Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/H6FImidIaeX5OUbKaeSnIt5rUH8.roa
File: H6FImidIaeX5OUbKaeSnIt5rUH8.roa (raw, json)
Hash identifier: amICfGILgQOjhOtxtbl9Z1+DQkMpR54Bg27ToOLmHzA=
Subject key identifier: 1F:A1:48:9A:27:48:69:E5:F9:39:46:CA:69:E4:A7:22:DE:6B:50:7F
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 0187E7FAE45366657997DAB5B578AFD7269E
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/H6FImidIaeX5OUbKaeSnIt5rUH8.roa
Signing time: Thu 04 May 2023 18:16:32 +0000
ROA not before: Thu 04 May 2023 18:16:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 147.189.163.0/24 maxlen: 24
31.25.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Jun 2023 07:24:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e7:fa:e4:53:66:65:79:97:da:b5:b5:78:af:d7:26:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: May 4 18:16:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fa1489a274869e5f93946ca69e4a722de6b507f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0a:c3:1a:f0:0f:b9:89:ee:24:d0:50:df:c5:
e3:3a:f6:51:06:f3:3d:ce:36:57:91:14:0e:9a:fa:
03:40:af:5f:c1:1d:f1:96:79:e2:c2:8c:18:18:62:
07:72:42:e1:72:e5:c3:ab:4a:a1:46:b0:cb:85:02:
a7:00:90:05:b2:b2:a4:e1:16:42:d7:f9:89:d7:20:
2f:32:42:4f:6b:73:bb:f1:d3:01:a3:6b:9a:c3:88:
53:80:e6:b8:69:6c:44:de:6c:33:63:7a:96:2c:37:
e2:04:f6:7e:b5:f6:4b:d0:4d:8d:44:23:7a:89:9b:
3f:25:56:fd:5d:a9:1d:e4:5c:2c:59:56:08:43:f5:
93:e7:f0:e9:81:5e:85:88:b0:0e:ab:ec:25:b3:88:
7e:9d:a3:a6:fe:f1:71:df:f7:8e:5c:53:e3:60:61:
1b:3b:91:5d:da:ce:f4:a7:70:39:d6:bd:31:e2:3d:
06:ba:11:ac:8b:59:11:b4:80:15:a8:0f:7a:6a:4a:
ca:8f:cb:4d:a6:68:fc:a6:68:41:e2:70:e1:ba:1e:
d3:9d:58:98:22:17:03:bd:af:f9:3f:39:82:2b:ec:
4d:1b:22:fc:63:12:48:f7:39:31:bf:dd:a1:2e:f7:
49:82:48:e4:b3:bf:a8:85:bb:98:f3:5e:c7:87:f0:
e1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A1:48:9A:27:48:69:E5:F9:39:46:CA:69:E4:A7:22:DE:6B:50:7F
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/H6FImidIaeX5OUbKaeSnIt5rUH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
147.189.163.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:1e:73:4a:a8:5c:7e:3b:e2:83:68:0d:fe:82:22:44:d7:ef:
78:ab:d5:1b:0d:e9:85:16:bf:d8:f9:16:c7:45:e9:8f:a6:e3:
e6:c2:3f:18:9e:8b:5e:c7:99:0c:52:53:5f:b5:7e:bc:81:17:
b3:f5:b9:9b:bb:52:46:90:b3:9e:a6:01:45:51:2c:e7:54:cd:
bc:98:3e:e2:73:2d:82:82:bf:26:a4:48:67:8b:21:08:68:6c:
5b:c1:5a:0b:16:e5:77:fc:71:dc:b9:f1:6e:3c:eb:c7:71:8e:
9c:9c:22:20:90:26:cc:87:23:d5:ec:36:29:94:42:18:a9:14:
96:57:e0:74:28:01:e2:aa:cb:50:64:d8:8c:8b:34:68:df:4e:
6b:df:93:50:ad:55:e6:73:47:05:6c:3d:25:5f:ed:c9:02:67:
58:ac:e6:b4:a3:a5:64:fa:fd:dc:90:d9:d4:9b:88:76:61:70:
67:57:81:c6:c2:df:b9:45:e7:e9:76:de:b1:88:c8:24:f6:31:
6d:2d:bc:08:f5:86:1d:1f:cb:51:dd:9e:d7:f2:ae:3f:84:f8:
e4:55:b6:72:4a:f8:43:e7:0c:d6:8d:81:c1:69:0f:54:a8:a8:
2e:c3:e0:18:ec:0d:99:a6:98:c2:af:6e:c5:31:78:67:db:aa:
61:e5:4b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org