Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/xxjJvigh7dKyCspWY4lke0s7k8Y.roa
File: xxjJvigh7dKyCspWY4lke0s7k8Y.roa (raw, json)
Hash identifier: UWbDhVB3J3XBgpgG62TqDv50GMWdKoQYvtdWx2b+iPQ=
Subject key identifier: C7:18:C9:BE:28:21:ED:D2:B2:0A:CA:56:63:89:64:7B:4B:3B:93:C6
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 01856C53D28B7776B3144CB889324FDBD484
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/xxjJvigh7dKyCspWY4lke0s7k8Y.roa
Signing time: Sun 01 Jan 2023 07:55:10 +0000
ROA not before: Sun 01 Jan 2023 07:55:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40065
IP address blocks: 91.217.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:d2:8b:77:76:b3:14:4c:b8:89:32:4f:db:d4:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 07:55:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c718c9be2821edd2b20aca566389647b4b3b93c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7a:9e:0a:71:ca:f2:89:0b:83:29:68:6a:2a:
31:da:74:d1:46:45:5b:be:fc:5f:ba:d2:55:8f:ed:
40:0e:e7:a2:56:26:6a:be:3a:c8:c5:a9:41:4c:4a:
98:cc:76:73:57:5e:52:f3:a7:06:ed:16:ee:a2:ba:
8b:e9:04:e1:1f:2b:d6:9a:75:58:59:b3:b5:f9:c5:
5d:55:8c:72:cc:4e:30:37:c2:a6:a4:8d:ea:80:c0:
2e:c8:1e:a7:f3:29:25:2a:42:60:f4:ae:27:57:f3:
23:5e:e7:9e:22:da:d7:43:a3:db:16:e1:c4:9b:eb:
f7:2e:67:f0:6b:4f:23:63:a1:ff:a4:2c:3d:27:6a:
88:89:f1:18:df:20:ba:c6:b1:8b:e9:be:21:13:71:
6b:8e:8d:3f:7a:fe:73:dc:09:a2:d7:dd:f2:06:83:
83:cf:42:20:3b:3b:8f:ec:0a:61:85:87:03:23:8b:
60:57:92:47:4e:39:39:be:fb:fe:3f:db:be:6a:76:
b2:41:1b:be:bf:b4:cc:92:2c:1e:df:a1:db:49:24:
e8:d8:aa:88:14:29:92:2b:09:00:d5:77:02:50:24:
d9:f0:1f:66:93:77:09:ba:be:30:5c:95:24:db:59:
d2:59:62:34:ee:fb:78:77:7b:73:63:84:71:45:dc:
b1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:18:C9:BE:28:21:ED:D2:B2:0A:CA:56:63:89:64:7B:4B:3B:93:C6
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/xxjJvigh7dKyCspWY4lke0s7k8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.139.0/24
Signature Algorithm: sha256WithRSAEncryption
85:a2:1b:44:b3:97:59:b5:61:86:2d:16:51:3f:c9:40:6a:34:
c0:a4:d2:a3:98:f6:63:e2:2f:10:13:de:57:ac:d1:8d:b1:62:
3c:7a:6f:2d:a6:ac:f7:66:23:ef:60:bc:7c:9d:a0:9d:3e:02:
4f:9f:07:e1:2f:9b:0c:e7:a3:43:25:38:67:f2:6e:9d:71:1b:
1c:2e:c6:2b:f4:b6:07:a2:6d:f4:7e:bf:c2:b5:cf:4d:c5:8e:
99:70:21:58:6d:f9:39:ed:7f:22:ef:48:01:ee:0e:4c:30:b0:
7b:8c:0a:65:cc:77:8e:6d:c3:67:a2:d8:89:e1:4b:82:b2:09:
61:54:e8:f9:78:0b:b6:04:b6:06:04:8e:e3:92:71:37:9a:53:
2d:4b:eb:36:8e:18:41:38:a8:3a:16:06:12:e6:d4:37:56:ae:
8e:64:59:64:a6:1c:4b:cc:8f:e6:1d:a7:73:a3:4f:20:f9:c3:
c5:ed:21:0b:d9:a3:81:cb:f7:3f:3d:ef:4d:79:42:76:a4:00:
2a:19:b1:39:f6:ce:ee:46:f0:5b:03:4d:55:68:96:67:71:a0:
74:5f:af:c9:76:04:b7:33:05:c4:89:a7:87:f0:43:32:aa:c7:
66:91:2d:e0:d8:5b:1e:ff:dd:6d:b2:7b:8c:da:b3:9f:d8:a9:
62:85:a2:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:00 2024 by rpki-client on console-fra.rpki-client.org