Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/JdvLdhvWJOUqfYlS74T6MI9-Xd4.roa
File: JdvLdhvWJOUqfYlS74T6MI9-Xd4.roa (raw, json)
Hash identifier: f1Kd7ZPRR69Gyv6r7PzJpATIRuf7+pfJ/EPNG37AaDg=
Subject key identifier: 25:DB:CB:76:1B:D6:24:E5:2A:7D:89:52:EF:84:FA:30:8F:7E:5D:DE
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 0189DEE29320D70B297B47DC901740F7B52F
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/JdvLdhvWJOUqfYlS74T6MI9-Xd4.roa
Signing time: Thu 10 Aug 2023 09:58:57 +0000
ROA not before: Thu 10 Aug 2023 09:58:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 87.248.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 10:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:e2:93:20:d7:0b:29:7b:47:dc:90:17:40:f7:b5:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Aug 10 09:58:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25dbcb761bd624e52a7d8952ef84fa308f7e5dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:41:7e:90:af:72:d4:e6:25:01:c8:c8:a5:18:
50:02:85:b8:48:0b:61:6a:87:3c:12:dd:2d:43:69:
ec:b6:57:3e:2c:f1:46:fe:d5:89:38:67:e9:9d:fa:
9a:a8:61:e0:38:89:c7:fa:f2:b8:2c:6b:7b:20:8c:
de:11:01:da:37:2d:19:32:4a:51:03:f8:3d:c4:eb:
bf:69:90:ea:24:96:29:31:0d:45:c6:ed:eb:2b:80:
81:ea:c4:14:e5:6a:9b:ff:25:85:fe:d5:a9:a0:96:
79:7e:a5:11:dd:c9:9d:0d:ea:eb:f9:45:05:28:27:
d6:71:cd:a2:8c:88:2e:9e:cb:2a:99:de:02:73:06:
ae:7d:1a:53:15:eb:b7:fa:b2:20:75:6c:c1:0a:b9:
45:03:00:b9:64:2a:b5:0a:6d:2c:51:7e:b1:c2:bf:
d5:c9:6b:98:84:70:13:a3:dd:5a:8c:bc:47:4d:f6:
25:12:f2:f1:43:41:28:36:d0:42:9e:7b:47:63:da:
3a:85:f1:c2:73:17:c4:b8:1e:44:c1:a3:a4:a6:a1:
6c:9d:62:c6:65:66:d1:36:a3:c2:61:42:40:38:d3:
ce:ec:0d:e1:a7:8d:17:b7:c6:60:26:f5:84:56:2d:
be:e3:d8:8e:e0:b1:78:c6:71:1d:b7:46:db:3b:58:
0c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:DB:CB:76:1B:D6:24:E5:2A:7D:89:52:EF:84:FA:30:8F:7E:5D:DE
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/JdvLdhvWJOUqfYlS74T6MI9-Xd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.137.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:72:38:4a:72:f5:bc:41:b2:1b:71:04:87:18:ad:ca:ff:ba:
4b:35:fe:2f:81:9f:79:d8:ac:19:19:1d:06:b8:0d:a4:65:92:
0e:1d:33:12:72:1f:8f:98:6a:3a:1c:3c:c1:b4:be:56:e8:2b:
b2:b0:28:bf:b4:79:5b:a5:5b:6f:e5:af:15:63:ba:aa:d8:94:
aa:bf:d9:7c:2d:3d:43:fc:db:25:38:31:bb:36:cf:d6:d7:25:
05:44:b8:44:d6:7d:d5:65:00:e8:5f:0a:b7:fa:f7:f8:bc:04:
28:33:aa:e2:dc:d9:88:d6:3d:cf:28:49:70:fd:70:9f:85:35:
c3:49:5d:34:83:99:0c:21:3a:01:82:58:e7:ab:b5:12:4a:e1:
25:a4:c2:77:96:39:81:24:b7:c0:90:47:3b:40:af:29:01:7c:
f7:f8:79:18:f3:be:c1:ee:c5:44:15:ae:bd:71:7c:41:26:5e:
18:b2:f9:4b:be:d9:06:2a:6e:57:d7:f8:b0:ed:ae:4f:78:87:
fe:eb:14:1b:01:28:93:7c:f4:ca:29:bd:ea:c1:7e:43:18:64:
b9:5f:72:0d:01:6c:4d:51:0b:09:a4:13:ca:31:4d:93:eb:b7:
2a:74:ef:91:d7:cf:7b:07:a8:32:49:39:19:74:d3:fe:a3:eb:
ea:a0:e1:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org