Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/8e7785-9451-46fb-b244-7d9b8230537e/1/xYrDnzROtbLoTbslisVij4pI7P4.roa
File: xYrDnzROtbLoTbslisVij4pI7P4.roa (raw, json)
Hash identifier: lLzll2jdiBChwR27zlYHOYVdgnfFBJb0jbo95QIK3Eo=
Subject key identifier: C5:8A:C3:9F:34:4E:B5:B2:E8:4D:BB:25:8A:C5:62:8F:8A:48:EC:FE
Certificate issuer: /CN=7ec65a1dcf8225e7f10be20ddde1e216e800b67c
Certificate serial: 018AF3EE8D3ADC0E95ED0A08E89E452AFC6B
Authority key identifier: 7E:C6:5A:1D:CF:82:25:E7:F1:0B:E2:0D:DD:E1:E2:16:E8:00:B6:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsZaHc-CJefxC-IN3eHiFugAtnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/8e7785-9451-46fb-b244-7d9b8230537e/1/xYrDnzROtbLoTbslisVij4pI7P4.roa
Signing time: Tue 03 Oct 2023 05:06:51 +0000
ROA not before: Tue 03 Oct 2023 05:06:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 86.108.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Oct 2023 20:24:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f3:ee:8d:3a:dc:0e:95:ed:0a:08:e8:9e:45:2a:fc:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec65a1dcf8225e7f10be20ddde1e216e800b67c
Validity
Not Before: Oct 3 05:06:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c58ac39f344eb5b2e84dbb258ac5628f8a48ecfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c4:41:65:c7:c9:85:b1:9f:0d:ce:b7:f9:a8:
c6:e2:39:a0:09:b6:d2:6c:35:fc:09:5f:c8:82:66:
e3:ce:00:ca:e9:87:0e:cd:79:98:fb:f8:0d:b6:78:
34:c1:0c:48:1f:60:77:33:43:54:8e:59:75:4d:20:
1d:f4:ca:63:03:4c:42:20:a9:b6:4e:ec:4c:f9:11:
24:e4:e6:e3:e0:27:39:91:93:7f:b5:1d:43:84:93:
ec:83:ba:7c:2b:5c:9b:65:8a:08:b9:81:4e:06:94:
b7:21:8c:89:07:84:0c:d2:3d:64:77:05:fd:07:d4:
e9:76:01:b3:2e:94:08:dc:b6:cd:75:9e:bb:9e:6c:
a3:75:7c:85:ab:ba:53:8b:62:94:91:05:dc:6e:a0:
60:49:e0:88:e0:ae:7c:7d:c2:3f:52:e3:b5:1d:66:
af:4a:a5:ed:d8:53:07:e1:b0:d3:70:c0:8b:63:9f:
45:53:92:07:0d:8d:43:26:ea:6c:42:8d:69:98:f3:
a5:c6:a7:e1:72:22:c4:ec:2c:bf:9c:eb:58:3f:cd:
e6:bf:00:7c:42:1d:22:72:10:67:ed:72:b5:be:5c:
a0:14:4d:16:82:a5:57:c2:2f:ea:67:f1:03:bb:5e:
ae:d2:6f:b3:8f:8e:cd:43:9d:34:a6:a1:f6:67:cd:
6e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8A:C3:9F:34:4E:B5:B2:E8:4D:BB:25:8A:C5:62:8F:8A:48:EC:FE
X509v3 Authority Key Identifier:
keyid:7E:C6:5A:1D:CF:82:25:E7:F1:0B:E2:0D:DD:E1:E2:16:E8:00:B6:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsZaHc-CJefxC-IN3eHiFugAtnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8e7785-9451-46fb-b244-7d9b8230537e/1/xYrDnzROtbLoTbslisVij4pI7P4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8e7785-9451-46fb-b244-7d9b8230537e/1/fsZaHc-CJefxC-IN3eHiFugAtnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.108.204.0/24
Signature Algorithm: sha256WithRSAEncryption
03:54:65:2b:71:54:f7:ab:21:99:31:58:3c:45:0f:6e:6c:dc:
87:18:f4:4e:26:b3:c8:ea:b8:3d:64:ce:a3:a3:53:e7:e9:b9:
fd:1f:9d:f1:1e:c5:7d:3c:ec:fc:0b:3d:b7:15:85:5a:77:36:
af:c7:bb:14:cf:02:40:19:90:54:ab:07:9f:9a:41:dc:3c:62:
90:e8:e9:a8:57:a1:03:07:d7:79:34:cd:ec:6e:c3:9d:fe:96:
32:6c:a5:b7:49:6e:6f:ba:56:0b:b8:5e:00:1b:6a:bc:b3:55:
18:6f:bc:60:7f:97:a6:1f:59:ea:05:3e:91:66:5d:bf:4e:ae:
05:01:b6:c8:7c:75:ed:f0:94:c4:91:be:b4:93:20:cf:2e:a6:
f3:9d:e5:69:a9:8d:a6:4b:8c:42:d8:29:51:b5:8e:97:27:1e:
6e:4b:9d:e4:6b:78:fc:dd:7e:91:66:25:6e:19:cc:0f:c7:4f:
40:64:51:35:75:d8:26:4e:88:43:9e:59:3e:e8:92:c8:6f:84:
c0:59:20:fe:fc:a3:3e:24:7b:12:35:24:f7:35:21:40:bc:41:
4a:5f:93:03:e4:02:99:0a:9d:c8:8f:0d:6f:43:0b:50:d3:2b:
fb:65:9c:20:6f:50:7e:b8:42:37:5a:3a:db:05:20:f8:c6:ab:
eb:bb:8d:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:42 2024 by rpki-client on console-fra.rpki-client.org