Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/8LJ_VEmSZX7XPbBWcx3H59hKM74.roa
File: 8LJ_VEmSZX7XPbBWcx3H59hKM74.roa (raw, json)
Hash identifier: cF8lXKSWEckynbnv/LOB6kjS7TWtTHK4w6/tU5mNcE8=
Subject key identifier: F0:B2:7F:54:49:92:65:7E:D7:3D:B0:56:73:1D:C7:E7:D8:4A:33:BE
Certificate issuer: /CN=a9a815be7547eb870eb5f641d30fe6963741c8e0
Certificate serial: 01856D6F70F60861D7E196125D4C3DB758D1
Authority key identifier: A9:A8:15:BE:75:47:EB:87:0E:B5:F6:41:D3:0F:E6:96:37:41:C8:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qagVvnVH64cOtfZB0w_mljdByOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/8LJ_VEmSZX7XPbBWcx3H59hKM74.roa
Signing time: Sun 01 Jan 2023 13:04:57 +0000
ROA not before: Sun 01 Jan 2023 13:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44215
IP address blocks: 79.99.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:70:f6:08:61:d7:e1:96:12:5d:4c:3d:b7:58:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a815be7547eb870eb5f641d30fe6963741c8e0
Validity
Not Before: Jan 1 13:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0b27f544992657ed73db056731dc7e7d84a33be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:13:92:2c:80:b8:b1:af:b8:12:7c:23:21:65:
4f:04:8e:48:07:16:f8:f2:d9:18:c4:83:d7:da:c1:
31:a6:ec:73:da:19:e1:76:9c:5b:be:05:3e:17:14:
86:0f:02:cc:8c:b4:82:3c:af:a6:23:3e:8a:d0:e0:
04:7d:a6:a6:1f:0b:7c:35:05:12:a1:70:b8:5f:ee:
b3:a1:a0:61:4d:7e:e6:33:24:ba:8b:ed:a7:ab:a0:
ca:b9:14:28:43:cb:18:06:03:1c:ee:10:0f:91:38:
d0:7d:e1:d0:98:b4:86:07:17:bc:36:de:5b:20:17:
64:0c:99:b1:b0:b0:ef:a8:34:5d:12:96:8f:5a:f6:
7a:dd:de:44:29:8b:f7:f7:23:51:18:a5:fb:f2:08:
90:f3:f2:18:0f:a0:47:77:dd:60:68:e1:25:47:80:
60:f1:e9:d6:25:7c:6b:2e:ae:18:16:97:a8:c7:31:
18:e3:57:3b:7f:b6:33:ed:8f:7c:0c:13:49:68:22:
c7:75:19:d9:c0:e5:76:7f:a1:2b:2e:da:e0:33:b7:
87:ca:ee:81:f9:15:7a:7d:cb:98:0a:88:3d:b3:ee:
cc:5d:a4:b4:09:3b:59:db:81:7d:66:ca:5a:c4:7c:
e3:e9:1d:70:f1:41:d4:33:ed:31:48:77:7d:fd:11:
59:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B2:7F:54:49:92:65:7E:D7:3D:B0:56:73:1D:C7:E7:D8:4A:33:BE
X509v3 Authority Key Identifier:
keyid:A9:A8:15:BE:75:47:EB:87:0E:B5:F6:41:D3:0F:E6:96:37:41:C8:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qagVvnVH64cOtfZB0w_mljdByOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/8LJ_VEmSZX7XPbBWcx3H59hKM74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/qagVvnVH64cOtfZB0w_mljdByOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.99.97.0/24
Signature Algorithm: sha256WithRSAEncryption
ed:fd:fb:23:68:d5:d7:79:af:e6:4d:45:7a:72:3a:90:f3:3c:
7e:92:33:43:d3:64:36:8e:20:9e:bf:57:66:92:12:61:64:b7:
08:9d:77:21:4f:da:b0:0d:df:a3:13:55:b9:07:42:63:de:5d:
0b:7f:05:70:c5:63:34:8d:f3:a1:fe:24:bf:aa:52:67:d0:19:
81:fa:e9:ab:24:19:41:9b:25:bb:41:9b:d3:23:3c:1f:bf:e6:
c3:c6:57:44:e5:0d:40:21:c6:2d:b2:2e:d5:7e:35:a5:e7:46:
cd:31:ea:40:50:5e:e9:1b:c1:2b:4f:94:48:89:28:67:04:d1:
04:b6:33:dc:47:5a:2d:ad:20:df:f0:08:4d:24:6f:57:12:dc:
48:92:4d:ad:25:7c:63:b3:82:3e:be:ce:f9:60:55:6e:56:14:
40:92:9f:6e:99:04:40:f6:8d:d7:2b:e9:01:91:91:78:1a:dc:
35:8d:22:cf:f5:6f:ca:9b:9f:d3:ca:86:34:3c:4a:b1:69:37:
0c:67:6b:17:2e:f8:7d:f2:3c:f3:03:41:c4:b8:04:14:10:34:
55:ed:c0:fd:0f:01:02:b9:69:e5:a0:53:ad:f5:2f:8e:b3:bd:
e5:88:4a:37:5c:ea:32:af:a5:6d:7b:e7:f5:b8:79:0a:55:8e:
64:a5:90:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:03 2024 by rpki-client on console-fra.rpki-client.org