Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/JsJ3iIfR27hkObhQnBmwRkP3PqU.roa
File: JsJ3iIfR27hkObhQnBmwRkP3PqU.roa (raw, json)
Hash identifier: RSaXglW9m6cYc4aCjZ3GGxFxHypiZh8u0PSRCk2mFus=
Subject key identifier: 26:C2:77:88:87:D1:DB:B8:64:39:B8:50:9C:19:B0:46:43:F7:3E:A5
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 01856C53DA772FEF2438B476FA6278B3D096
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/JsJ3iIfR27hkObhQnBmwRkP3PqU.roa
Signing time: Sun 01 Jan 2023 07:55:12 +0000
ROA not before: Sun 01 Jan 2023 07:55:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211440
IP address blocks: 91.217.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:da:77:2f:ef:24:38:b4:76:fa:62:78:b3:d0:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 07:55:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26c2778887d1dbb86439b8509c19b04643f73ea5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8e:4e:50:ee:f8:b6:04:1f:5d:0b:16:54:35:
f0:03:93:4e:96:0f:0c:3e:b0:51:21:1b:aa:b7:92:
f0:97:65:1c:f2:58:8c:82:8e:03:a7:ca:ea:68:4f:
6c:94:27:76:03:18:9e:7b:3b:70:dc:a9:ad:c5:33:
74:f2:89:89:0a:03:f3:e8:a6:e4:eb:a4:f1:a2:c7:
35:1e:89:7a:87:17:6e:d0:c7:a4:e8:6a:39:50:7b:
f7:b0:35:08:f9:ba:98:68:ca:0d:85:13:c0:01:31:
d0:be:4b:88:59:0c:ac:d5:26:57:b2:93:13:fd:56:
1b:bd:50:91:3a:11:e4:6e:34:a7:eb:d3:08:a5:29:
4c:84:d5:a6:76:40:11:7d:16:11:22:bb:3b:bd:e7:
48:b7:53:f0:4e:78:c6:07:5c:bd:dc:d0:e8:27:bc:
a5:0c:ae:c7:46:f7:e9:2c:27:b2:ee:b2:14:09:ff:
d8:dc:3a:75:0a:bb:3e:49:84:ad:4a:97:9a:cf:94:
66:f7:6d:fb:dd:65:3b:10:8d:6a:56:70:18:6a:29:
e9:5c:75:33:4c:d4:6c:cd:95:9e:a9:aa:ce:45:c6:
66:0b:81:a3:c9:c9:f7:23:a2:41:6f:b5:1d:50:0e:
67:f3:7f:e2:2c:75:14:b2:c2:45:83:3f:26:24:04:
53:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C2:77:88:87:D1:DB:B8:64:39:B8:50:9C:19:B0:46:43:F7:3E:A5
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/JsJ3iIfR27hkObhQnBmwRkP3PqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.167.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:1b:5d:4e:eb:ec:42:5d:f6:a3:88:bb:30:ef:81:9c:68:24:
aa:3c:2b:30:de:2f:2f:c6:ff:74:d8:c1:34:16:70:54:07:65:
e0:f4:7b:92:48:07:da:66:15:62:fa:ba:be:c6:94:d0:fe:20:
15:47:20:d3:2e:68:87:67:03:f9:5b:ab:04:48:51:8b:75:2d:
60:44:b3:8b:87:d6:b1:3d:7c:53:f8:21:8c:36:ee:4b:1f:77:
2d:fe:19:b0:b2:6b:b1:69:23:b8:e9:0c:ab:aa:c6:53:d9:ae:
21:39:4a:b2:28:2f:a1:ff:05:7f:5e:85:2d:91:48:9a:f0:b2:
69:7c:ba:a0:c2:2c:7f:f1:22:f3:e9:e9:03:c5:f2:56:73:ae:
0e:a0:36:45:3d:30:4c:c9:f0:06:3c:fe:bd:75:30:7e:fe:a6:
99:54:d3:86:e9:de:1c:80:51:93:2f:f9:a0:cd:6e:78:26:d2:
88:0d:04:03:40:79:59:1d:31:54:c5:0b:83:79:dc:58:37:db:
85:49:f2:2d:03:ce:43:3d:9c:85:79:73:ba:a5:0d:53:d1:4d:
72:24:79:2e:2f:82:c0:fe:ce:86:46:d7:60:c8:b1:47:c2:ab:
3d:ce:d2:5e:5e:dc:1d:c8:77:13:c3:52:64:c1:a0:a6:7d:4a:
17:dc:62:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:55 2024 by rpki-client on console-ams.rpki-client.org