Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/rc8ve1koF5GJzPJ2HFIspP6sX_4.roa
File: rc8ve1koF5GJzPJ2HFIspP6sX_4.roa (raw, json)
Hash identifier: cbBtr3CKaPe9jgsiadetRqVloLA3/p1GTQv3cpNXFYM=
Subject key identifier: AD:CF:2F:7B:59:28:17:91:89:CC:F2:76:1C:52:2C:A4:FE:AC:5F:FE
Certificate issuer: /CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Certificate serial: 018CC64ADB2DA36F86167B18F99990F3E130
Authority key identifier: BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/rc8ve1koF5GJzPJ2HFIspP6sX_4.roa
Signing time: Mon 01 Jan 2024 18:30:43 +0000
ROA not before: Mon 01 Jan 2024 18:30:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13379
IP address blocks: 157.23.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 01:28:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:db:2d:a3:6f:86:16:7b:18:f9:99:90:f3:e1:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Validity
Not Before: Jan 1 18:30:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adcf2f7b5928179189ccf2761c522ca4feac5ffe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4c:eb:17:e1:63:b2:26:78:13:bd:01:3e:df:
85:f6:cd:68:8a:25:4e:39:3f:ce:9a:4b:75:de:5c:
49:3c:3d:3b:41:8f:81:28:f9:10:a3:dd:82:57:b3:
26:8c:07:43:d5:b4:52:96:ea:4e:c0:86:1a:37:cf:
50:2b:10:6a:7d:8b:28:61:c9:b5:1f:06:13:6d:3b:
7a:0b:a6:de:db:d1:d5:3b:34:f9:51:ba:f5:7f:61:
b1:91:91:e5:ee:e1:ff:ea:3f:9b:b3:fc:60:b0:75:
1f:c4:47:66:bd:57:c6:62:5b:da:0b:7d:40:51:48:
4d:41:a5:d8:b5:ce:45:b5:fb:88:99:1c:0e:56:71:
ef:49:68:9b:ce:06:5a:f0:0b:43:2d:22:8e:df:8a:
83:bf:d9:ed:b2:08:23:56:1c:b8:f9:d0:3d:d6:e7:
bb:a2:ba:00:85:e8:32:0c:91:a1:cc:08:56:26:3c:
0f:e2:f7:6e:bf:d3:7b:85:2d:e9:9b:aa:9f:17:d4:
ed:99:30:6c:6d:d9:8a:cb:52:45:62:be:08:3f:9c:
a9:c1:7f:9b:0b:d8:c4:23:3b:f6:93:68:f3:2e:9f:
b9:d6:7f:80:a6:fb:07:7a:ec:67:66:56:48:15:0b:
f8:72:ad:48:01:ae:91:9d:09:fb:ed:e1:9e:21:9e:
00:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CF:2F:7B:59:28:17:91:89:CC:F2:76:1C:52:2C:A4:FE:AC:5F:FE
X509v3 Authority Key Identifier:
keyid:BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/rc8ve1koF5GJzPJ2HFIspP6sX_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/u6Nc-KtvPqoq663Z4jc97AiTYl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.23.251.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:15:e2:04:c1:56:11:8a:ce:e4:c0:d8:a2:00:87:8e:2e:e6:
ad:63:34:8d:75:6b:f4:ac:74:a8:aa:e8:7c:19:cd:71:3b:a6:
70:ff:ef:44:f7:ec:25:50:96:ee:ce:dc:5a:0e:e2:b8:83:fe:
5e:e8:e7:a2:0e:eb:82:26:5f:d5:eb:44:57:ee:86:a0:ff:27:
6c:b5:64:85:9e:cb:f3:1a:77:3d:d3:c6:08:22:6d:a7:ab:92:
cd:2c:6e:52:8b:1e:31:84:00:9e:b1:5c:00:b4:ed:af:3c:b8:
4e:10:49:2a:c6:5b:fc:f5:ef:39:39:ab:a2:ec:b8:55:27:a3:
fc:d4:5a:71:85:2b:f5:21:7a:ad:6a:01:f1:f0:1d:6c:e3:44:
3b:49:3d:28:58:5a:28:5d:d7:c9:b5:eb:1b:8a:4e:50:c4:c7:
61:37:07:dd:9f:15:b0:fe:b8:e0:8b:af:07:e2:cb:cc:8a:b0:
4e:6d:95:11:e8:5a:f3:93:3a:50:58:7a:ea:35:a0:dc:a8:63:
8c:fe:b3:23:fc:52:08:61:db:e3:f3:28:71:1f:d3:08:96:af:
fc:9e:bc:a9:94:c6:89:32:6a:39:9d:bb:c7:f2:8a:fc:74:23:
a0:23:36:8c:1c:c9:41:45:31:54:57:0b:3b:1d:9a:0a:c8:7a:
4a:be:20:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:51 2024 by rpki-client on console-ams.rpki-client.org