Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/rLPvltTQX5ZSjW0XuU18P6domW8.roa
File: rLPvltTQX5ZSjW0XuU18P6domW8.roa (raw, json)
Hash identifier: 7hF2Yi72oKjGQqZNy8Rmm9+lAthNOvRMILvj7GeIE6M=
Subject key identifier: AC:B3:EF:96:D4:D0:5F:96:52:8D:6D:17:B9:4D:7C:3F:A7:68:99:6F
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 0185DE84716288A18EBFF4964C588404DCAA
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/rLPvltTQX5ZSjW0XuU18P6domW8.roa
Signing time: Mon 23 Jan 2023 12:04:59 +0000
ROA not before: Mon 23 Jan 2023 12:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6597
IP address blocks: 78.142.0.0/24 maxlen: 24
78.142.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:de:84:71:62:88:a1:8e:bf:f4:96:4c:58:84:04:dc:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 23 12:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acb3ef96d4d05f96528d6d17b94d7c3fa768996f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:af:39:30:14:48:9a:8a:ab:d6:4a:6a:4e:28:
86:37:05:cd:76:e7:6b:fe:81:67:30:7b:f1:01:b3:
66:e5:cb:d9:9a:87:21:fd:fb:9c:b4:3c:96:99:57:
12:da:6f:9e:43:a8:01:cf:1c:9b:12:0c:e7:7e:8d:
a8:d2:4c:de:e6:b7:97:65:d5:5d:12:1b:91:1e:4e:
27:93:5c:d7:16:15:df:2d:99:6c:ea:ed:13:63:e1:
b7:72:d7:85:56:3c:de:15:73:ee:0b:82:71:ea:3d:
5f:b0:58:ff:17:db:e5:16:f8:b6:76:e1:77:2c:ee:
e5:f9:43:f4:54:85:18:24:98:f6:54:09:b4:09:6f:
86:92:3f:87:de:e8:ee:be:fc:3d:85:5d:68:48:f4:
f6:e4:75:e1:05:7c:a1:f5:a5:e2:66:3e:62:de:2c:
b0:02:fa:a8:06:1e:0c:7c:2d:c0:22:d0:ad:9f:b2:
27:22:f1:be:0b:f2:bd:7e:a1:24:e1:63:2b:64:85:
19:0f:e8:41:d1:a5:7f:a9:86:79:b1:22:ba:11:fa:
78:b3:a8:ad:48:c8:03:69:a5:ef:3d:53:5d:9c:33:
c5:be:c4:ab:1d:03:83:97:a1:41:c4:42:97:c0:01:
d0:e4:91:12:3e:d7:a3:ad:4f:47:94:90:b8:93:ce:
de:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B3:EF:96:D4:D0:5F:96:52:8D:6D:17:B9:4D:7C:3F:A7:68:99:6F
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/rLPvltTQX5ZSjW0XuU18P6domW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.0.0/24
78.142.8.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:bc:a9:04:59:e4:11:47:08:12:39:44:a3:a5:9b:3d:41:85:
15:9f:bf:8e:40:9c:22:51:fe:2d:f2:d3:18:91:88:5d:15:d0:
90:55:64:fb:5e:e6:2f:4e:3f:14:7c:9d:96:91:e4:67:45:02:
d4:26:48:bb:a5:30:22:9d:86:a9:54:e8:34:c2:98:54:65:37:
13:05:8d:25:c9:13:c1:d6:56:9a:4d:a4:41:f7:84:1e:63:d2:
e2:a4:ae:df:a7:93:6e:13:df:44:99:fa:4a:9d:70:3c:42:85:
a7:dd:e4:7d:8c:69:53:fb:20:23:d7:c5:44:b3:1c:07:d2:41:
28:45:d9:f1:1e:f6:ac:8e:90:25:ff:bb:d0:70:6e:b6:af:1c:
a6:4a:b7:29:b2:50:1a:06:50:22:96:01:0b:c9:44:2b:46:93:
e6:c9:51:c1:30:50:4f:df:3a:fc:de:58:d1:44:3f:bd:75:d4:
f0:51:e3:8e:ec:bd:da:ee:d2:6d:38:03:a7:af:dd:55:b7:87:
eb:0d:0a:94:25:ab:02:29:41:d3:34:5f:33:85:30:9b:8c:c0:
eb:54:04:f6:d6:ed:a3:2d:26:41:34:68:f3:61:2b:65:ea:8d:
a7:91:14:03:3a:76:b1:f0:fb:7c:f9:ec:ce:2f:61:9c:b5:14:
36:18:db:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:15 2024 by rpki-client on console-fra.rpki-client.org