Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/j9wjnCt_PX2sULkCdKeOCL5h1zQ.roa
File: j9wjnCt_PX2sULkCdKeOCL5h1zQ.roa (raw, json)
Hash identifier: lvI5UAiLUFPeZUBxYg3AjOFs8B7fQJUnKMvxg/0cCGQ=
Subject key identifier: 8F:DC:23:9C:2B:7F:3D:7D:AC:50:B9:02:74:A7:8E:08:BE:61:D7:34
Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c
Certificate serial: 018799586B5DA12CDD9AA61548294BEFD5E1
Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/j9wjnCt_PX2sULkCdKeOCL5h1zQ.roa
Signing time: Wed 19 Apr 2023 11:48:41 +0000
ROA not before: Wed 19 Apr 2023 11:48:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204894
IP address blocks: 91.239.240.0/24 maxlen: 24
2a12:fc40::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:99:58:6b:5d:a1:2c:dd:9a:a6:15:48:29:4b:ef:d5:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c
Validity
Not Before: Apr 19 11:48:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fdc239c2b7f3d7dac50b90274a78e08be61d734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:57:41:d1:96:b0:97:7a:02:eb:be:fc:97:c0:
e0:36:fd:a7:0b:25:53:4e:d0:9b:c0:1d:23:eb:e2:
e2:81:09:bd:13:6f:b4:5e:39:73:f9:72:20:11:f3:
77:09:5d:f4:c6:fa:02:c8:a4:4e:97:d3:3a:45:af:
c8:e1:75:ad:63:eb:08:f9:46:0e:2a:c0:56:8d:93:
90:91:69:b9:a2:cb:e2:77:fa:0c:3a:93:ec:86:2c:
b3:6f:37:75:71:2b:a2:92:71:32:1d:19:26:72:ae:
c1:4d:3d:3f:0b:c4:19:7f:cd:af:3e:c5:7b:48:d7:
68:f6:24:f0:a6:93:e7:dc:88:db:e8:ab:82:d4:c2:
57:d3:73:83:47:6e:40:53:8c:52:a1:52:7a:9c:73:
27:43:2e:9f:81:36:98:1e:e4:6d:df:39:89:c6:de:
a6:e7:a0:61:4e:b7:b6:92:22:97:76:7e:a4:1b:f6:
9d:ee:b8:57:08:03:5c:87:d2:5f:99:dc:bf:91:5a:
93:9a:77:cd:49:fd:89:26:10:9f:7b:1a:fd:23:1e:
b2:b6:0c:b2:a4:b1:4c:0f:5c:e5:9f:5e:36:0b:f8:
4d:ec:01:ba:ca:7b:d1:5e:5e:0f:af:77:b8:1e:0b:
d1:eb:9a:01:8c:29:99:87:8f:42:66:5a:43:74:ff:
7a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:DC:23:9C:2B:7F:3D:7D:AC:50:B9:02:74:A7:8E:08:BE:61:D7:34
X509v3 Authority Key Identifier:
keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/j9wjnCt_PX2sULkCdKeOCL5h1zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.240.0/24
IPv6:
2a12:fc40::/29
Signature Algorithm: sha256WithRSAEncryption
1e:3b:f6:54:b5:b0:6d:5c:d9:0c:c3:13:80:03:f6:ee:04:79:
8a:85:30:5f:92:ea:0f:1c:16:b8:ea:a2:88:a2:99:d3:6c:2b:
81:f9:bb:8e:8c:ec:ee:02:ee:d8:23:6b:28:ae:17:48:ad:bc:
2a:45:a1:49:a4:a9:83:dc:cb:db:9e:83:c1:a4:5f:cf:07:2a:
cc:8a:82:a3:d8:28:0f:26:5e:9e:14:40:46:09:9f:6d:dd:2f:
6a:bc:9d:69:f6:ed:38:e2:ba:41:42:55:db:43:d6:c9:c2:e6:
6f:cd:4e:35:58:31:78:bc:26:4c:00:9a:8a:02:4d:d9:8f:2d:
b7:08:3a:e3:c6:62:d4:23:76:f9:7b:d1:e1:f2:59:dc:ae:89:
ba:8d:6b:6c:e2:36:a1:91:d3:94:75:99:2e:23:14:25:55:45:
77:e3:66:64:df:21:1d:96:a4:92:45:f9:e4:80:87:50:bf:9a:
f9:88:16:95:b6:0e:a0:8e:4e:4d:c6:52:39:ce:94:80:04:52:
70:06:2b:c2:92:98:c9:65:8b:6e:a9:8c:92:70:30:cf:fa:55:
ee:c3:f2:d6:1f:de:19:fb:fd:bd:7c:1e:69:e4:e2:37:01:36:
cd:40:35:5b:e5:fe:83:52:d1:2d:93:cb:3e:9d:b8:12:0c:77:
b9:76:40:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:10 2024 by rpki-client on console-ams.rpki-client.org