Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/cJZOSIoKS31PSxyaq_bAWHJMmNw.roa
File: cJZOSIoKS31PSxyaq_bAWHJMmNw.roa (raw, json)
Hash identifier: qA/CxGEYh9wuAE/515sJn9YKNkMq8DHG2cvYNUaZkos=
Subject key identifier: 70:96:4E:48:8A:0A:4B:7D:4F:4B:1C:9A:AB:F6:C0:58:72:4C:98:DC
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018B6A2697AFAA19591556B92D5A77274978
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/cJZOSIoKS31PSxyaq_bAWHJMmNw.roa
Signing time: Thu 26 Oct 2023 04:03:15 +0000
ROA not before: Thu 26 Oct 2023 04:03:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212027
IP address blocks: 86.107.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Dec 2023 05:36:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6a:26:97:af:aa:19:59:15:56:b9:2d:5a:77:27:49:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 26 04:03:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70964e488a0a4b7d4f4b1c9aabf6c058724c98dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6e:2c:6e:c5:dc:61:6b:0f:a0:b9:1a:89:44:
ee:a8:18:c6:69:50:4a:d2:e8:60:49:ea:59:52:c8:
b4:2c:89:b3:ce:80:eb:94:32:a3:76:ea:a4:8e:ee:
ee:58:21:9c:2e:8d:83:cd:43:47:88:6b:b9:ea:84:
ac:74:91:c6:10:40:56:d6:ee:8e:93:a4:77:4b:6b:
1b:76:a3:bf:b1:75:7b:02:dd:fb:83:05:10:b1:8b:
4a:34:05:17:9b:04:ac:a6:80:0a:1a:2c:43:ae:db:
58:54:12:18:26:c0:17:cb:4d:68:60:1c:05:59:1a:
16:c9:f7:13:b1:1b:ee:04:75:94:7c:8b:eb:1f:f7:
8b:49:91:9e:22:31:30:a7:8b:e4:7f:d8:52:1b:be:
35:6e:3e:9d:00:42:ed:57:2f:5b:51:22:1a:50:0d:
44:05:9c:47:dd:a4:3e:59:b1:e1:e3:f8:af:d9:fd:
6b:41:2d:97:ea:0f:40:44:7e:72:e0:6c:ae:48:4f:
19:22:ef:0c:77:de:40:7c:e8:59:05:f4:3f:0a:5a:
78:02:54:00:f8:93:0b:46:2c:9f:a7:c2:e9:83:21:
62:7e:46:4b:0c:31:97:bf:51:6a:9d:29:0d:03:ce:
12:03:b7:3b:8b:15:bd:31:04:51:60:f2:72:d6:0f:
77:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:96:4E:48:8A:0A:4B:7D:4F:4B:1C:9A:AB:F6:C0:58:72:4C:98:DC
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/cJZOSIoKS31PSxyaq_bAWHJMmNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.168.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:07:fa:d3:1f:2c:d1:b1:03:67:1a:85:c5:05:c1:5f:53:58:
72:e5:ba:18:7c:aa:b9:6a:5d:e6:6f:b7:4c:47:68:d9:90:78:
43:8a:17:33:12:3d:85:43:61:ed:c3:c7:53:17:b7:39:d0:93:
99:a5:2b:cc:86:d9:6d:c3:60:a5:72:36:cc:9b:fb:c4:bd:7b:
f4:c1:86:7e:02:03:9d:d6:57:13:f7:fd:68:af:28:3b:b3:79:
e6:2b:47:45:a4:1a:34:07:c6:90:d6:56:03:8c:1b:de:47:c9:
86:91:89:c6:68:5f:eb:74:d2:0f:54:39:57:30:c1:ca:fa:61:
e8:52:75:1c:a2:1c:03:67:26:4d:be:eb:0f:e1:5a:22:bc:55:
00:17:78:de:74:63:5f:5c:cc:83:a7:a9:18:3f:07:e6:72:e4:
c1:55:93:5a:d9:7c:07:7c:ae:78:60:8e:06:83:ae:f9:6b:fd:
95:e0:eb:b4:2a:2e:93:c3:f2:f0:3e:6f:ff:6d:fc:0f:d9:d0:
14:ae:44:0f:7d:c8:7b:fe:66:d1:85:9a:2c:9f:7c:0c:88:12:
85:20:a2:48:4c:b6:99:5c:c6:7a:e0:ae:a8:d5:21:90:c9:40:
87:29:88:2d:b3:7a:81:03:cd:5d:27:1d:33:17:11:c8:a3:ce:
f3:c0:72:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org