Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/sh8q0LyPkbE-BjiKfyjmDtnnQJA.roa
File: sh8q0LyPkbE-BjiKfyjmDtnnQJA.roa (raw, json)
Hash identifier: 3B6UT8X8Q7P5hYoxqFGTZJiBFc8tE89nT0YX7/GCNfA=
Subject key identifier: B2:1F:2A:D0:BC:8F:91:B1:3E:06:38:8A:7F:28:E6:0E:D9:E7:40:90
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018910BC37D89D79EB858820DDFCCF909532
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/sh8q0LyPkbE-BjiKfyjmDtnnQJA.roa
Signing time: Sat 01 Jul 2023 09:15:17 +0000
ROA not before: Sat 01 Jul 2023 09:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 87.248.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:10:bc:37:d8:9d:79:eb:85:88:20:dd:fc:cf:90:95:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jul 1 09:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b21f2ad0bc8f91b13e06388a7f28e60ed9e74090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e7:97:5c:ed:d4:58:a1:a8:16:4f:e5:17:63:
30:54:19:9d:05:05:54:0a:d8:d2:6a:2c:b1:78:56:
c4:3b:47:a0:2f:ff:47:eb:9c:d3:e6:c6:63:0c:95:
95:a9:02:c0:0c:f3:aa:a3:6f:56:6c:5c:13:3b:d0:
ed:d7:9f:d4:ce:85:69:38:1c:50:11:55:d8:13:3f:
85:d6:7f:a8:43:95:23:b2:f4:38:03:00:f6:e8:15:
9e:c7:03:fd:fd:75:c3:76:4d:19:46:cb:c9:5f:9c:
7b:20:d9:ae:4a:e2:7b:e6:f2:e3:80:ef:e4:b2:9f:
f2:69:69:4e:dc:78:e4:46:d4:f4:7a:18:59:43:eb:
f0:ed:7b:a7:1c:ca:a7:4a:2c:d6:cd:62:5c:6d:6d:
0a:0c:f5:96:ab:14:c0:3f:9f:5b:00:97:4e:14:2c:
c8:f6:34:71:fa:50:92:b4:ce:a1:87:71:5e:6c:c6:
84:11:c7:49:66:31:46:db:7c:d5:80:a0:75:c2:bc:
92:64:41:56:4d:49:c2:e2:2c:4b:55:b0:06:47:ae:
df:f2:bb:b5:63:0a:5c:3a:df:e3:71:13:dd:d1:87:
54:63:5d:13:1b:be:f0:e9:38:9c:1a:54:85:d3:74:
56:49:cf:7d:58:ec:b6:a1:73:8a:da:57:2c:30:1a:
7f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:1F:2A:D0:BC:8F:91:B1:3E:06:38:8A:7F:28:E6:0E:D9:E7:40:90
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/sh8q0LyPkbE-BjiKfyjmDtnnQJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.157.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f0:0d:05:60:bd:af:96:96:66:e7:fe:32:29:85:77:ce:58:
82:f9:e3:2a:8f:ae:56:53:77:2c:30:c3:f2:ed:41:58:0d:e0:
2a:8e:ea:6b:fa:11:7d:48:be:1e:06:5b:ed:2f:81:a2:e3:37:
3b:d7:40:07:d5:de:3b:4c:7f:9d:4a:35:37:93:5d:e6:a1:86:
2d:4f:c2:2c:5d:9a:0e:ba:95:74:48:f1:cc:f3:ea:7d:d5:71:
0f:d4:46:76:9a:6c:9b:53:84:41:5b:16:2c:cf:6b:e2:6f:31:
ce:ec:24:8b:e0:fa:96:2e:a7:bb:63:06:77:78:20:4a:9f:db:
60:b6:45:d2:9e:30:12:e0:0d:51:1c:5d:d5:8e:e2:79:91:8f:
65:cd:48:f7:98:67:10:be:4c:17:e0:89:c4:90:72:13:9d:cb:
cb:84:4e:7c:22:30:ce:eb:6d:f5:5d:59:c2:90:ee:93:91:36:
4b:47:c0:e6:c1:30:54:19:0a:f0:f0:73:fb:8c:39:8d:b3:02:
60:af:94:22:db:ae:22:dd:62:a9:c4:89:44:4b:ee:a3:98:23:
c8:49:cd:2b:89:d3:45:02:4e:e2:e6:e7:0f:46:70:5d:f4:ea:
ba:c3:4e:66:c3:cb:48:f9:17:67:18:cd:3a:be:ea:d1:7e:73:
84:25:bd:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:27 2024 by rpki-client on console-ams.rpki-client.org