Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/K2noCPyhn3BUIQBSexYBDOr9Pvg.roa
File: K2noCPyhn3BUIQBSexYBDOr9Pvg.roa (raw, json)
Hash identifier: AQpFtg2GVcqyzRX/Eli+IO7CSfrySZGAhnc+zsoERp4=
Subject key identifier: 2B:69:E8:08:FC:A1:9F:70:54:21:00:52:7B:16:01:0C:EA:FD:3E:F8
Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Certificate serial: 01856EA6BFE3B2EE50EC0430424268D73B87
Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/K2noCPyhn3BUIQBSexYBDOr9Pvg.roa
Signing time: Sun 01 Jan 2023 18:44:59 +0000
ROA not before: Sun 01 Jan 2023 18:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207033
IP address blocks: 78.159.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:bf:e3:b2:ee:50:ec:04:30:42:42:68:d7:3b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Validity
Not Before: Jan 1 18:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b69e808fca19f70542100527b16010ceafd3ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:08:64:bc:8d:53:ac:fb:81:fd:37:27:d6:c4:
b6:b8:83:cc:28:67:70:10:0a:8d:bc:6d:bb:e6:a3:
51:80:9a:fb:f2:95:02:42:f9:30:50:5a:14:49:c7:
32:7c:fa:6f:b6:94:52:8c:c0:d6:28:09:f4:4d:e2:
bb:d3:e2:4f:0d:7c:b8:ef:b9:55:27:84:c3:f3:92:
ce:5c:f1:99:98:ac:f0:76:cf:4b:04:db:cf:d5:8d:
02:8f:0b:88:ff:a1:fe:c1:68:3e:13:86:a4:db:18:
e3:ef:ee:43:45:53:81:10:3d:fe:fa:1c:2f:9c:a2:
3b:a3:4e:e2:f2:25:01:df:74:75:f1:f5:a9:85:ea:
1f:af:80:e0:14:67:b4:07:24:8d:48:42:bf:38:b7:
25:3c:58:11:ee:fc:37:a2:67:8e:08:a4:c2:10:4a:
91:38:37:39:b5:b9:85:a9:8b:fa:1a:83:15:5e:8d:
fe:cc:35:bb:a9:64:36:7e:92:98:83:64:13:20:a5:
45:35:74:dd:99:ac:f7:de:dd:d9:8e:b1:57:ad:81:
15:95:fa:d3:0e:0a:b9:4d:67:a8:91:71:b9:57:12:
7b:9a:23:ce:d6:ec:66:f2:d5:4b:f1:ee:07:1e:17:
4f:a6:95:f8:0b:67:5c:0f:df:b8:da:8e:35:d8:cd:
11:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:69:E8:08:FC:A1:9F:70:54:21:00:52:7B:16:01:0C:EA:FD:3E:F8
X509v3 Authority Key Identifier:
keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/K2noCPyhn3BUIQBSexYBDOr9Pvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.84.0/24
Signature Algorithm: sha256WithRSAEncryption
92:63:0c:76:77:b7:fb:54:43:99:19:9b:9c:7a:52:c9:30:66:
7c:ff:cb:5b:1d:77:02:53:23:f9:ea:f1:f2:5b:eb:ff:0f:d1:
b3:72:44:5a:4d:f2:9d:bb:bb:68:24:d9:30:ae:c1:56:0c:ec:
0f:b7:33:82:23:20:0b:88:56:de:98:f2:06:1b:3d:59:76:b3:
84:78:55:5c:70:49:b8:fc:f9:d8:51:5d:a1:2b:59:9c:d6:2e:
5d:bc:0d:dd:e6:12:da:06:70:ba:ac:2b:29:4f:c8:d5:88:68:
a2:a9:7c:e7:8a:f3:db:a0:9b:18:d7:cd:11:ff:39:2a:c8:cd:
5d:66:43:0d:b4:14:f9:4e:08:d9:31:85:aa:32:cf:4c:79:55:
9a:da:7e:71:df:2d:cf:40:49:c8:0d:51:d3:99:55:1f:1e:b7:
9b:78:fb:c4:3b:a2:7c:2f:51:d4:66:09:d2:2b:e0:39:24:5d:
82:f5:cf:ee:59:46:35:33:d1:28:00:21:19:c3:bb:04:9e:14:
88:7a:e7:7c:ad:d1:af:4e:ec:53:4f:d8:83:03:d9:8d:87:9f:
9a:bf:de:94:26:90:ea:a7:ef:c6:0e:3e:71:31:79:46:1a:59:
b7:7f:3c:7c:c9:08:37:0a:d5:20:58:54:d8:3b:c6:b8:38:23:
0e:8f:f5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:17 2024 by rpki-client on console-fra.rpki-client.org