Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/runOkwQmGZQZFuDFvcPadQi1cL8.roa
File: runOkwQmGZQZFuDFvcPadQi1cL8.roa (raw, json)
Hash identifier: 9CPiz11hokTJ5sW7qomJbTHI32qG8DHiPzKZ5BNJ3zc=
Subject key identifier: AE:E9:CE:93:04:26:19:94:19:16:E0:C5:BD:C3:DA:75:08:B5:70:BF
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01856ED4E1598CD76081CACE6EF0B17AC0BD
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/runOkwQmGZQZFuDFvcPadQi1cL8.roa
Signing time: Sun 01 Jan 2023 19:35:23 +0000
ROA not before: Sun 01 Jan 2023 19:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 87.237.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 05:05:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:e1:59:8c:d7:60:81:ca:ce:6e:f0:b1:7a:c0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 1 19:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aee9ce93042619941916e0c5bdc3da7508b570bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:94:8b:e5:42:d4:1a:b1:83:d4:f5:01:b1:d5:
86:f3:40:a0:da:03:b7:f9:52:2c:24:b3:bb:bf:a5:
9a:b3:e0:b4:b3:11:5b:7d:fe:40:22:6e:f8:a1:d6:
7c:39:26:30:3c:1b:20:d5:f5:04:7e:a4:e2:ad:e5:
45:2c:9b:55:97:13:ce:fa:a3:2a:3d:2f:ac:8b:e0:
30:df:bf:0d:7a:f1:da:49:e5:31:f6:21:e4:c8:bb:
6a:a2:7c:6d:1e:e3:33:a1:3f:6e:84:e6:2c:fc:fa:
fc:4c:db:4f:cc:60:68:24:82:12:f6:a3:1c:01:d4:
90:35:e5:68:c1:30:91:9c:29:36:fa:77:b7:39:8e:
d0:1a:2a:a4:e1:4d:45:7d:5f:93:5b:2d:cb:49:5c:
49:82:32:4c:fc:b4:05:35:66:86:e0:3f:31:92:d2:
d1:65:57:41:0d:ac:af:b4:1f:74:9c:3f:ca:7e:38:
8f:a5:15:57:46:c3:01:60:85:0f:42:61:10:54:7a:
31:25:a3:f2:d7:00:6d:f1:5d:d0:ff:b4:9e:f8:77:
1c:df:48:2b:cd:9c:8d:1b:6e:58:ae:1b:df:6f:78:
7e:15:cb:f8:ef:10:c6:40:dc:41:8f:d3:54:3a:91:
d4:cd:24:5d:70:4e:cc:44:d0:0c:93:9f:5a:11:92:
bf:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E9:CE:93:04:26:19:94:19:16:E0:C5:BD:C3:DA:75:08:B5:70:BF
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/runOkwQmGZQZFuDFvcPadQi1cL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.167.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:d9:ba:c2:01:87:87:28:9b:c0:e2:5e:4d:69:05:36:af:26:
97:5c:28:91:2e:8c:eb:3a:63:68:65:a3:55:6c:a8:e2:85:d6:
fd:a8:8c:0f:75:f3:47:6f:bb:d8:2d:e3:31:34:d8:1a:81:cd:
7f:c5:bb:e0:ab:66:3f:67:57:05:f9:1b:08:d8:7c:90:95:ad:
57:4d:f4:f7:14:19:02:c2:93:d9:fc:c8:3f:a4:52:7f:58:42:
17:a2:b0:40:7a:dc:ea:43:49:71:86:05:11:d3:32:01:33:96:
9a:3d:06:73:c1:82:7d:cd:87:a2:f7:62:2a:cf:5c:5a:00:00:
a3:2b:92:f0:7a:bf:68:20:31:ff:e3:a8:a8:66:c1:d8:e2:78:
f2:0e:4c:a9:e3:40:ac:2f:c0:dd:76:6c:f1:e8:5e:58:01:55:
c3:bf:ba:12:ef:b5:35:b6:f0:93:c7:41:60:e5:c6:21:04:37:
5a:f3:8c:6b:5a:bc:fb:3a:14:0b:bc:80:42:d1:a7:24:3c:4b:
a6:27:95:c2:5c:d1:54:e5:35:14:3f:ad:36:19:d7:69:47:40:
eb:1d:72:00:c3:92:89:37:04:a2:b3:b5:f4:b3:14:5b:01:55:
86:e8:54:a7:81:8d:01:aa:e0:30:15:6a:c9:cd:8a:bd:29:f2:
41:0b:62:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org