Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/c91rlmufGurT0RrbeKt0jhyw1Xc.roa
File: c91rlmufGurT0RrbeKt0jhyw1Xc.roa (raw, json)
Hash identifier: 6sokIjdmDo+M6OLdbN37ZWc8bEwNgDlcMRFgNq3/Vdk=
Subject key identifier: 73:DD:6B:96:6B:9F:1A:EA:D3:D1:1A:DB:78:AB:74:8E:1C:B0:D5:77
Certificate issuer: /CN=7a0bcdee8ce839c4d20413c862423cca04fdc60a
Certificate serial: 018C24C3F4229A70514CD44F58D4174021B0
Authority key identifier: 7A:0B:CD:EE:8C:E8:39:C4:D2:04:13:C8:62:42:3C:CA:04:FD:C6:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egvN7ozoOcTSBBPIYkI8ygT9xgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/c91rlmufGurT0RrbeKt0jhyw1Xc.roa
Signing time: Fri 01 Dec 2023 09:44:30 +0000
ROA not before: Fri 01 Dec 2023 09:44:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216090
IP address blocks: 84.23.51.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:24:c3:f4:22:9a:70:51:4c:d4:4f:58:d4:17:40:21:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a0bcdee8ce839c4d20413c862423cca04fdc60a
Validity
Not Before: Dec 1 09:44:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73dd6b966b9f1aead3d11adb78ab748e1cb0d577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:dd:5d:d1:0d:97:60:fe:f4:2f:fd:53:c5:46:
2c:63:a9:45:f2:16:31:eb:ce:01:ec:2e:6d:0e:a3:
0b:6d:4f:51:42:c1:32:fb:06:d6:72:12:5a:f8:85:
2d:6e:24:bb:12:0e:82:a6:3b:dc:aa:c4:8d:a1:e4:
61:e3:ac:1b:61:49:37:78:44:ad:c4:86:71:49:d8:
e6:a1:a4:7b:97:a3:f5:d9:e0:7e:ca:31:72:a1:cc:
09:1b:73:58:dc:4a:9d:e6:1f:0d:10:8a:cc:7e:86:
2e:ef:7c:b2:0f:9e:2f:fb:0c:f9:9b:34:c5:e3:62:
f4:f0:15:2b:f0:9b:78:25:05:b7:45:fd:6a:2f:91:
72:64:7d:96:85:a3:6c:38:8c:e4:90:48:ce:32:4c:
ec:2f:bc:0f:42:11:a5:e1:ec:a5:68:ed:76:0d:5b:
70:00:57:8e:3f:7b:f3:95:74:90:78:6c:9c:1d:10:
67:96:ea:d4:91:da:db:a5:b0:d1:10:3d:f3:c5:14:
6f:13:88:53:32:8a:e2:a5:7f:5a:f0:87:7b:27:22:
65:45:9f:74:96:14:ca:7d:e3:a7:e2:2a:dc:dd:27:
b5:4e:71:da:e8:73:35:60:70:04:e0:68:ca:cc:2e:
29:49:76:2c:b3:f4:42:42:ac:b0:fe:d5:7c:21:10:
76:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:DD:6B:96:6B:9F:1A:EA:D3:D1:1A:DB:78:AB:74:8E:1C:B0:D5:77
X509v3 Authority Key Identifier:
keyid:7A:0B:CD:EE:8C:E8:39:C4:D2:04:13:C8:62:42:3C:CA:04:FD:C6:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egvN7ozoOcTSBBPIYkI8ygT9xgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/c91rlmufGurT0RrbeKt0jhyw1Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54e912-b503-454c-a433-4def57365169/1/egvN7ozoOcTSBBPIYkI8ygT9xgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.23.51.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:f6:6a:01:6c:30:09:89:2c:2f:fe:80:1a:b0:94:c4:6f:e1:
92:75:5a:66:5d:c3:9c:85:67:8e:4c:42:98:97:d9:de:15:27:
1f:97:f4:6b:e5:f3:14:3f:d1:c7:14:b8:05:06:2d:e8:fc:9e:
09:e5:f1:e9:d6:08:88:87:ba:bc:67:fa:a0:1d:7f:ba:fb:56:
a1:96:bf:0a:79:bc:42:c6:ed:40:72:79:67:03:8e:1a:d4:d7:
2d:30:95:65:5a:b2:24:4a:1f:2f:72:5d:ae:fe:49:67:68:57:
dd:a6:0e:f9:5c:07:b8:04:05:d7:05:b5:9f:1b:26:4a:b3:00:
29:d4:d7:d5:b2:db:76:b0:ce:4d:9f:e1:e2:33:76:45:7d:3b:
e4:a6:ea:66:ca:29:10:fb:eb:b1:b6:03:b4:8c:8a:c5:ef:af:
03:3e:8f:ac:37:cb:99:f9:4f:79:d1:68:bb:57:b2:25:fd:80:
50:83:6e:52:0d:dd:c4:98:0e:f6:20:b1:42:eb:5c:94:e2:1c:
f0:28:97:eb:f9:c6:dd:83:fd:6a:aa:90:64:07:32:c7:68:bd:
65:2e:16:c1:82:8d:5d:34:b9:79:13:a0:8e:e0:ec:41:ca:88:
df:3d:c5:d7:b8:35:72:d2:6d:c1:ff:9f:bd:26:6f:de:63:d6:
26:3e:0f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:48 2024 by rpki-client on console-fra.rpki-client.org