Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/d63b22-60e1-47e5-9e4d-2f9a4ce4362f/1/1-d2nHLbVM4UocAwn5v3TaOVL1r4.roa
File: 1-d2nHLbVM4UocAwn5v3TaOVL1r4.roa (raw, json)
Hash identifier: K9st2OlMGhHbbCktJZqwR9NpZJDsWIzoWF1rg0U0eT0=
Subject key identifier: F9:DD:A7:1C:B6:D5:33:85:28:70:0C:27:E6:FD:D3:68:E5:4B:D6:BE
Certificate issuer: /CN=27d7d0d37bf0494589472189e03c193057e373ab
Certificate serial: 019054D27B1C59605A580DE04D2D08C079E1
Authority key identifier: 27:D7:D0:D3:7B:F0:49:45:89:47:21:89:E0:3C:19:30:57:E3:73:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9fQ03vwSUWJRyGJ4DwZMFfjc6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/d63b22-60e1-47e5-9e4d-2f9a4ce4362f/1/1-d2nHLbVM4UocAwn5v3TaOVL1r4.roa
Signing time: Wed 26 Jun 2024 13:53:18 +0000
ROA not before: Wed 26 Jun 2024 13:53:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198306
IP address blocks: 167.247.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jun 2024 08:07:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:54:d2:7b:1c:59:60:5a:58:0d:e0:4d:2d:08:c0:79:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7d0d37bf0494589472189e03c193057e373ab
Validity
Not Before: Jun 26 13:53:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9dda71cb6d5338528700c27e6fdd368e54bd6be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:32:0a:7a:fa:78:07:89:41:ae:8d:69:6a:03:
36:aa:d1:e4:60:19:d8:6f:04:6d:bc:6d:c1:ac:54:
b6:97:63:2e:1c:b0:3e:da:6d:b8:3f:24:3b:59:b9:
30:c1:b2:45:e1:1a:84:bd:1d:df:e1:36:22:2c:49:
fe:51:7e:32:c5:9b:c7:95:78:47:e1:ce:cc:fd:e8:
53:5a:48:1b:da:97:3a:5c:19:f9:c4:ca:ca:d0:c4:
cf:19:e9:9f:18:9b:4d:23:cf:d8:58:c7:07:b7:c8:
fa:f6:54:8a:bb:62:6c:b9:4e:3c:a9:9f:5c:49:4b:
14:68:61:57:d7:66:da:e1:89:17:72:44:6c:5f:68:
81:4c:f0:4a:6a:cd:46:9b:d0:a5:a1:bb:29:d9:a4:
d5:b6:eb:6f:a1:4e:23:d5:13:99:67:16:58:b9:27:
c6:f6:48:b2:69:4e:47:3a:7f:40:7e:30:03:03:84:
0f:d3:9b:f2:31:50:81:6d:26:e9:71:82:2b:85:3b:
55:fc:9f:b8:2a:ea:c6:a2:c5:65:ea:d0:e0:77:4f:
01:dd:87:0a:9c:71:09:0a:c5:48:68:c4:ba:f1:85:
21:1a:5d:31:ac:b2:ab:65:50:ef:bb:0d:8f:75:08:
cf:bd:60:cf:c6:24:34:18:ba:2d:9b:50:f3:9d:fb:
dc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:DD:A7:1C:B6:D5:33:85:28:70:0C:27:E6:FD:D3:68:E5:4B:D6:BE
X509v3 Authority Key Identifier:
keyid:27:D7:D0:D3:7B:F0:49:45:89:47:21:89:E0:3C:19:30:57:E3:73:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9fQ03vwSUWJRyGJ4DwZMFfjc6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/d63b22-60e1-47e5-9e4d-2f9a4ce4362f/1/1-d2nHLbVM4UocAwn5v3TaOVL1r4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/d63b22-60e1-47e5-9e4d-2f9a4ce4362f/1/J9fQ03vwSUWJRyGJ4DwZMFfjc6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.247.87.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:18:4d:b4:52:a8:a7:bc:30:40:24:d3:ba:bf:70:90:cb:65:
19:f5:b8:ba:bc:31:2c:3e:4b:b2:6c:e8:5f:5b:a8:ae:c6:af:
ce:d7:c7:3d:02:09:c0:7e:f9:f4:94:a0:83:ed:f1:46:a0:40:
47:21:ff:1d:c2:b7:d9:9c:fe:18:a4:d7:25:2e:d2:8e:a8:2c:
23:bf:89:a4:7c:be:ce:c7:ad:f9:42:c2:a0:2d:ea:8d:63:7d:
3d:a9:3d:5f:59:18:2c:88:64:f3:e1:8a:e2:56:10:42:fc:bd:
00:3e:81:25:f8:62:3d:7f:c8:4a:d1:f9:53:59:f2:f5:ba:e9:
dc:55:21:59:81:14:f4:1f:14:89:a1:34:27:e6:c8:fe:e2:ac:
b6:a9:50:0a:49:fc:39:c5:7f:95:ae:6b:32:7f:3f:e0:33:76:
0e:d6:c5:c3:09:ab:69:d0:43:36:52:bc:35:fe:1b:45:2c:13:
e0:cb:d8:80:79:04:ed:5e:a0:33:7d:36:fc:14:71:78:72:11:
e9:fc:34:a1:1f:29:0d:9a:57:d0:a5:67:cf:03:4e:6f:88:1d:
aa:e8:6a:d3:2b:9d:f2:30:ee:e7:84:90:ee:ad:f5:90:cf:74:
a4:e3:53:e9:c0:40:37:40:84:33:d2:0e:ba:f0:50:05:ae:29:
c5:df:68:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:04 2025 by rpki-client