Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/7NxzGYew0GI9p3KV1cQ75I9wxaw.roa
File: 7NxzGYew0GI9p3KV1cQ75I9wxaw.roa (raw, json)
Hash identifier: GswWCb4/7rnm5zramLx7MuB+rk3apXXHIGuXpIBiNAc=
Subject key identifier: EC:DC:73:19:87:B0:D0:62:3D:A7:72:95:D5:C4:3B:E4:8F:70:C5:AC
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 018AF05EC743ECEB312D99F6A2BB77AD190B
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/7NxzGYew0GI9p3KV1cQ75I9wxaw.roa
Signing time: Mon 02 Oct 2023 12:30:57 +0000
ROA not before: Mon 02 Oct 2023 12:30:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45671
IP address blocks: 84.239.61.0/24 maxlen: 24
84.239.60.0/24 maxlen: 24
84.239.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 11:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:5e:c7:43:ec:eb:31:2d:99:f6:a2:bb:77:ad:19:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Oct 2 12:30:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecdc731987b0d0623da77295d5c43be48f70c5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e6:07:1f:29:61:94:4b:ef:8d:e1:9b:d8:82:
01:90:27:de:b1:67:10:a4:32:97:68:f9:e3:de:70:
98:3f:e6:37:60:ef:78:6a:71:1b:96:69:f3:5c:d1:
4c:11:17:36:44:21:b7:20:8d:8a:df:d7:a3:1f:af:
3b:49:0f:cb:3e:21:ed:c0:09:b1:85:ba:5b:bc:b4:
3f:60:f5:d7:3c:f4:b0:26:b3:c5:ab:9b:4f:8f:c1:
55:e9:f2:d6:d1:bf:b7:89:e3:f6:e0:c3:6e:76:d5:
36:b3:19:c0:64:d0:ea:78:22:99:0c:6a:47:02:d2:
19:f0:de:3e:d6:e7:d7:47:ef:05:b5:36:59:90:a8:
93:60:83:83:c1:ec:77:bc:0b:28:4a:e1:bf:f7:3a:
21:10:b9:bd:93:0e:49:10:69:31:e8:8a:4a:03:0e:
d8:40:3b:d2:4a:3d:98:a5:a2:1c:c8:7a:eb:0c:a7:
14:a3:10:ed:74:72:6f:c2:b4:c2:63:80:e9:d0:fc:
65:7d:ed:47:2f:9a:c0:35:08:68:d6:7c:13:d7:7c:
b5:8d:04:be:da:01:9f:0b:1c:86:68:18:be:df:cd:
13:29:f5:2d:03:8b:89:47:9f:e0:f8:82:d3:99:99:
37:12:b0:40:b6:08:c7:c4:8d:95:c1:f7:5b:3e:33:
89:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DC:73:19:87:B0:D0:62:3D:A7:72:95:D5:C4:3B:E4:8F:70:C5:AC
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/7NxzGYew0GI9p3KV1cQ75I9wxaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.60.0-84.239.62.255
Signature Algorithm: sha256WithRSAEncryption
14:cb:bb:3f:62:80:05:6a:f9:ad:3a:7d:bc:90:bd:70:4e:e5:
bf:31:93:a7:a4:da:5a:6c:b5:21:44:7e:79:d6:67:e0:8b:9b:
d7:b1:85:03:a8:be:c8:5c:04:a7:5e:ee:db:3c:3a:1a:b4:0c:
33:7a:17:72:ee:9a:d2:e7:0c:e0:51:ff:5c:6e:a6:87:86:d0:
cb:ab:74:c2:d3:e9:b6:11:dc:55:f6:e7:9d:c7:2d:90:c2:5c:
3d:bf:35:d5:ee:23:08:83:10:2f:8a:f7:a9:7d:c7:1f:08:1c:
c5:f7:6a:67:f6:7c:2e:d9:d6:bd:22:32:3a:40:27:7d:86:5a:
d4:84:e8:09:12:62:35:a5:db:aa:2e:83:74:5a:b9:f6:63:66:
d8:a4:75:22:7b:23:d5:f0:7a:ef:7c:af:66:35:e2:42:05:a9:
95:76:18:fc:33:0a:d0:d2:cd:36:e6:f0:d5:be:fb:85:23:73:
51:ef:c5:c8:66:08:c4:87:21:1c:36:bf:94:ae:98:18:d6:23:
6c:4c:cf:d0:e8:7f:e3:66:98:17:37:ab:33:c5:6e:b4:66:b9:
14:00:d6:48:be:80:1e:60:e2:bc:7c:45:e1:e9:d9:5a:69:fc:
9c:ad:41:48:1f:37:d5:ec:a5:06:8d:a2:91:25:50:42:d0:1d:
af:a4:0c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:02 2024 by rpki-client on console-fra.rpki-client.org