Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/ucYFGABF8KaPhrYqAh5qhNAx5cQ.roa
File: ucYFGABF8KaPhrYqAh5qhNAx5cQ.roa (raw, json)
Hash identifier: DNg5Xrh6Jbaf2a6J4Y9hTdW19pNyroqStwbmDdmPEaw=
Subject key identifier: B9:C6:05:18:00:45:F0:A6:8F:86:B6:2A:02:1E:6A:84:D0:31:E5:C4
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018A884A11C88D22541C26CC1D0A44222F2C
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/ucYFGABF8KaPhrYqAh5qhNAx5cQ.roa
Signing time: Tue 12 Sep 2023 07:27:50 +0000
ROA not before: Tue 12 Sep 2023 07:27:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210538
IP address blocks: 87.248.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:88:4a:11:c8:8d:22:54:1c:26:cc:1d:0a:44:22:2f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Sep 12 07:27:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9c605180045f0a68f86b62a021e6a84d031e5c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:97:9d:d9:7f:61:51:79:89:bb:d2:db:fb:55:
38:63:b6:5a:dd:d4:46:c1:ac:b1:df:ab:5f:4a:1d:
d4:d0:e0:a4:47:2b:47:1f:9d:a0:74:04:79:98:2d:
00:51:94:0a:dc:4a:68:11:e9:06:89:75:2f:6c:64:
c1:2e:8a:70:f5:dc:c8:60:40:65:7c:d7:d1:2b:4b:
1b:e9:08:e3:4d:f2:cf:2a:ee:0e:4a:18:38:d5:9f:
d4:b3:22:4c:80:f9:e4:a6:f4:7f:7c:58:f9:48:c4:
91:a2:70:be:b9:a3:62:e1:b3:83:ac:1b:99:6d:68:
66:d0:2c:a6:b6:0d:eb:8d:56:71:82:51:27:64:7f:
89:72:44:e8:d0:38:b2:93:27:fb:29:47:9b:e8:fd:
56:c5:62:57:31:a3:ed:43:04:15:52:63:51:2a:59:
20:a7:93:b7:c5:ad:7f:95:4b:bc:9c:ce:f4:8c:93:
90:e1:d8:52:be:03:59:bc:45:ab:61:cb:8c:8a:65:
9d:62:54:b2:5e:a6:39:1e:cb:5d:66:03:04:f0:43:
46:c7:00:04:67:c1:8c:79:7b:2d:64:fd:da:bc:c3:
cd:09:b7:40:42:4c:5f:8f:fa:ef:f3:be:b8:4b:59:
cd:b6:7f:a4:aa:15:fd:fe:44:d0:79:1a:84:9c:7b:
c2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C6:05:18:00:45:F0:A6:8F:86:B6:2A:02:1E:6A:84:D0:31:E5:C4
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/ucYFGABF8KaPhrYqAh5qhNAx5cQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.157.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:c9:d3:c9:c8:1a:41:69:5c:f8:90:da:e7:20:d7:3e:a5:5d:
ed:10:a7:12:22:5d:4f:97:88:48:5c:a6:89:41:db:f6:3c:9b:
35:68:63:79:32:b0:54:34:6b:58:7d:85:f7:69:68:78:4f:ef:
e6:9a:bc:fe:f8:55:63:10:07:43:6a:a9:ba:e9:75:96:ee:55:
c9:44:8b:0f:dd:02:e7:5d:1f:35:d1:83:6c:d9:8a:88:e6:71:
f9:0e:61:35:12:02:4a:a7:0f:5b:96:b8:bc:b1:c4:8b:01:3f:
64:d2:ca:82:37:5b:a2:8f:d3:e8:40:9d:83:86:eb:aa:b4:b2:
8f:bd:59:61:91:67:a6:8b:c0:6f:6b:a3:5f:0d:d6:a6:ac:d1:
e3:43:a3:4d:f3:9b:3e:cb:c9:65:8f:2f:ae:66:91:e9:87:cf:
62:61:4a:ad:b6:27:e9:9c:d4:db:62:8a:af:06:01:fe:ad:19:
89:2e:07:d9:ce:f0:4a:d4:e1:fd:c6:ff:69:d8:2c:11:e1:ba:
12:58:42:91:8e:c8:52:32:1c:86:99:9b:d6:16:c8:f5:25:ae:
38:bb:50:65:e7:b5:87:61:61:2b:83:f5:07:13:09:7f:e9:00:
c1:73:9a:ae:f1:28:21:b6:93:8c:4d:a8:d8:1d:be:09:c4:16:
c0:f1:1b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org