Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/DiSNl29VHpjstOx9WOZRFhAl_7Q.roa
File: DiSNl29VHpjstOx9WOZRFhAl_7Q.roa (raw, json)
Hash identifier: TTPxOnLexsiytfhiVhZ4ipAOdZ1/HmAjfSPdu+ZNDlQ=
Subject key identifier: 0E:24:8D:97:6F:55:1E:98:EC:B4:EC:7D:58:E6:51:16:10:25:FF:B4
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 018C921D899F579328DA54F058DA1255C3C4
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/DiSNl29VHpjstOx9WOZRFhAl_7Q.roa
Signing time: Fri 22 Dec 2023 15:20:58 +0000
ROA not before: Fri 22 Dec 2023 15:20:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44620
IP address blocks: 91.102.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:92:1d:89:9f:57:93:28:da:54:f0:58:da:12:55:c3:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Dec 22 15:20:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e248d976f551e98ecb4ec7d58e651161025ffb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:99:bb:cd:af:3d:fe:19:50:b3:aa:e9:aa:82:
8e:69:bf:0b:49:a7:c4:5d:23:7f:00:7b:a3:3c:5b:
8a:1c:33:00:eb:a4:70:7e:32:94:35:b2:d7:66:4a:
e8:8b:8a:eb:6e:ee:83:a4:09:dc:d8:1f:8d:5a:ea:
78:e1:27:61:83:45:ee:a8:eb:28:1a:a3:c1:0f:c4:
49:87:90:07:c6:84:69:6c:a0:7c:53:89:9a:31:db:
23:11:3a:59:e1:1d:13:16:71:51:3d:8e:8d:fb:a6:
ed:62:78:9f:83:ad:3f:e8:4d:36:b3:68:4f:4a:59:
b3:ef:a5:7b:54:00:d4:d4:f3:44:c7:6e:ce:c1:b9:
a5:5b:de:1f:b6:42:88:f8:cc:f6:68:8d:d7:2f:2c:
a9:c6:f8:09:11:49:03:b1:ad:5d:b2:2e:c2:23:d2:
1d:f2:ee:19:95:67:02:e7:99:89:5c:01:f0:63:1b:
4c:40:58:24:42:83:9e:fc:0f:65:20:7f:30:1d:eb:
ff:a5:35:2f:a2:84:e6:38:f9:c0:11:2e:c5:e4:f8:
9b:14:3c:56:86:50:7b:3a:28:25:21:9b:df:30:01:
6f:f7:19:a0:a6:7d:94:a2:e7:78:34:f8:f2:1c:96:
c0:cd:c4:5e:5b:e0:1d:9e:95:63:13:b9:31:cf:a9:
4e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:24:8D:97:6F:55:1E:98:EC:B4:EC:7D:58:E6:51:16:10:25:FF:B4
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/DiSNl29VHpjstOx9WOZRFhAl_7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.163.0/24
Signature Algorithm: sha256WithRSAEncryption
23:40:ef:aa:a0:57:fe:b1:93:96:e6:12:6d:ef:5c:7a:2e:76:
b7:05:bf:b4:f8:f9:c1:6a:d9:46:82:17:80:a6:70:12:81:a6:
e8:35:13:6b:58:8d:42:13:39:81:d9:d7:03:ac:e1:b6:44:d3:
dd:ca:5e:73:e8:f8:2c:ae:6d:dc:6f:4f:64:0d:18:da:60:3b:
26:0a:bb:8f:9b:2a:3d:73:85:6d:9a:32:be:df:49:64:64:37:
ef:39:98:b8:06:d2:1f:99:20:3d:fa:7f:e3:81:16:20:97:ad:
88:9f:99:fb:40:15:ec:33:35:17:dc:ec:56:5d:8f:ef:5f:a2:
61:57:fb:c9:7e:64:3f:65:11:0a:80:bb:5a:0f:2c:83:10:06:
ec:42:37:22:54:ca:23:6c:a3:c9:fc:98:00:aa:2d:62:01:77:
5e:f9:69:ae:fa:c7:71:e9:46:55:54:9d:08:be:85:32:e1:71:
e1:22:b8:46:9b:04:3a:fd:73:cf:4e:7a:12:82:6f:6c:c8:d4:
b8:f3:ed:e1:88:58:2b:ea:20:1a:81:12:46:ca:f4:62:f1:14:
68:13:32:7d:57:ef:7f:a5:20:96:50:27:53:b0:ed:a6:9f:d3:
65:98:29:0f:9d:60:0b:87:76:bd:27:b1:2f:ce:90:56:33:4e:
14:47:b5:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org