Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/EskcEixFfW1yWshL6ALrSSyuPII.roa
File: EskcEixFfW1yWshL6ALrSSyuPII.roa (raw, json)
Hash identifier: mIbRTISQFQ0Wr3mP5PWL+6tmeyHt1MxpeLsd8cgOKn8=
Subject key identifier: 12:C9:1C:12:2C:45:7D:6D:72:5A:C8:4B:E8:02:EB:49:2C:AE:3C:82
Certificate issuer: /CN=8c3bad6ae491643d075e21cba859ef28e26e3c79
Certificate serial: 0185728CA18AAA909F5B09782824B9975980
Authority key identifier: 8C:3B:AD:6A:E4:91:64:3D:07:5E:21:CB:A8:59:EF:28:E2:6E:3C:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDutauSRZD0HXiHLqFnvKOJuPHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/EskcEixFfW1yWshL6ALrSSyuPII.roa
Signing time: Mon 02 Jan 2023 12:54:57 +0000
ROA not before: Mon 02 Jan 2023 12:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58174
IP address blocks: 91.239.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:a1:8a:aa:90:9f:5b:09:78:28:24:b9:97:59:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c3bad6ae491643d075e21cba859ef28e26e3c79
Validity
Not Before: Jan 2 12:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12c91c122c457d6d725ac84be802eb492cae3c82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:42:8a:9f:4e:df:83:05:a0:f2:52:03:03:c4:
33:24:a5:03:5a:fd:79:e9:12:3c:e4:19:52:83:b5:
77:08:bb:84:e1:a2:29:75:a2:94:fa:58:45:83:d8:
90:ba:bc:ea:54:2a:cd:02:fd:4e:4d:46:57:da:95:
57:4d:6a:9c:26:ab:4a:e8:38:23:77:b3:f6:b2:62:
66:b6:12:65:2e:46:29:08:59:d3:53:03:b4:bb:fa:
3b:1c:60:59:4b:f6:3d:3c:5a:03:f5:1e:b1:c4:b2:
14:a2:22:c9:56:8a:a9:24:a0:b4:7e:2b:6b:ee:35:
0d:25:1a:4c:7a:ac:77:e4:ff:c9:8c:55:51:41:19:
6a:ab:8d:67:0c:aa:1a:56:48:b7:4e:6b:1d:a4:15:
f7:40:f5:b6:08:2f:a1:61:01:da:3f:d2:5d:08:9d:
1e:23:24:93:6f:3f:ea:3c:ed:5e:ab:38:3f:ce:3e:
bb:f8:ba:d8:7a:bb:97:5a:d7:5c:7a:cd:77:e8:00:
fe:c3:6b:3f:75:e1:d3:57:6b:0f:46:48:8e:b5:fd:
f1:e9:4d:ca:28:ae:e8:42:61:d8:21:3f:34:08:86:
56:64:c5:ca:7e:ea:c7:51:e0:c3:31:c4:60:16:18:
e9:e3:20:10:ea:50:a1:62:43:69:3d:75:4d:85:f2:
9b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C9:1C:12:2C:45:7D:6D:72:5A:C8:4B:E8:02:EB:49:2C:AE:3C:82
X509v3 Authority Key Identifier:
keyid:8C:3B:AD:6A:E4:91:64:3D:07:5E:21:CB:A8:59:EF:28:E2:6E:3C:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDutauSRZD0HXiHLqFnvKOJuPHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/EskcEixFfW1yWshL6ALrSSyuPII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/jDutauSRZD0HXiHLqFnvKOJuPHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.123.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:18:99:77:67:08:94:28:ca:90:36:5c:66:5e:50:e4:ef:27:
7f:50:a2:c8:d5:f8:10:8f:c3:69:2a:13:a3:86:77:e9:65:2a:
ec:ad:0b:88:4a:40:33:c7:cb:54:de:b8:54:57:dc:88:9f:a2:
86:37:4b:23:39:de:16:b9:c3:16:28:22:d0:4f:df:e2:08:f5:
98:ff:6f:03:9d:69:63:f2:8f:60:96:24:4c:89:13:55:1d:3a:
c0:8b:ab:4f:e1:07:3a:b5:aa:b0:a4:15:6b:07:09:2c:fd:d1:
ee:fb:81:59:d1:fb:d9:6a:ee:0b:04:dd:ac:9a:e7:5e:bf:da:
05:7e:1e:53:94:2c:a9:32:84:81:c3:8d:69:e3:a2:86:3e:3c:
93:8f:4e:a4:0a:21:4b:88:58:82:22:22:af:06:70:64:f9:77:
39:47:42:a9:9a:bb:7e:51:94:0c:b9:4f:1e:8c:50:68:96:4c:
61:7c:be:7c:04:30:99:7c:e6:38:34:52:50:32:2c:17:b8:52:
c1:4e:0f:48:68:7e:42:4c:b2:b5:29:1b:fa:c0:7a:d1:2c:52:
86:b8:45:80:5d:71:4b:f7:f1:8f:f2:c6:2a:31:bd:9f:46:f5:
6e:bd:1c:42:4d:3d:d0:68:60:7e:7a:14:4b:4b:4a:16:6d:64:
e6:c1:0c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:55 2024 by rpki-client on console-fra.rpki-client.org