Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/Pn0ElE1oQaiH-IL1Tel_NhM61hk.roa
File: Pn0ElE1oQaiH-IL1Tel_NhM61hk.roa (raw, json)
Hash identifier: EYbn2O/ffkHMd9hrezXev3cB7Yz+y3MsJvMXq4LTlBQ=
Subject key identifier: 3E:7D:04:94:4D:68:41:A8:87:F8:82:F5:4D:E9:7F:36:13:3A:D6:19
Certificate issuer: /CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Certificate serial: 018CC5DC1388C90E90DC4298D99C30B4CC78
Authority key identifier: DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/Pn0ElE1oQaiH-IL1Tel_NhM61hk.roa
Signing time: Mon 01 Jan 2024 16:29:43 +0000
ROA not before: Mon 01 Jan 2024 16:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206766
IP address blocks: 138.124.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Feb 2024 17:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:13:88:c9:0e:90:dc:42:98:d9:9c:30:b4:cc:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Validity
Not Before: Jan 1 16:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e7d04944d6841a887f882f54de97f36133ad619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:84:fc:b3:58:f3:30:c5:fc:19:7c:08:69:f4:
8a:6d:42:de:0d:28:0c:62:8f:ed:ef:53:a2:91:22:
3a:75:c7:c9:c1:00:20:37:76:6e:92:ac:84:d7:e5:
d7:a5:75:64:e7:16:f2:ca:53:30:f0:33:10:11:9b:
8a:1a:e3:e6:77:92:5d:53:ba:42:2e:a5:e0:87:9d:
73:fe:ac:95:ba:54:45:59:23:2c:98:ce:f6:2a:a1:
c0:94:58:14:1e:13:07:7b:1f:e3:50:e7:4d:cf:ad:
49:40:8b:e2:d0:a4:a7:4f:90:3c:e1:74:e9:64:74:
d6:05:3d:07:e7:79:d4:db:69:17:43:e6:d0:6c:1b:
eb:02:78:70:06:05:e7:b2:14:44:af:c1:65:09:d0:
1c:62:e8:fb:b5:d9:01:6e:b4:fb:2f:38:d0:52:05:
61:5a:73:46:7f:89:07:00:6c:96:28:12:dd:ab:b4:
d0:0a:01:ef:16:f9:17:b0:a7:c3:bc:af:70:fa:8c:
55:d7:80:0f:ca:74:0f:7d:76:86:76:77:a0:fd:f6:
dd:ae:94:f9:79:0f:6b:2f:0e:ce:4f:ca:dc:c3:04:
52:fa:c6:3e:cd:c1:fc:ce:9d:eb:00:44:c9:9c:68:
c9:e7:dc:63:41:40:4a:a8:44:2a:3d:a5:3c:32:4f:
6d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:7D:04:94:4D:68:41:A8:87:F8:82:F5:4D:E9:7F:36:13:3A:D6:19
X509v3 Authority Key Identifier:
keyid:DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/Pn0ElE1oQaiH-IL1Tel_NhM61hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.124.185.0/24
Signature Algorithm: sha256WithRSAEncryption
44:75:6a:08:fb:8e:8f:5d:6f:7f:28:19:aa:3b:61:bd:fb:a4:
e7:db:88:23:60:04:8f:85:28:47:0a:46:c8:b2:f5:9c:1d:d6:
45:ee:f0:a8:29:e3:09:4e:84:68:14:ee:e8:c3:b6:27:76:22:
15:19:f7:a9:e4:42:81:ba:2f:80:18:de:2f:05:b1:97:ae:ff:
2f:cc:5c:42:b9:22:9c:08:a3:91:00:25:8e:b7:dc:0d:98:15:
e3:62:0a:b6:0b:82:41:3a:f6:5f:c5:10:05:02:eb:79:0d:07:
ea:2c:ec:84:7d:fa:28:f1:2c:d6:ad:d8:62:bd:c0:61:f0:fb:
3d:80:5b:64:97:86:73:03:db:d7:e7:f7:ea:72:94:1a:2d:ba:
37:03:14:28:ed:87:3e:3e:8c:88:62:5a:f9:b0:78:1a:aa:af:
ac:72:64:aa:4a:58:28:e7:60:41:a6:ac:bd:da:48:af:e9:d2:
3e:2b:5c:bb:8f:56:39:3f:3d:72:d9:79:fc:bc:f6:6c:fb:54:
3b:ca:47:09:0e:45:18:63:9a:c6:a5:8d:fd:5c:4a:4a:0d:99:
10:ab:63:13:32:c8:85:5c:5b:d1:a1:c5:b6:2f:0e:98:9b:46:
f1:44:e3:d7:ff:95:1f:cb:4f:14:4b:cd:25:82:78:1e:df:a0:
ba:f0:7d:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:45 2024 by rpki-client on console-ams.rpki-client.org