Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/drzZJMeBxJcVzuLxXekoRL0n3Ec.roa
File: drzZJMeBxJcVzuLxXekoRL0n3Ec.roa (raw, json)
Hash identifier: Ci18WmU2XFnJM8gFReBseqomFx+mIFlgotgeoQcIvX8=
Subject key identifier: 76:BC:D9:24:C7:81:C4:97:15:CE:E2:F1:5D:E9:28:44:BD:27:DC:47
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 018AA801E19F757435BA69F04CB208C85248
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/drzZJMeBxJcVzuLxXekoRL0n3Ec.roa
Signing time: Mon 18 Sep 2023 11:16:50 +0000
ROA not before: Mon 18 Sep 2023 11:16:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 91.102.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Nov 2023 22:32:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a8:01:e1:9f:75:74:35:ba:69:f0:4c:b2:08:c8:52:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Sep 18 11:16:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76bcd924c781c49715cee2f15de92844bd27dc47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ff:3d:7d:1b:6c:6f:b2:89:85:f1:6e:97:91:
a0:d8:a7:d6:dc:d7:77:30:6b:d2:2a:7b:01:ee:f4:
5c:46:69:a9:03:cb:85:2b:81:63:38:ac:e6:eb:ab:
73:dd:06:b0:71:bc:bd:46:17:11:5b:f7:7b:78:b5:
49:77:cc:38:15:4f:42:84:45:0d:25:cb:e1:3c:43:
1c:f9:d4:af:ea:fd:63:35:3b:12:b4:6d:b1:26:a7:
9f:3b:e9:11:16:5f:8d:c8:c6:6e:22:e8:9f:3e:75:
24:9d:66:ec:51:a4:af:b6:10:75:fa:87:8e:c5:56:
48:16:9a:97:82:cc:ca:83:e6:78:16:ef:3f:0a:fd:
ad:b3:fb:b1:4e:49:a3:84:7b:7c:73:cd:81:ae:3b:
69:c1:c2:6f:40:7e:b7:db:f6:c1:c8:1b:f4:cb:c2:
57:d5:8e:d1:e5:dd:9e:3c:94:4a:fc:06:74:64:63:
fe:0a:b3:8b:35:d3:5e:87:ac:95:23:12:0b:dc:89:
30:5c:6b:7f:13:79:48:71:8a:43:a2:df:ef:61:7a:
07:51:ec:93:8f:51:75:f2:de:98:15:58:7f:98:af:
66:73:bd:17:a1:b1:92:37:24:3e:de:9a:f9:55:ef:
89:e5:d8:fd:10:72:ef:58:5b:b5:24:f9:bc:f0:e2:
f3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BC:D9:24:C7:81:C4:97:15:CE:E2:F1:5D:E9:28:44:BD:27:DC:47
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/drzZJMeBxJcVzuLxXekoRL0n3Ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.165.0/24
Signature Algorithm: sha256WithRSAEncryption
76:b8:6d:6c:51:91:55:f7:e8:88:5b:0f:f0:ff:86:3e:e3:4c:
5e:f7:b0:4b:bc:6a:e3:11:04:a3:22:46:9f:37:e1:1a:d4:ab:
28:ac:a6:51:cf:d1:da:3d:c8:f6:be:2e:12:09:70:d7:49:45:
2a:31:11:ff:d2:48:1e:2a:f2:25:34:ec:31:a6:e2:cd:a9:94:
77:4c:43:36:fe:3b:66:6d:f8:e7:c1:b8:52:23:57:60:7c:15:
ef:f2:c4:70:af:ad:4f:3f:73:99:bd:ed:71:fa:a9:42:0c:cc:
c7:fb:73:26:79:8d:c3:12:76:ca:b8:e6:82:78:2a:e9:b0:b5:
40:ed:a4:3b:f4:e4:72:fa:01:a4:54:3e:48:8b:94:04:93:86:
5d:f6:ea:07:fa:3a:30:eb:c2:77:45:e1:0e:05:54:3b:20:10:
7c:4f:33:15:83:c5:82:b7:90:e6:05:84:44:58:6d:5d:77:25:
b8:45:0b:b4:3e:75:6f:58:57:25:65:a2:f3:b8:af:32:fc:88:
18:b8:94:57:49:96:b6:27:63:b0:d3:d4:df:c5:0c:2b:f8:29:
ae:f7:94:74:85:ec:73:7f:5c:e1:e6:11:ef:c1:90:4a:79:6e:
1c:68:cf:80:b2:b8:40:aa:3a:20:fd:6c:d3:3b:06:29:e4:37:
8d:aa:f4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:51 2024 by rpki-client on console-ams.rpki-client.org