a266c3fbf4f5ecd7c86b9c4d68c910e7894f2ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:41:c3:ce:94:c5:67:a3:f1:51:ff:f8:f1:37:
50:b4:45:06:78:50:3c:71:4a:fa:4c:7b:c4:4b:fa:
f4:24:0b:d3:2a:45:a7:02:12:3a:b2:0a:21:6f:18:
e7:ac:5a:44:16:78:85:14:48:e6:a1:a1:53:66:f7:
b5:be:7c:95:d5:fa:cd:9d:70:f3:5c:63:cf:7d:82:
44:9c:c7:1a:5e:2e:10:5f:20:ab:43:21:36:17:b8:
a4:47:c8:19:da:75:7e:05:bc:4a:7a:ee:95:c1:58:
f0:18:7b:00:1f:8c:21:ec:08:54:17:84:d9:00:fb:
72:8f:44:80:f3:d3:02:7c:c0:f3:d7:01:23:0d:5d:
65:3d:c4:db:6f:13:f9:46:b1:8a:fe:bf:7c:06:99:
48:1e:4e:7d:5a:bf:ef:00:70:09:fc:58:5c:5f:32:
03:04:9e:e7:7b:44:22:9f:79:5c:58:55:e0:0f:19:
63:ae:ad:21:04:1c:b4:f9:4c:43:12:0f:cc:c5:fb:
9d:9b:c3:6d:c6:92:30:2f:37:32:9e:68:09:58:b4:
e3:6b:38:2b:37:d9:d0:69:1d:f2:26:15:e3:f0:ec:
96:89:b8:ac:c6:55:5c:f4:c3:a8:01:85:a9:7e:32:
2e:21:d4:dc:2f:f0:e8:f9:a0:ca:5e:f7:ea:5d:b6:
c5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:26:6C:3F:BF:4F:5E:CD:7C:86:B9:C4:D6:8C:91:0E:78:94:F2:BA
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/aiZsP79PXs18hrnE1oyRDniU8ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.124.42.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:05:10:cf:74:c5:da:e9:18:33:70:ad:b4:d2:1d:5b:aa:aa:
d1:6e:4c:a6:ce:fe:54:f0:ee:f6:52:92:d1:62:45:f9:23:e8:
83:bf:8d:8f:c5:1a:58:70:02:2f:f2:4d:d0:4c:e5:e9:c5:56:
5e:cf:49:60:09:93:f8:de:41:6f:7d:4d:0c:fe:53:0f:90:d1:
0c:1d:99:7f:c7:13:eb:43:f5:5b:0d:53:9b:37:b5:c9:8e:6b:
3d:84:37:55:4f:d3:b4:ae:3e:40:7f:7b:6e:df:40:e0:60:69:
47:18:bb:70:3a:3b:43:14:0e:59:57:94:13:22:9c:4e:60:e4:
f2:d6:16:1f:7e:11:48:69:59:25:3f:e1:79:28:63:8e:4b:bd:
87:e2:e2:e6:ba:9e:ec:08:5f:2a:ca:45:4f:2f:94:44:4c:7a:
9d:57:15:3b:e7:99:d1:2a:c4:c9:9e:b6:f1:c0:20:bb:45:26:
2c:60:3e:3f:6d:6e:12:87:4f:7d:dc:73:96:1f:fe:59:c0:ea:
36:ae:82:2b:32:a5:08:0a:2f:e1:f6:80:1e:45:27:77:7e:25:
37:59:d0:78:ee:7e:e4:51:6a:73:ae:7f:22:73:0c:3a:dd:82:
9b:9a:15:83:40:d2:56:3a:e1:88:de:e7:3b:fa:90:12:ae:3b:
df:97:03:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:15 2024 by rpki-client on console-fra.rpki-client.org