Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/LxNUPzCYFOnXBOXHrfpGoGYPvwQ.roa
File: LxNUPzCYFOnXBOXHrfpGoGYPvwQ.roa (raw, json)
Hash identifier: yHJepoR20HHWr6HXDczuf4001uQwMkiF5ydkql/OVco=
Subject key identifier: 2F:13:54:3F:30:98:14:E9:D7:04:E5:C7:AD:FA:46:A0:66:0F:BF:04
Certificate issuer: /CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Certificate serial: 0185708CCC9A3148B46EE3D9BE7A3EDB47E7
Authority key identifier: DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/LxNUPzCYFOnXBOXHrfpGoGYPvwQ.roa
Signing time: Mon 02 Jan 2023 03:35:53 +0000
ROA not before: Mon 02 Jan 2023 03:35:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 138.124.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Jan 2023 10:09:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:cc:9a:31:48:b4:6e:e3:d9:be:7a:3e:db:47:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Validity
Not Before: Jan 2 03:35:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f13543f309814e9d704e5c7adfa46a0660fbf04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b6:8f:bd:6f:a8:4b:b7:d4:9c:fb:72:bc:5e:
22:e2:c0:ba:f6:8d:7e:0d:bc:d1:82:1b:00:bd:23:
61:2c:34:df:83:99:c8:a8:b2:a5:02:8d:ae:d7:bd:
cb:9e:c6:bf:1d:88:50:eb:a9:8d:e4:04:b6:d6:98:
89:51:0a:8b:ee:ca:03:dc:38:81:a6:eb:2a:a3:46:
eb:c0:dc:c4:26:5d:24:9e:bd:30:46:2b:13:3c:56:
96:97:70:32:1d:e6:2e:18:07:6b:6f:4c:3e:10:fe:
44:64:50:fb:f5:42:5e:7d:bc:01:78:42:71:9e:25:
c7:fa:83:9e:49:0a:0f:07:83:11:05:c6:49:84:74:
d3:eb:09:36:9e:6c:1a:b3:96:e9:22:a2:50:2d:e9:
a5:70:1c:aa:81:68:a8:56:69:3f:d8:b3:69:09:29:
77:ff:cf:82:06:28:3b:6e:70:79:ea:a1:11:be:e8:
74:62:87:96:e7:f3:a7:c7:82:19:01:ce:5d:bc:c6:
ca:ee:8e:07:77:53:1f:ff:7c:d8:f1:99:6a:03:8c:
b2:9e:c7:c7:04:d5:36:60:e2:ab:e6:77:65:1b:f4:
76:77:fa:0f:8a:95:06:5c:b2:f9:c1:fe:ea:d6:2a:
d9:1a:8f:0b:2e:2f:71:9b:ff:51:e0:ee:3f:87:47:
ae:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:13:54:3F:30:98:14:E9:D7:04:E5:C7:AD:FA:46:A0:66:0F:BF:04
X509v3 Authority Key Identifier:
keyid:DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/LxNUPzCYFOnXBOXHrfpGoGYPvwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.124.181.0/24
Signature Algorithm: sha256WithRSAEncryption
02:b9:64:ee:b6:15:37:9f:ac:ac:e1:94:1e:66:62:24:61:df:
9f:3b:aa:2f:ef:fb:34:48:46:28:ce:41:08:69:30:d4:4c:78:
8c:f9:e3:97:aa:3e:76:ff:56:f6:94:01:2c:27:d3:45:18:2f:
49:b5:6d:20:59:14:58:bc:de:27:c7:8f:03:ea:d2:21:f9:09:
f1:9c:4c:54:9c:73:26:8b:5f:9c:38:bb:2d:4c:e4:82:e9:c7:
76:11:d5:ef:24:ac:be:d0:47:3a:b9:7d:e7:e5:20:bd:2c:91:
4c:a1:79:d5:30:7c:81:6c:6b:c6:39:c4:79:55:3f:9c:f6:23:
0c:d2:fa:be:b9:8e:35:b4:f1:14:d2:25:fc:d0:32:74:32:52:
ef:01:e9:3f:d7:36:76:0f:61:68:f8:8a:ef:67:a8:69:52:c1:
7e:27:1d:c9:49:fd:90:ed:e3:48:cc:8f:e2:a9:43:e6:93:e7:
b9:c8:fe:01:3d:30:d1:ac:9f:f7:df:1a:8f:7c:69:ac:8d:50:
64:5e:29:61:21:ef:9d:c8:f1:9c:47:c1:23:37:fe:ed:d2:34:
d0:a8:a5:ee:cb:fd:cc:91:a4:40:3d:7d:11:27:d0:9a:c2:c7:
56:73:c5:dd:c5:17:c0:f1:01:34:70:3f:57:7a:9b:19:c7:72:
aa:7f:66:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:45 2024 by rpki-client on console-fra.rpki-client.org