Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/0IX5CrCkx3OMrD-aM_rT7N9Q9nU.roa
File: 0IX5CrCkx3OMrD-aM_rT7N9Q9nU.roa (raw, json)
Hash identifier: yIYMJDa+fkY7G4GWOt0ZmRum79YwcCkeXn5pU8cCFw8=
Subject key identifier: D0:85:F9:0A:B0:A4:C7:73:8C:AC:3F:9A:33:FA:D3:EC:DF:50:F6:75
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 018BA6A028A9BE08484DB6D714FD4109F536
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/0IX5CrCkx3OMrD-aM_rT7N9Q9nU.roa
Signing time: Mon 06 Nov 2023 21:53:15 +0000
ROA not before: Mon 06 Nov 2023 21:53:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200443
IP address blocks: 91.102.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Nov 2023 20:12:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a6:a0:28:a9:be:08:48:4d:b6:d7:14:fd:41:09:f5:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Nov 6 21:53:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d085f90ab0a4c7738cac3f9a33fad3ecdf50f675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a8:8a:dd:fd:74:dc:18:31:13:35:0c:6e:7c:
42:cc:9b:25:bd:d3:a8:06:89:1e:8d:a8:c2:44:c0:
66:6e:72:5a:9f:f7:30:01:05:9c:01:ff:05:2e:e8:
04:9c:78:d9:c0:61:80:50:50:d3:45:bd:71:09:81:
ba:96:a6:5d:55:fc:18:3e:9b:d7:0f:a5:7f:aa:ac:
f4:00:68:05:08:61:54:0b:ba:0c:d8:4f:6f:9f:69:
92:6b:f3:13:f2:71:c5:64:be:97:79:f8:fb:66:c8:
57:d9:2c:6f:aa:56:46:63:c3:9c:72:12:54:05:52:
80:ad:f1:3a:26:90:e4:e9:b5:ce:1a:c0:01:0f:c2:
25:84:9c:5a:b8:cc:6f:59:c8:93:ff:89:ec:7d:71:
ff:03:0d:c1:b0:9f:13:f9:03:0f:02:cb:4f:c9:fb:
38:d8:65:4b:88:cb:7d:f7:76:c0:69:ee:0c:fb:13:
47:66:d4:8c:d8:e0:e9:e0:37:65:e4:24:36:5c:19:
fc:30:34:98:08:3c:e0:6e:85:2f:39:db:ca:ac:06:
4e:d2:99:63:7d:be:8b:10:60:bf:d3:2b:c5:1a:76:
7c:86:64:19:86:bd:d4:04:6d:ba:32:b7:03:30:ef:
ce:62:da:e9:83:97:32:bc:41:9c:8c:f1:3f:10:39:
61:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:85:F9:0A:B0:A4:C7:73:8C:AC:3F:9A:33:FA:D3:EC:DF:50:F6:75
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/0IX5CrCkx3OMrD-aM_rT7N9Q9nU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.167.0/24
Signature Algorithm: sha256WithRSAEncryption
07:6e:a3:d5:23:c9:fc:3a:be:73:1d:ae:fe:26:0a:b9:a9:3f:
b8:58:d1:ac:89:1d:09:35:e6:74:b7:1f:7b:1f:0b:9a:3e:e5:
7d:be:07:b9:4a:a3:5f:1d:32:65:e8:4c:c3:86:74:f7:3b:12:
b7:a6:53:fa:41:b6:86:35:0c:aa:fe:38:34:9e:d9:cd:d8:03:
c1:2d:dd:4e:38:cd:b6:2b:b3:7b:06:42:12:4d:c9:3a:06:80:
c0:ce:7b:e4:25:ab:be:ec:00:6d:ce:30:d5:8b:cc:f3:75:cf:
d0:e7:70:5b:d0:4b:c4:10:5d:f5:74:71:f6:f5:3b:e4:00:25:
29:19:1a:e3:fc:7a:7f:8c:57:00:d3:7f:4a:16:c0:a3:d4:4c:
6a:d8:91:d7:f7:31:27:fa:67:39:41:fd:8b:09:8d:4e:92:86:
6c:4a:24:e1:f3:b0:6c:ff:da:53:37:dd:8e:f2:41:e3:4b:8d:
60:b7:9b:51:79:9f:05:eb:79:50:cc:62:03:20:eb:43:b0:26:
7d:04:08:ab:24:d1:e4:51:9a:8d:b1:c0:21:41:f4:0d:bc:56:
da:94:a0:3d:c9:32:26:99:3f:77:97:3a:91:d2:95:54:3b:dc:
01:92:46:8e:6c:ce:23:65:fe:ec:5e:4d:f2:15:8c:ac:56:82:
8f:0d:b9:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:51 2024 by rpki-client on console-ams.rpki-client.org