Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/4wlcem4V14y3AFE7_nekaNlyZis.roa
File: 4wlcem4V14y3AFE7_nekaNlyZis.roa (raw, json)
Hash identifier: Ghc67tI/OKHr8Dk3Kc52Q6ZEWnpMDAQb9RkMJFc/EEY=
Subject key identifier: E3:09:5C:7A:6E:15:D7:8C:B7:00:51:3B:FE:77:A4:68:D9:72:66:2B
Certificate issuer: /CN=09e5518e68467b4290c3509268b6d6d664962c86
Certificate serial: 018AFF8ED09D63EDC9845D262A7B65FDBF1C
Authority key identifier: 09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/4wlcem4V14y3AFE7_nekaNlyZis.roa
Signing time: Thu 05 Oct 2023 11:17:44 +0000
ROA not before: Thu 05 Oct 2023 11:17:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 313515
IP address blocks: 161.30.240.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:8e:d0:9d:63:ed:c9:84:5d:26:2a:7b:65:fd:bf:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e5518e68467b4290c3509268b6d6d664962c86
Validity
Not Before: Oct 5 11:17:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3095c7a6e15d78cb700513bfe77a468d972662b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fa:ea:0a:85:1a:82:41:22:d9:3e:58:2b:d2:
d1:d2:21:26:83:23:f0:0e:40:41:93:be:96:53:e6:
e5:61:80:ec:e4:3b:9f:2a:98:fc:d1:2e:9a:71:16:
ee:01:14:14:31:ca:fa:ae:96:cb:0e:bb:99:10:55:
9f:fb:e7:f3:45:a2:4a:ec:22:c2:99:44:fb:62:1e:
0e:d5:d5:ac:4a:d3:5b:70:34:e3:f9:71:0b:48:1d:
fc:6f:8e:83:2b:cc:01:6d:d2:77:2c:58:3e:51:59:
36:08:67:4f:3d:8a:54:22:b3:90:32:eb:4e:87:ec:
fc:6f:e6:e4:97:d8:f7:f1:d2:ff:cb:35:bb:5d:94:
8f:0b:08:ac:93:58:e7:a2:8e:2a:01:88:f0:a8:58:
48:0b:33:31:1f:ab:49:37:c3:52:0a:2f:d4:4b:e9:
c3:5a:ea:cc:fa:f7:3a:c7:45:fa:bc:1b:fe:40:35:
16:5a:a5:42:34:c1:57:a7:31:d2:d7:0d:1d:65:dc:
5c:75:14:bd:21:76:5c:02:99:ac:51:2b:0c:29:cd:
eb:d7:5f:95:23:70:0b:20:84:77:9a:54:d3:ab:27:
3a:ef:8a:e5:fa:84:4b:13:9e:62:2b:f4:8a:4b:51:
4b:34:0f:35:d2:8d:d3:3e:8f:14:9e:e1:78:b6:47:
c7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:09:5C:7A:6E:15:D7:8C:B7:00:51:3B:FE:77:A4:68:D9:72:66:2B
X509v3 Authority Key Identifier:
keyid:09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/4wlcem4V14y3AFE7_nekaNlyZis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/CeVRjmhGe0KQw1CSaLbW1mSWLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.30.240.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:41:35:9b:4f:c3:3d:4d:74:d4:73:49:5d:1b:ad:b4:49:42:
14:f9:c7:47:57:24:d6:48:11:7f:85:dd:8e:cb:b4:f2:cc:47:
89:67:44:e4:96:3b:89:b4:9c:a1:4f:67:4d:79:67:4f:22:78:
29:82:95:b4:3b:cb:3c:57:de:9a:70:98:25:b0:96:5b:5a:97:
24:2a:fd:2f:48:c6:2e:8c:99:72:ba:fc:06:3e:6d:9f:0f:12:
be:84:41:0f:99:dc:cb:71:83:3d:fa:9c:da:3f:dc:a3:43:f3:
e5:a5:b3:41:0e:73:e3:05:93:e7:a1:5e:82:27:75:4c:de:9d:
11:33:71:55:be:8a:1f:fa:3e:af:99:c0:2a:63:6e:68:a3:e4:
2a:fc:83:b0:c8:a6:28:fc:22:6f:da:9d:e0:fc:70:8b:4a:e9:
ad:43:7a:18:1b:de:19:3d:0e:ad:cd:66:d1:65:b1:79:cc:36:
c5:56:1b:42:a3:0f:83:da:09:34:85:65:1f:1c:ed:7b:d5:01:
6d:64:7d:fa:fa:d7:f1:1c:e4:b4:7b:4e:bb:b8:8b:01:eb:af:
da:fd:ca:4b:3c:d1:f4:00:bd:ae:5f:2d:7e:f2:7f:b5:79:83:
f2:12:36:3f:64:78:45:46:ab:ab:b0:5f:36:2e:05:68:dd:bf:
14:eb:49:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 12 14:53:34 2023 by rpki-client on console-fra.rpki-client.org