Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/8111f4-18ec-4f39-8541-0775fbb8e81a/1/b2GGQJ5UFCsoYhTcU51kXwYEYsU.roa
File: b2GGQJ5UFCsoYhTcU51kXwYEYsU.roa (raw, json)
Hash identifier: iNExjbvByNybWH58AEFsuMPEfMFZnR3Af597/vb19Eg=
Subject key identifier: 6F:61:86:40:9E:54:14:2B:28:62:14:DC:53:9D:64:5F:06:04:62:C5
Certificate issuer: /CN=aae1356e6404c0b702d5b3813a934435aaec0c98
Certificate serial: 01856B256360BC0310F6BDB1F6F5ED4FFA41
Authority key identifier: AA:E1:35:6E:64:04:C0:B7:02:D5:B3:81:3A:93:44:35:AA:EC:0C:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/quE1bmQEwLcC1bOBOpNENarsDJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/8111f4-18ec-4f39-8541-0775fbb8e81a/1/b2GGQJ5UFCsoYhTcU51kXwYEYsU.roa
Signing time: Sun 01 Jan 2023 02:24:50 +0000
ROA not before: Sun 01 Jan 2023 02:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43611
IP address blocks: 78.24.80.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:25:63:60:bc:03:10:f6:bd:b1:f6:f5:ed:4f:fa:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aae1356e6404c0b702d5b3813a934435aaec0c98
Validity
Not Before: Jan 1 02:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f6186409e54142b286214dc539d645f060462c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7f:5d:d6:04:cf:f1:1c:79:51:04:de:10:fc:
07:52:40:c2:58:93:b4:15:28:24:1c:7e:fd:2e:b1:
de:de:21:ee:cf:ed:a4:68:47:5f:30:c4:e0:af:f2:
0a:19:3d:a9:d3:52:aa:f0:e5:3a:63:18:f1:a5:59:
f2:8e:fa:94:01:b3:32:62:48:12:60:d2:8b:8c:a3:
c7:fb:18:ba:c7:ea:0c:d6:cd:17:e6:df:27:aa:3e:
0f:89:8e:c4:90:e8:a5:48:5f:76:d8:62:ca:4d:a1:
2c:d7:4f:5d:79:85:ac:32:44:54:eb:24:34:da:54:
91:5c:2e:b3:b9:0c:66:5a:e6:c0:0a:12:9b:b9:f8:
cc:8b:f9:31:f8:57:35:d8:7b:ba:21:c8:d5:72:b7:
28:08:53:57:c7:89:77:40:9e:51:94:68:99:13:65:
fc:6a:d6:a4:1b:47:05:a2:e0:69:b7:a9:a0:00:74:
42:7a:2d:42:2c:07:c2:6a:39:d5:c3:41:92:28:e6:
83:15:fa:3b:10:44:2e:ee:fe:69:94:f8:04:f0:a2:
45:26:ff:04:59:05:09:7b:7b:e1:c6:34:91:1a:2b:
9a:76:58:f4:0e:a1:3d:b3:19:4d:f6:11:de:f7:04:
ae:72:89:58:36:63:64:ff:97:e4:9e:ba:75:db:01:
3c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:61:86:40:9E:54:14:2B:28:62:14:DC:53:9D:64:5F:06:04:62:C5
X509v3 Authority Key Identifier:
keyid:AA:E1:35:6E:64:04:C0:B7:02:D5:B3:81:3A:93:44:35:AA:EC:0C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/quE1bmQEwLcC1bOBOpNENarsDJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/8111f4-18ec-4f39-8541-0775fbb8e81a/1/b2GGQJ5UFCsoYhTcU51kXwYEYsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/8111f4-18ec-4f39-8541-0775fbb8e81a/1/quE1bmQEwLcC1bOBOpNENarsDJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.80.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:33:59:54:1f:a1:e8:4c:02:c8:1d:88:1b:7c:6e:47:4a:20:
63:56:00:63:f6:b2:cd:84:37:92:e2:d0:f2:94:88:e6:18:6c:
9c:a1:4c:58:86:53:9f:15:17:b2:18:57:65:ca:ca:69:82:31:
49:f2:00:bb:22:35:ba:8f:ce:30:71:81:38:04:b0:2d:b9:cb:
d0:7c:8a:21:6c:6f:03:8a:70:e2:31:f4:74:22:a2:43:03:6d:
f0:af:2f:e7:6f:db:c5:60:09:de:c6:d0:05:28:de:50:90:77:
98:8b:73:d3:d9:81:cc:fa:18:63:56:b0:ea:0d:34:33:24:0d:
c6:9c:44:af:46:d9:0f:3a:b4:e5:c3:26:1a:4e:2b:41:04:95:
4f:7f:4a:4f:06:7c:ac:ac:1c:71:df:12:92:ca:c0:35:d9:9b:
8e:c4:af:44:ec:11:a1:e0:de:72:2d:a2:ae:fc:56:45:8c:0d:
05:a6:18:ee:14:0e:a8:64:07:67:c9:d6:89:3e:4b:2d:ba:cb:
31:4a:d8:f5:2f:c5:7c:ca:e8:00:21:a0:9e:af:45:1c:4e:2a:
2c:be:ea:da:c6:bc:0c:15:4e:7e:4b:bf:05:de:d3:c3:86:90:
73:0b:ab:57:ed:aa:99:18:8c:ae:70:2f:4b:8a:05:93:e3:72:
cf:c5:54:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:51 2024 by rpki-client on console-ams.rpki-client.org