Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9b4b96-2bdd-4bf5-a022-ee7896e5cc95/1/t8I1n9lkCnCVcAFYo-6wYdKWEaE.roa
File: t8I1n9lkCnCVcAFYo-6wYdKWEaE.roa (raw, json)
Hash identifier: Y+nJ5S2DWrkhycELVLdQUEgjgqkyimqCPwbjgmCAMEQ=
Subject key identifier: B7:C2:35:9F:D9:64:0A:70:95:70:01:58:A3:EE:B0:61:D2:96:11:A1
Certificate issuer: /CN=273a88c578166988506e13642adb12f631e0a3c2
Certificate serial: 018B00ED7534189478787B9A46A3BB71FA99
Authority key identifier: 27:3A:88:C5:78:16:69:88:50:6E:13:64:2A:DB:12:F6:31:E0:A3:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JzqIxXgWaYhQbhNkKtsS9jHgo8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9b4b96-2bdd-4bf5-a022-ee7896e5cc95/1/t8I1n9lkCnCVcAFYo-6wYdKWEaE.roa
Signing time: Thu 05 Oct 2023 17:40:43 +0000
ROA not before: Thu 05 Oct 2023 17:40:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 91.234.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:00:ed:75:34:18:94:78:78:7b:9a:46:a3:bb:71:fa:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=273a88c578166988506e13642adb12f631e0a3c2
Validity
Not Before: Oct 5 17:40:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7c2359fd9640a7095700158a3eeb061d29611a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:91:77:5a:fa:b1:25:ea:59:f5:b2:20:f4:b1:
d8:31:50:88:bf:97:d0:54:c0:88:af:fc:3d:81:a5:
e9:5a:2a:71:40:58:f6:f4:ee:af:56:c4:86:41:2e:
4c:04:17:fb:af:69:df:cd:42:41:f0:43:94:63:f1:
63:f7:bc:91:20:02:c8:ae:bb:a7:c7:9c:93:cb:3b:
5b:c7:9d:61:31:0d:d2:5b:68:37:99:fc:dc:37:35:
74:19:84:28:d1:de:80:5d:f2:c6:c2:c5:b4:f2:f4:
38:12:ef:cb:63:bd:ad:de:65:54:74:71:57:9e:68:
15:dd:8f:19:67:ff:eb:19:bc:df:ed:b7:a5:45:8e:
dd:da:47:92:a9:d5:56:4f:f5:df:ec:50:35:72:74:
07:3c:1c:35:8e:b6:c3:2a:3e:30:95:76:eb:78:17:
43:9b:2a:b3:cb:3a:32:87:f0:fd:0a:09:99:cf:e4:
ae:e3:80:5d:d7:0b:45:f8:94:37:fa:c7:2b:06:56:
24:f8:e7:da:60:a3:00:49:d4:cc:65:b3:8a:fc:12:
c3:92:bc:6f:f4:2f:4b:9f:09:00:27:0b:37:4f:de:
ae:c0:1f:f0:04:16:8b:e2:99:cf:a0:32:87:72:e4:
32:01:53:1c:6d:96:06:81:26:82:12:0d:37:b9:b9:
2d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C2:35:9F:D9:64:0A:70:95:70:01:58:A3:EE:B0:61:D2:96:11:A1
X509v3 Authority Key Identifier:
keyid:27:3A:88:C5:78:16:69:88:50:6E:13:64:2A:DB:12:F6:31:E0:A3:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JzqIxXgWaYhQbhNkKtsS9jHgo8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9b4b96-2bdd-4bf5-a022-ee7896e5cc95/1/t8I1n9lkCnCVcAFYo-6wYdKWEaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9b4b96-2bdd-4bf5-a022-ee7896e5cc95/1/JzqIxXgWaYhQbhNkKtsS9jHgo8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.202.0/24
Signature Algorithm: sha256WithRSAEncryption
74:00:f6:12:58:f8:ed:43:ee:20:18:b0:f2:40:fc:d0:63:2d:
7e:53:c4:28:5a:86:e6:1e:13:62:b8:4a:80:90:e3:d4:e2:ea:
17:83:35:b2:ea:58:62:55:16:05:44:ef:f4:38:5f:14:88:e6:
3b:a3:65:15:7e:8e:6e:f1:79:e2:06:06:43:29:ca:be:6a:e0:
41:a5:04:b5:7c:0b:59:de:bc:23:e6:83:e1:90:f4:4c:08:53:
a0:86:ea:f7:c4:73:39:e1:e4:ff:28:43:db:25:15:4e:2c:ef:
66:ab:7a:52:e9:5f:80:e7:fc:70:e9:29:54:22:9e:3f:2d:0c:
b5:7d:e4:fb:fd:4c:9b:55:c6:39:52:4d:fa:92:69:97:67:a3:
1e:a8:fa:66:61:a5:11:9d:ab:9a:4f:d1:63:cb:7a:6a:74:06:
44:86:2a:cb:a6:5e:0f:0d:eb:c1:61:41:77:b8:55:97:7b:2d:
8e:ae:23:c8:fd:7d:6e:7d:6c:26:97:20:5b:b1:45:73:54:76:
42:ce:92:88:5d:f7:26:c9:4d:9f:d9:46:9b:06:2e:a4:54:b8:
e2:32:ca:c3:36:55:12:4d:c0:ae:8c:90:f5:e6:22:68:1e:d9:
41:98:18:0f:5d:4d:50:19:8a:b3:4a:6c:94:33:d7:95:d8:95:
90:d8:2a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:38 2024 by rpki-client on console-ams.rpki-client.org