Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/weDwmtk5u9dPpktgS5F_Qsw4Hj0.roa
File: weDwmtk5u9dPpktgS5F_Qsw4Hj0.roa (raw, json)
Hash identifier: hPC1dHYxcCkhTTYQO8n4OX2MyOjnZ803sBawyCROs7A=
Subject key identifier: C1:E0:F0:9A:D9:39:BB:D7:4F:A6:4B:60:4B:91:7F:42:CC:38:1E:3D
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 018BAB6A151797B98AC77C4D029D31E2BCE4
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/weDwmtk5u9dPpktgS5F_Qsw4Hj0.roa
Signing time: Tue 07 Nov 2023 20:12:18 +0000
ROA not before: Tue 07 Nov 2023 20:12:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47721
IP address blocks: 91.102.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ab:6a:15:17:97:b9:8a:c7:7c:4d:02:9d:31:e2:bc:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Nov 7 20:12:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1e0f09ad939bbd74fa64b604b917f42cc381e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d5:94:dc:5c:34:62:1d:5b:ba:dc:9f:b2:f3:
5d:79:6d:d4:ff:1b:52:e2:20:3c:05:55:b4:63:cd:
3b:d0:4a:af:9c:90:cd:f0:5c:72:ff:44:26:f8:55:
3d:d9:95:3d:dc:df:3a:12:4f:a5:3f:b3:c8:2c:74:
9b:44:f7:3e:5b:62:e2:b8:b3:62:65:08:f5:f1:56:
01:55:5e:d7:9b:1f:30:1d:af:5d:9c:4b:6e:63:c9:
e0:86:1d:1d:9c:04:8d:6b:f7:27:6f:ab:ff:62:55:
77:fa:fc:08:57:9a:6d:cf:20:32:95:fe:5e:6b:dd:
ab:02:9f:15:75:08:c0:10:07:24:a9:17:3a:6c:e9:
ea:a0:d5:98:22:72:29:53:33:89:05:0a:31:3f:37:
72:5e:c5:e9:7a:65:83:7e:de:6d:23:9f:55:68:5c:
26:8e:69:44:10:8c:65:56:f2:03:ee:fb:49:e1:39:
56:a3:b2:86:40:e2:19:e6:1e:2d:ad:4f:f7:e2:57:
f9:af:93:e9:ac:b4:31:69:ea:5f:41:27:a3:13:14:
ff:53:a0:e6:df:ae:5b:1c:72:19:ce:a8:79:c6:c4:
92:db:01:10:3d:44:4f:fd:05:19:61:07:22:69:4f:
ef:9b:c0:09:4d:6d:53:1c:1e:2d:0b:77:f2:9f:0c:
d6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E0:F0:9A:D9:39:BB:D7:4F:A6:4B:60:4B:91:7F:42:CC:38:1E:3D
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/weDwmtk5u9dPpktgS5F_Qsw4Hj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.167.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:59:94:77:38:a4:96:9e:48:dd:bd:de:ea:92:11:a2:5b:9e:
30:ae:7c:95:8c:45:94:ba:a2:a5:b8:df:5b:a7:97:74:6d:da:
28:27:5d:c2:d9:a3:0c:a6:ab:9a:cf:a4:d5:aa:9c:4a:41:cc:
d1:83:eb:c9:7b:69:97:ce:a1:dc:96:7b:0c:85:17:5c:eb:b6:
b9:54:63:8f:b9:4c:9b:7d:af:78:31:b2:16:6a:87:ae:78:ac:
b6:b7:0d:39:12:5e:42:83:ef:da:a9:e4:fc:12:a6:80:6b:db:
d0:6f:fe:35:d1:84:63:3c:a0:78:28:db:bf:00:14:0b:36:e2:
cb:53:c1:a6:27:2e:09:95:6f:29:35:bc:b7:dd:f5:8e:0e:63:
0b:11:45:cf:35:40:1b:ad:ae:32:f8:65:3b:92:93:7d:7a:b9:
ea:5e:e5:ae:c1:e3:ff:b9:f1:1d:fc:47:3c:9c:15:b5:2c:17:
82:25:c3:b0:d3:35:fe:96:81:e7:1b:91:3a:6a:a2:8d:37:9b:
a2:6d:56:d2:2c:6a:e7:30:9b:e5:99:3e:65:e1:a7:c0:f9:d8:
ac:59:1f:8b:75:54:7c:95:7d:f5:84:ad:d3:be:1e:ef:91:90:
70:05:e4:99:d4:78:f1:d1:75:d2:63:50:fc:aa:fa:75:99:33:
15:ab:7f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org