Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/A7LgTubkeqEJDbISHfFjuxbWr2I.roa
File: A7LgTubkeqEJDbISHfFjuxbWr2I.roa (raw, json)
Hash identifier: JYO0FeFqldJmCZ2UBYWDCMbpmWqe/GAeKKzMHGO9mIc=
Subject key identifier: 03:B2:E0:4E:E6:E4:7A:A1:09:0D:B2:12:1D:F1:63:BB:16:D6:AF:62
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01856C8A58862F3C3CAB54EDA00FD3CBDF3F
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/A7LgTubkeqEJDbISHfFjuxbWr2I.roa
Signing time: Sun 01 Jan 2023 08:54:44 +0000
ROA not before: Sun 01 Jan 2023 08:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48029
IP address blocks: 87.248.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:8a:58:86:2f:3c:3c:ab:54:ed:a0:0f:d3:cb:df:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 1 08:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03b2e04ee6e47aa1090db2121df163bb16d6af62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b8:2a:8f:dc:94:8b:fc:70:2f:e1:fe:e3:14:
0e:15:bb:64:b5:50:9f:7e:fd:c3:44:a4:2a:d5:f1:
b0:7e:3c:95:b7:55:71:ad:a4:d4:2d:ff:71:cb:ff:
e8:67:f5:e6:02:ec:e0:77:0c:21:94:c3:36:47:09:
61:e6:fd:e9:be:bb:73:75:f4:d6:90:2a:ac:c9:6f:
cf:f4:60:b0:61:21:f8:18:f7:be:13:af:93:cd:ef:
11:29:db:d6:7e:98:e5:70:16:7a:c6:64:42:d6:9e:
fe:ba:bb:cf:7f:cb:92:d3:2f:7c:78:f8:b3:ac:82:
1a:fd:83:aa:50:13:bf:18:7b:cd:e4:4c:8e:5a:0d:
f2:b2:90:41:2e:8f:97:c3:c0:cb:48:7b:b0:e2:07:
4d:3d:81:db:73:29:b0:a5:7e:fd:05:fd:51:96:a4:
5f:1b:fc:ec:9f:76:56:b2:79:e3:77:61:d1:bb:cb:
d8:05:aa:fc:6b:52:fe:d4:0d:02:dc:5d:61:db:77:
9b:3e:88:b1:50:65:3a:08:54:6b:b0:9e:90:9b:75:
82:38:16:72:b6:fe:d0:ac:f2:4f:af:45:5e:9a:98:
6c:44:d4:de:08:1c:3a:85:12:5c:7c:2b:b5:2b:1d:
c5:f6:fe:50:b9:c2:68:a3:9f:f8:b5:b5:da:a5:1f:
21:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B2:E0:4E:E6:E4:7A:A1:09:0D:B2:12:1D:F1:63:BB:16:D6:AF:62
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/A7LgTubkeqEJDbISHfFjuxbWr2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.159.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:5c:01:fd:fb:b8:3d:74:48:f5:b7:6c:dd:a6:87:4d:a8:a4:
d0:88:1f:15:cd:02:bd:91:f3:e4:5c:8a:d7:4b:e9:a5:97:7d:
1e:9f:ec:95:f1:eb:70:8c:e1:0a:08:6f:23:6f:69:44:7c:42:
89:34:d3:d8:53:e3:8e:f2:d2:a7:26:e3:0b:32:f9:90:78:71:
15:6e:d5:b7:06:29:d3:3c:f7:18:9e:04:dd:fa:f0:0c:01:38:
89:60:c9:57:0c:e5:69:e6:56:d0:e5:9f:4c:5b:70:8b:9a:2d:
34:52:ce:1f:1a:a6:8b:a8:a3:41:5a:7f:6c:d7:13:53:d2:08:
50:1b:97:dd:50:db:97:61:33:a1:4c:f7:7d:66:78:83:84:39:
74:b7:cb:42:f7:d8:ca:44:a4:4d:b7:2e:6f:36:da:6d:b5:55:
a2:70:3a:52:6e:1b:81:2a:40:a1:c2:fd:9c:e2:5a:45:ba:f9:
4f:b6:58:af:0a:ae:9f:bb:a5:a8:fd:aa:50:18:45:4b:4b:a1:
ec:18:39:3c:c0:8a:55:20:ae:d1:26:76:d7:73:4b:a8:d7:09:
02:3f:60:67:f4:e6:9b:a7:d1:78:6e:ee:1d:e6:3f:c9:92:91:
ab:83:57:d6:b2:6c:db:ee:74:cc:12:8b:43:f1:08:50:51:e2:
c7:06:66:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org