Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/6d1oHBHZ08RTxj0qnaPnGKKInyc.roa
File: 6d1oHBHZ08RTxj0qnaPnGKKInyc.roa (raw, json)
Hash identifier: u5MjRH+DuUe16DAUBb6cIOxJ81sgQPt1NdLipwZFZos=
Subject key identifier: E9:DD:68:1C:11:D9:D3:C4:53:C6:3D:2A:9D:A3:E7:18:A2:88:9F:27
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 0185719549827E61D39D272DEE97552CC74E
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/6d1oHBHZ08RTxj0qnaPnGKKInyc.roa
Signing time: Mon 02 Jan 2023 08:24:47 +0000
ROA not before: Mon 02 Jan 2023 08:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 84.54.26.0/23 maxlen: 23
84.54.24.0/23 maxlen: 23
84.54.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 28 Dec 2023 10:22:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:49:82:7e:61:d3:9d:27:2d:ee:97:55:2c:c7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Jan 2 08:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9dd681c11d9d3c453c63d2a9da3e718a2889f27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:32:b7:b4:ea:fb:43:4d:23:95:6d:e2:80:1a:
48:9b:b0:cc:ce:d6:70:e7:06:1e:64:8e:74:0c:6c:
88:62:76:94:92:ee:6c:10:ec:33:e4:73:ff:64:5e:
95:98:d3:27:e3:cb:3a:d1:6e:79:a4:19:8b:f2:62:
c5:8b:0f:ab:6c:e0:9e:7c:66:06:b1:25:e9:e9:f3:
5a:e9:dd:fb:aa:bd:09:f2:aa:7e:ea:f1:c1:0f:2d:
01:5f:6f:37:33:c8:48:94:82:3f:44:35:ed:bd:bd:
66:26:d8:4b:b1:4b:0e:34:23:04:49:10:46:56:ab:
8d:b4:a4:a7:68:49:86:0b:a7:be:15:12:64:47:7b:
0c:96:e5:0b:5a:85:5e:66:d7:20:ab:16:46:70:a7:
75:5a:b1:65:ff:b6:38:b7:06:60:d9:5c:16:64:be:
a8:35:37:f0:5d:2d:1f:a6:60:7c:41:58:71:b6:ef:
fd:c7:1b:2f:d7:e6:61:f6:d9:0d:a3:82:8e:96:ba:
06:1d:55:85:0d:e3:bc:0d:33:fc:14:1a:06:d4:b2:
31:c5:ca:e0:73:3d:c3:3b:e4:7c:fd:cc:70:39:7a:
99:37:cb:75:06:57:06:f2:29:30:0f:e9:58:29:28:
98:b8:2b:f3:80:12:f9:f4:78:cb:57:d0:23:a3:db:
ee:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DD:68:1C:11:D9:D3:C4:53:C6:3D:2A:9D:A3:E7:18:A2:88:9F:27
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/6d1oHBHZ08RTxj0qnaPnGKKInyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.24.0/22
Signature Algorithm: sha256WithRSAEncryption
52:06:a3:a9:7c:2f:ac:2e:f1:29:f4:64:8c:fd:58:fb:c1:53:
15:51:70:71:00:b5:07:1b:6e:89:8f:26:da:3f:26:ad:a3:7e:
d7:45:23:2d:55:27:7d:cf:96:4f:96:86:a7:ae:6d:57:00:6f:
d3:fb:68:d4:48:6d:fc:1c:8a:59:50:3e:40:7b:b3:23:58:54:
8b:cf:ec:c4:1b:71:51:86:bc:12:b5:92:73:c2:71:c4:a1:4e:
7b:19:d2:bb:5d:ba:b9:da:64:fd:94:27:7f:55:f6:41:9e:4e:
e5:22:7c:9d:21:60:20:be:d5:8e:5b:21:a5:7e:6e:11:5a:84:
e8:12:e0:45:06:be:1b:d7:ef:bd:cc:14:48:0d:3e:df:2f:2c:
d5:e4:95:aa:09:dd:18:93:78:61:af:37:95:09:23:86:bc:29:
25:9a:0f:3d:34:63:1b:7c:36:0b:01:d9:af:41:aa:82:cd:aa:
a4:9c:9b:7b:14:cf:bd:78:c2:88:e0:9d:55:e5:cc:ce:74:51:
c0:27:45:24:de:c8:96:13:c3:39:d1:8c:d3:71:cd:8e:51:87:
af:3c:9b:6c:98:a0:87:02:4b:6c:a0:8c:47:ac:84:45:cd:a7:
7b:ec:c6:ed:c1:55:0f:4f:a8:87:e4:a2:49:bf:84:ec:4a:d0:
2d:d7:6c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:31 2024 by rpki-client on console-fra.rpki-client.org