Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/P27TZkgKuAMFT2DbKpr2D0G1WHY.roa
File: P27TZkgKuAMFT2DbKpr2D0G1WHY.roa (raw, json)
Hash identifier: dXcNxVnoknItHVKK1UApaHc1y26APk02bdxYxLstOas=
Subject key identifier: 3F:6E:D3:66:48:0A:B8:03:05:4F:60:DB:2A:9A:F6:0F:41:B5:58:76
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 01856C65F8A9F659AEE82F4C744F8E83516A
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/P27TZkgKuAMFT2DbKpr2D0G1WHY.roa
Signing time: Sun 01 Jan 2023 08:15:00 +0000
ROA not before: Sun 01 Jan 2023 08:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210342
IP address blocks: 79.133.99.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:f8:a9:f6:59:ae:e8:2f:4c:74:4f:8e:83:51:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Jan 1 08:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f6ed366480ab803054f60db2a9af60f41b55876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:43:9a:89:4a:cc:7e:a4:1d:76:35:c1:5d:1d:
a8:0e:4b:7e:1f:12:7f:c0:a2:93:b3:9a:08:ec:15:
f8:3c:27:0b:e0:c5:22:00:80:51:12:eb:3a:97:67:
ac:35:4c:82:1d:77:5d:fd:83:b5:0d:39:00:40:f6:
3e:3f:1f:be:87:12:c2:26:51:ca:40:2d:4c:3d:78:
12:0f:55:aa:10:a7:95:57:7d:31:fe:66:7d:a9:29:
f3:a9:bd:eb:91:e8:8b:ed:65:cf:f2:12:69:38:25:
91:6b:a8:0c:f5:11:90:7f:87:37:e7:fb:32:99:b2:
3c:64:ac:f6:c2:52:ec:6d:ad:44:bc:24:5e:b0:e3:
e1:49:4d:b9:ee:77:cb:f5:50:2a:ec:c8:ca:4a:da:
a2:c4:39:44:f6:7c:21:57:1c:59:d3:5b:f8:7c:d6:
c1:d5:02:e6:cb:dd:f9:0f:d7:e6:b1:8d:95:aa:40:
41:93:76:3f:71:24:f0:e8:76:af:21:28:46:d2:4c:
5a:2f:f5:fb:44:5f:f0:12:97:ca:f5:e1:93:be:fa:
a2:0e:04:40:f0:fa:6d:4a:ad:69:29:11:32:13:4c:
26:cb:db:90:19:f1:2e:ac:d3:3d:00:27:5c:30:8e:
1d:bd:37:2c:f1:6c:cf:ac:9c:b9:fe:68:2d:6e:74:
a9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6E:D3:66:48:0A:B8:03:05:4F:60:DB:2A:9A:F6:0F:41:B5:58:76
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/P27TZkgKuAMFT2DbKpr2D0G1WHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.133.99.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:92:97:ff:d1:da:48:fc:ba:57:56:13:66:1d:8f:81:d2:69:
1b:ab:9e:3f:68:2a:5d:a6:4e:9d:51:87:0b:c7:c6:ac:01:fc:
f8:88:48:7f:4e:5e:3f:e2:5d:ba:63:bf:33:df:22:55:9c:7e:
d9:74:f1:e2:17:53:57:19:39:22:ac:de:10:d1:54:a1:88:84:
6f:a4:1f:a3:7f:2e:02:71:c7:87:41:c3:a1:36:f3:2c:f3:d7:
bc:1f:10:b2:51:bd:d2:05:ed:a1:ec:6c:fe:8d:3f:fa:6a:58:
c2:84:44:b8:5a:72:04:d3:d4:73:4e:9d:aa:37:ca:e7:d1:a4:
26:b8:06:72:a9:34:c8:29:61:ec:3b:52:43:85:47:c5:1a:11:
25:6d:37:e1:3f:88:1f:02:15:88:67:78:00:9c:1e:5e:c7:46:
b1:b0:88:df:44:6b:74:00:c7:87:34:1e:03:1b:c7:03:4b:20:
f8:a0:de:d3:5e:3a:a3:10:df:f8:40:37:3c:18:6b:28:50:41:
12:77:60:fa:dc:4f:39:ed:73:73:d6:60:2b:38:ab:53:2f:cc:
b8:95:2a:6c:ed:c2:69:81:cf:af:cf:f8:5a:bc:47:10:0a:43:
0e:9b:b9:f2:74:22:44:45:16:a5:82:65:0c:ee:07:c7:3b:13:
0f:d5:93:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:21 2024 by rpki-client on console-ams.rpki-client.org