Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/0AzeocyyerhHhRmRGLZQsWFb5mY.roa
File: 0AzeocyyerhHhRmRGLZQsWFb5mY.roa (raw, json)
Hash identifier: tKARJQFao5C0Nu4YmlseIs+rgoSHEAZPo12avxGuxUo=
Subject key identifier: D0:0C:DE:A1:CC:B2:7A:B8:47:85:19:91:18:B6:50:B1:61:5B:E6:66
Certificate issuer: /CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Certificate serial: 018DFC0B7EE0FE5B6B9F462235D70E473F57
Authority key identifier: C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/0AzeocyyerhHhRmRGLZQsWFb5mY.roa
Signing time: Fri 01 Mar 2024 22:03:48 +0000
ROA not before: Fri 01 Mar 2024 22:03:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15557
IP address blocks: 91.92.18.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 13 Mar 2024 10:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:fc:0b:7e:e0:fe:5b:6b:9f:46:22:35:d7:0e:47:3f:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Validity
Not Before: Mar 1 22:03:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d00cdea1ccb27ab84785199118b650b1615be666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:c3:de:0b:a6:c8:5a:f3:67:ce:aa:0c:d6:3e:
bf:2a:01:c0:11:bf:77:24:45:86:32:08:3d:60:9a:
de:bb:bf:a7:05:8b:f5:a2:c7:7c:23:04:c9:7f:98:
79:e0:d3:f5:e8:b8:69:66:b7:54:99:84:e9:30:75:
68:6e:bb:66:e5:d9:75:5e:37:33:9c:0a:69:c4:b1:
12:10:29:62:49:fc:43:bf:0b:c3:6b:59:4c:c4:b2:
67:79:5b:a0:2b:be:60:6e:ff:27:7f:73:33:05:44:
ae:5b:d9:f5:0c:d3:bd:88:0d:c8:95:21:db:17:a5:
27:1a:56:45:ef:63:54:15:1e:d5:31:31:3a:ed:ae:
5d:c0:5b:68:06:81:24:d1:89:fd:4e:26:52:d4:18:
7e:f6:87:73:0e:64:8a:49:ad:9a:63:29:d6:9c:f0:
84:63:3a:33:84:0c:45:48:12:aa:9c:d9:4a:08:5d:
e1:32:1f:6c:40:8a:2e:5e:5d:68:57:0c:47:00:22:
c0:ab:3b:ed:c1:67:81:e5:c7:cf:87:e4:bf:36:80:
61:a7:3e:9e:48:f8:3f:37:67:46:b8:62:78:bd:fa:
27:24:9f:69:c3:bb:5a:86:4b:a4:3d:44:97:9b:15:
32:b3:5b:e3:88:0c:4b:a0:3a:eb:23:2f:f7:40:0f:
cf:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0C:DE:A1:CC:B2:7A:B8:47:85:19:91:18:B6:50:B1:61:5B:E6:66
X509v3 Authority Key Identifier:
keyid:C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/0AzeocyyerhHhRmRGLZQsWFb5mY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/yGjKghR-0id7S8xppShbrnNfLkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.92.18.0/23
Signature Algorithm: sha256WithRSAEncryption
31:c8:c8:6a:33:62:1d:45:e7:74:f8:0a:ff:b9:df:bd:ec:1b:
4e:47:6f:f6:3e:64:00:76:ce:10:97:e0:23:dc:53:b4:d6:72:
4c:65:89:4a:86:38:6e:07:1a:c3:f6:03:cb:89:c4:74:ed:74:
a7:d4:a9:cf:92:5e:65:89:ad:e8:00:35:f1:9a:92:0a:b1:c6:
30:d4:0a:fb:c8:ad:08:f0:75:35:48:9a:dd:0f:84:25:75:a5:
15:94:a8:65:e7:74:1f:07:c2:d3:b2:dc:25:0b:ad:24:05:93:
98:c5:f6:a4:77:64:16:22:43:70:73:ee:dd:4f:6f:2b:0e:c8:
ab:ae:ed:4b:95:55:9c:c2:02:7c:9e:f1:4a:b4:9e:a2:64:fe:
fc:eb:60:7a:db:3a:6d:f7:76:4f:f5:e2:f4:7a:b4:16:cd:8b:
2c:7b:d4:d7:bd:7d:13:92:86:f3:d6:ed:46:c5:c9:25:a5:43:
ac:c3:84:3d:50:c5:83:c7:a5:d3:89:46:cd:d1:eb:5a:e6:80:
21:a1:ca:ec:40:ac:0e:ad:8a:9e:2a:7e:07:25:95:14:c8:2d:
a6:61:12:cd:6f:54:9b:60:79:9d:ef:f0:f4:2e:af:6b:58:85:
7b:07:0c:67:51:71:69:f2:d8:e0:87:f6:24:d9:5b:cc:1f:bb:
00:20:78:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:56 2024 by rpki-client on console-fra.rpki-client.org