Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/sXbcjfln0MIUsua41h0SWhkOZdM.roa
File: sXbcjfln0MIUsua41h0SWhkOZdM.roa (raw, json)
Hash identifier: 2xiMXoYwEqi+olcTumFpUgQC+5OsZJQ0CWwdvMUjess=
Subject key identifier: B1:76:DC:8D:F9:67:D0:C2:14:B2:E6:B8:D6:1D:12:5A:19:0E:65:D3
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018674B708C65FF4B66141BD4C0837B06EA7
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/sXbcjfln0MIUsua41h0SWhkOZdM.roa
Signing time: Tue 21 Feb 2023 16:03:17 +0000
ROA not before: Tue 21 Feb 2023 16:03:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 92.71.18.64/27 maxlen: 27
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:b7:08:c6:5f:f4:b6:61:41:bd:4c:08:37:b0:6e:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Feb 21 16:03:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b176dc8df967d0c214b2e6b8d61d125a190e65d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:13:92:44:a9:a9:0c:5c:38:b8:bb:46:27:de:
ab:e8:39:2f:9c:77:10:82:83:f0:a6:4b:b7:7d:ec:
33:4d:b6:a2:47:3e:45:44:ef:32:cc:83:3d:ad:09:
83:96:bd:1d:6f:d2:da:3a:90:75:05:b8:c5:91:6e:
3f:56:71:2a:22:1e:14:7f:43:2f:a9:a6:5c:8a:ba:
6f:25:29:4b:dc:b4:54:e6:b3:29:83:4b:85:a0:28:
b7:5b:d2:0e:47:32:1e:06:59:7b:3f:47:b6:00:f3:
af:03:9a:4d:4d:07:ac:5c:ed:a4:c6:c3:6a:61:a8:
a7:f1:a4:07:91:c6:3a:45:4e:ba:01:f1:d9:25:42:
e6:d8:52:20:6c:16:a1:15:84:69:7b:59:c4:88:92:
36:e7:54:cc:66:e6:2e:53:1e:6e:cd:b7:37:e3:1a:
2e:f0:db:6f:df:87:f5:59:80:e0:ad:df:db:88:2f:
22:d5:0a:95:c4:1f:9a:fd:e3:cd:ec:cf:15:9d:49:
3f:0d:10:e0:33:18:8f:32:81:78:98:1b:73:fb:c6:
9a:29:37:64:aa:8f:e0:88:7c:2c:9a:e3:78:31:33:
ef:c8:55:8d:63:9f:0c:dc:0d:2f:7a:15:1c:7b:c8:
c7:f6:ec:d8:83:9e:1b:c5:9d:dc:99:d0:07:7b:7a:
28:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:76:DC:8D:F9:67:D0:C2:14:B2:E6:B8:D6:1D:12:5A:19:0E:65:D3
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/sXbcjfln0MIUsua41h0SWhkOZdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.71.18.64/27
Signature Algorithm: sha256WithRSAEncryption
9d:c3:19:4f:26:b7:7a:a1:31:ab:ea:b6:bb:df:1a:06:a0:95:
05:e7:2f:e9:c7:08:0c:8d:66:5d:5f:4f:7f:94:4d:9e:00:91:
ea:40:fd:4b:85:4f:df:49:ed:c7:cd:88:8a:91:be:6d:44:61:
05:6a:f8:3c:97:a6:9e:cf:54:37:ea:54:03:27:ff:00:e3:c1:
16:06:9c:7f:2c:f9:a2:4d:61:21:3e:8c:46:bb:31:de:65:89:
23:2c:8c:63:d8:69:5f:91:a0:ff:21:0b:40:ca:42:de:8a:6c:
fd:c2:6a:10:99:0c:d7:bb:59:7a:5b:38:73:9c:c9:3f:6f:1f:
51:05:ba:07:1a:99:6d:96:29:3b:c3:fb:85:53:7e:81:58:54:
df:5a:a2:3e:3e:de:8a:ee:6a:d7:50:6d:90:b0:b4:55:d2:7a:
6a:63:34:7e:45:3f:f5:54:8a:91:bf:da:d8:0b:82:e6:67:d3:
0b:89:91:e2:25:89:7e:3e:d3:f6:34:63:48:c0:73:df:d4:d2:
d6:15:93:c6:38:5a:80:d4:d1:30:3c:89:76:60:8e:2d:1a:94:
08:40:32:a0:01:72:db:33:5e:fc:bf:66:51:80:da:80:a5:58:
be:2c:d0:b2:6f:8b:97:66:bc:3f:bb:f7:ca:d7:52:48:05:9c:
2b:8a:ec:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:38 2024 by rpki-client on console-ams.rpki-client.org