Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/1-LRDxqKfm2ZSZS1Y--DmyxL8YIA.roa
File: 1-LRDxqKfm2ZSZS1Y--DmyxL8YIA.roa (raw, json)
Hash identifier: eOgbqxrbcSdx+sZDidhm2rGYGyrZDw7Xm4x8H1pdO3I=
Subject key identifier: F8:B4:43:C6:A2:9F:9B:66:52:65:2D:58:FB:E0:E6:CB:12:FC:60:80
Certificate issuer: /CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Certificate serial: 01857246D56D3CC1FDA5957AFDF94762F487
Authority key identifier: BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/1-LRDxqKfm2ZSZS1Y--DmyxL8YIA.roa
Signing time: Mon 02 Jan 2023 11:38:42 +0000
ROA not before: Mon 02 Jan 2023 11:38:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140693
IP address blocks: 157.23.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d5:6d:3c:c1:fd:a5:95:7a:fd:f9:47:62:f4:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Validity
Not Before: Jan 2 11:38:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8b443c6a29f9b6652652d58fbe0e6cb12fc6080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fa:95:24:e1:55:2b:e0:b6:d3:2b:50:bf:ff:
ef:93:5e:0d:c7:8f:7f:9a:87:eb:e9:ae:69:e7:a7:
47:eb:a3:79:82:6e:dd:ae:22:aa:65:36:83:ca:3d:
8d:33:ec:2d:c1:be:96:3f:62:01:34:90:5e:82:ff:
2a:98:fb:26:f9:0d:ea:8f:5a:c1:20:cb:a1:61:e4:
ae:2b:73:94:90:60:72:e1:cf:a3:7e:a5:8b:09:7b:
40:a6:2e:44:07:2f:47:be:d2:ca:50:2f:0f:e8:9e:
23:89:dd:76:5d:da:12:20:47:c8:62:48:a5:05:6b:
38:09:59:66:6f:3c:70:1e:09:a3:fb:43:71:ad:0d:
88:1d:f9:52:f1:36:8e:2b:7e:ba:f6:b5:9e:19:9f:
9a:2b:2a:67:05:98:d4:6e:23:0e:26:a7:b0:e4:f4:
28:be:e4:71:4e:be:09:5e:2b:a5:e8:1d:26:17:de:
68:4d:f1:e3:b1:b6:dc:da:4d:64:8e:f5:cf:09:17:
ee:f9:93:b1:0e:40:34:54:2b:77:74:12:97:7d:83:
da:da:47:f8:60:57:13:f0:f5:5d:3a:99:d0:31:22:
dd:f4:f4:53:b7:c6:91:9f:fa:48:8d:6e:83:62:cc:
2b:84:74:d6:66:92:a0:e6:e3:70:47:a5:7e:52:38:
21:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B4:43:C6:A2:9F:9B:66:52:65:2D:58:FB:E0:E6:CB:12:FC:60:80
X509v3 Authority Key Identifier:
keyid:BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/1-LRDxqKfm2ZSZS1Y--DmyxL8YIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/u6Nc-KtvPqoq663Z4jc97AiTYl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.23.248.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:35:63:44:df:99:74:2f:90:48:98:06:89:3f:8e:41:dd:dc:
69:4c:b8:38:ea:d1:b6:f6:b1:6a:7f:7d:8e:e1:5a:7c:26:7d:
10:8a:21:ba:3e:8a:f6:b6:b3:e0:8f:b4:6a:13:bd:37:bf:84:
f4:c9:fd:98:e0:e9:4f:44:82:8f:2e:83:c3:14:7b:e0:d6:76:
72:23:52:6c:13:da:93:83:29:44:4a:c8:23:8f:23:4d:d5:25:
7a:b3:0c:4f:c7:b2:a8:a8:a4:a5:11:86:8f:45:c3:60:1f:c7:
cb:52:46:4d:eb:e6:40:50:2d:74:58:9e:c6:5f:3f:16:57:a7:
21:6e:5a:c6:98:70:2b:27:ff:1d:a7:c1:23:f6:56:c2:66:50:
7c:8e:c5:7d:be:52:a1:80:b9:08:3d:8e:06:ed:1f:09:5a:35:
25:de:94:be:11:db:31:ba:fb:54:c3:8a:7c:0d:09:cb:fc:5f:
23:32:dc:5e:19:b8:2e:49:0a:90:d2:3f:72:1b:a3:32:46:50:
44:dd:df:43:c3:50:1d:d4:08:f8:46:d9:1d:1f:84:7e:0c:c0:
f9:ca:94:09:e9:e3:b0:d7:cf:a2:fa:2f:54:ee:0a:70:81:f7:
3b:41:61:66:a3:fb:2a:e8:cf:fe:72:e3:2e:0c:78:d3:5a:b0:
dd:12:a3:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:32 2024 by rpki-client on console-fra.rpki-client.org