Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/DRR8BvWk75wOwL5szfVrCDYynwQ.roa
File: DRR8BvWk75wOwL5szfVrCDYynwQ.roa (raw, json)
Hash identifier: s2rg6foevfc3fqOYC15FXjVFyi5vgY0wOZTAvjKiyNc=
Subject key identifier: 0D:14:7C:06:F5:A4:EF:9C:0E:C0:BE:6C:CD:F5:6B:08:36:32:9F:04
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD53397CE6F7821E5FA4EC4733AF698
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/DRR8BvWk75wOwL5szfVrCDYynwQ.roa
Signing time: Mon 02 Jan 2023 00:15:21 +0000
ROA not before: Mon 02 Jan 2023 00:15:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57060
IP address blocks: 86.105.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:33:97:ce:6f:78:21:e5:fa:4e:c4:73:3a:f6:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d147c06f5a4ef9c0ec0be6ccdf56b0836329f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bb:46:28:13:f8:0c:6b:46:29:c9:3b:b9:a0:
a6:0b:fb:f3:10:63:1b:53:ff:3b:23:58:cc:b0:49:
b2:bf:89:3f:a6:13:11:99:56:73:56:77:e9:13:ab:
ac:50:e6:dd:50:c6:fb:8a:bf:02:fd:7f:dd:7e:7a:
e6:3e:3e:e9:b9:dc:92:57:ed:78:65:0e:ef:78:24:
1a:fb:8a:d3:52:e1:32:2c:7f:c7:78:3b:72:f9:83:
94:0d:bb:d4:e1:37:f6:e6:30:07:7d:88:91:bb:fc:
6c:7f:84:4e:e8:e1:6f:c5:c2:3d:6b:13:5d:08:c6:
d4:26:0b:15:8e:32:11:e7:45:5e:4f:35:c0:9a:ea:
35:c7:6f:d4:33:22:da:8b:76:df:71:d2:0a:41:87:
d1:55:94:2a:69:18:a9:27:50:c1:f6:5a:d5:c7:c4:
00:1b:bc:20:3f:f8:25:e8:0f:4b:0a:2a:03:64:cb:
41:95:1f:7f:bc:64:63:45:18:e9:72:0f:11:b5:e8:
1a:4d:db:eb:96:da:c2:ca:21:61:80:80:da:94:80:
9e:59:0a:5a:39:c0:07:30:8a:a6:76:05:05:9d:67:
47:71:21:64:60:e5:35:01:f6:f5:5d:c1:ed:8f:ed:
83:ba:a7:42:90:9f:d6:be:41:83:e3:bd:c8:22:48:
6d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:14:7C:06:F5:A4:EF:9C:0E:C0:BE:6C:CD:F5:6B:08:36:32:9F:04
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/DRR8BvWk75wOwL5szfVrCDYynwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.27.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:a9:d6:25:83:18:b3:23:fa:1e:5b:a8:a9:0a:eb:59:e4:00:
fa:e6:b0:c1:97:b6:77:ae:f0:90:3b:f8:2b:33:b3:5b:b0:4d:
20:55:06:d2:e2:79:dc:1c:64:32:fe:69:26:b7:60:60:95:a4:
18:bb:a9:62:cf:ab:a6:2c:a7:29:f9:0b:79:ff:cb:27:11:b0:
54:57:5f:0f:5e:85:92:ca:40:d9:19:b6:a9:e0:9d:f7:36:56:
72:63:9e:49:3b:69:80:e4:58:26:f0:54:b3:ec:14:56:ee:dd:
6c:46:a8:79:7f:36:3b:d7:aa:3f:01:e8:e7:f2:8e:28:db:07:
76:a2:6c:75:f7:9a:f6:dd:c7:8a:7a:98:a4:04:65:52:f4:56:
bb:15:d9:16:b7:be:26:23:79:f1:bc:c8:df:8f:d4:9c:9d:c0:
b1:87:ee:e5:00:6e:63:cb:06:ce:94:e0:0a:12:69:8f:64:a4:
b1:fc:56:a1:56:12:f0:53:e1:d0:d4:91:c8:64:af:0d:18:2f:
5b:07:93:39:74:e7:9d:c4:91:f4:46:4a:3e:9d:e7:02:9c:93:
d3:23:fb:92:5b:ae:63:84:f7:37:4a:ee:2e:6a:bf:f7:2e:ab:
87:42:dd:48:f6:49:c3:98:66:bd:a2:24:95:fe:3d:b8:56:78:
75:d0:cf:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org