Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/RzapcrEEnY6hTgDxgnbAhIvsew8.roa
File: RzapcrEEnY6hTgDxgnbAhIvsew8.roa (raw, json)
Hash identifier: gB7mHfABuJj1dmHFKVKYXCUlQEMKz7haeGAUuAYgAiU=
Subject key identifier: 47:36:A9:72:B1:04:9D:8E:A1:4E:00:F1:82:76:C0:84:8B:EC:7B:0F
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 018ADD51A25F785C6241D272595C957C141E
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/RzapcrEEnY6hTgDxgnbAhIvsew8.roa
Signing time: Thu 28 Sep 2023 19:43:49 +0000
ROA not before: Thu 28 Sep 2023 19:43:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 91.102.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Nov 2023 21:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:dd:51:a2:5f:78:5c:62:41:d2:72:59:5c:95:7c:14:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Sep 28 19:43:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4736a972b1049d8ea14e00f18276c0848bec7b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:27:b7:a0:05:f2:9a:f1:ef:09:ca:ca:f2:cf:
f5:19:8c:a7:a5:14:29:bc:43:7c:8c:c6:f4:3a:4d:
1d:ed:2f:cf:48:1b:c1:2d:d5:2e:5e:46:25:de:fe:
35:d9:c7:02:f2:f7:b5:8e:58:1f:75:23:4d:19:77:
1a:50:54:e0:37:9e:3a:27:9b:d6:66:08:39:e3:92:
2a:75:6e:b1:7a:cc:bb:41:1f:f7:8e:f6:b4:d2:c1:
69:37:ee:cb:1e:86:a5:06:a3:bf:b7:6b:6b:fc:4f:
01:d7:66:39:0d:c8:8e:93:d1:52:68:bd:a9:5f:7d:
95:68:cc:e3:f0:d6:49:90:f7:f5:dc:45:59:36:94:
2c:a2:5b:a1:51:56:34:61:a5:3e:8d:2e:d4:e0:61:
44:fa:53:28:a3:d2:34:e3:64:6c:01:a0:b9:eb:a1:
6e:e0:ad:86:23:1f:6d:5a:9d:a6:3d:1b:ad:d4:a3:
c5:b8:02:1c:6c:59:06:4d:df:14:98:85:6a:e6:a9:
3d:2a:a6:2f:19:92:86:24:b6:f9:3a:24:3b:f5:ed:
ea:d6:3c:17:84:d3:54:ba:c9:a8:19:04:44:44:ea:
fc:9a:61:e0:22:ef:e4:d3:a7:e9:78:6a:17:b4:ff:
99:4c:a0:06:74:12:82:d1:42:b2:63:50:c6:4c:5b:
ad:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:36:A9:72:B1:04:9D:8E:A1:4E:00:F1:82:76:C0:84:8B:EC:7B:0F
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/RzapcrEEnY6hTgDxgnbAhIvsew8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.167.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:00:c5:b8:a1:7d:1c:6a:fb:cf:8f:bb:78:fd:de:a2:97:74:
4d:f9:6c:fa:88:1d:ce:91:95:83:a8:37:f7:52:47:13:c7:d3:
f4:50:a6:c2:ad:dd:53:aa:24:51:0b:18:82:f4:06:77:8d:f9:
5f:3c:0f:6b:07:42:f3:4a:1e:ee:63:0a:bc:85:48:36:a4:55:
80:6a:d9:88:40:c7:19:05:0b:40:5d:ae:b6:50:16:b8:eb:c1:
b4:7b:77:03:fe:3f:23:06:f4:4d:12:85:92:b5:a8:db:a2:e9:
ad:88:5a:76:98:8e:b5:14:01:3c:3b:5f:7b:45:9f:bf:79:ac:
8a:68:95:ba:a5:6e:2a:8a:3a:46:ff:10:1c:98:9b:df:51:91:
d3:2d:90:4d:fb:c3:47:08:52:2d:8a:70:8e:7f:e3:1d:99:ef:
63:b3:a3:e9:d7:cd:63:ec:24:78:c1:b6:dc:b3:1e:8b:3a:f1:
a8:4c:c3:19:74:0c:8c:a2:cf:f0:6c:dd:52:1b:42:d2:ca:a4:
27:52:2b:0d:e0:43:a2:c5:97:90:54:ec:2e:98:0c:c8:c2:e2:
0d:82:b3:ff:a3:f2:22:38:31:2c:29:0f:7c:ca:68:05:83:70:
93:6a:16:64:1b:5d:48:ce:0a:3e:6f:26:ef:e0:2e:39:80:aa:
71:32:6b:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:51 2024 by rpki-client on console-ams.rpki-client.org