Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/juj9Wn-wC-rBjJ8uO0BIvEuR8Hs.roa
File: juj9Wn-wC-rBjJ8uO0BIvEuR8Hs.roa (raw, json)
Hash identifier: lT3N0ekqXkMmScS9bfMula5/fBByDwBtMVCbYKCZ5XI=
Subject key identifier: 8E:E8:FD:5A:7F:B0:0B:EA:C1:8C:9F:2E:3B:40:48:BC:4B:91:F0:7B
Certificate issuer: /CN=ea46963cc479dadbe3c52234ab9fabaa8122d25b
Certificate serial: 01898FFE7A5641E56BD4ED04DA499A5276B4
Authority key identifier: EA:46:96:3C:C4:79:DA:DB:E3:C5:22:34:AB:9F:AB:AA:81:22:D2:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6kaWPMR52tvjxSI0q5-rqoEi0ls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/juj9Wn-wC-rBjJ8uO0BIvEuR8Hs.roa
Signing time: Wed 26 Jul 2023 02:19:26 +0000
ROA not before: Wed 26 Jul 2023 02:19:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14114
IP address blocks: 91.195.242.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:8f:fe:7a:56:41:e5:6b:d4:ed:04:da:49:9a:52:76:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea46963cc479dadbe3c52234ab9fabaa8122d25b
Validity
Not Before: Jul 26 02:19:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ee8fd5a7fb00beac18c9f2e3b4048bc4b91f07b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cb:ff:d5:1f:32:49:21:b7:ce:1c:3e:f4:4d:
f7:02:0d:d6:62:d7:c1:63:7c:1f:1a:ba:3b:05:08:
da:cb:b4:8d:57:f5:16:70:6f:61:3f:17:25:0c:e5:
0f:b5:b6:2f:48:0d:30:1f:1c:06:98:42:65:03:99:
d7:ee:47:a8:95:16:a2:a2:c5:6b:49:37:a7:91:90:
ad:91:bd:6c:92:c0:2f:f0:14:08:1d:bf:51:6b:c2:
7c:fb:96:69:d9:9c:19:b7:95:33:3d:6e:ef:48:15:
3f:2e:8c:4a:2a:64:b0:91:9d:89:82:0c:63:fe:02:
07:e0:83:cd:2a:63:a5:24:63:d5:94:76:95:71:f4:
90:4e:d5:2a:63:2a:32:f8:f2:8b:b9:f5:8a:90:6a:
98:8e:47:f9:9b:0b:26:dc:86:18:e9:35:6e:11:00:
36:5c:c3:48:d2:4e:b2:6d:b3:67:67:a1:cb:08:38:
7a:02:c5:06:09:16:00:f9:6f:f1:2c:4d:db:94:92:
9b:00:b6:95:bf:bc:67:6c:52:22:e3:27:f9:3f:de:
99:06:0b:36:8b:01:98:c8:3b:48:b6:2f:b4:0c:a4:
b0:57:a1:a9:ab:39:e2:ff:b5:f2:5c:c4:9f:38:77:
5b:f2:47:84:66:dc:d6:8a:58:1c:9b:46:44:5b:32:
99:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E8:FD:5A:7F:B0:0B:EA:C1:8C:9F:2E:3B:40:48:BC:4B:91:F0:7B
X509v3 Authority Key Identifier:
keyid:EA:46:96:3C:C4:79:DA:DB:E3:C5:22:34:AB:9F:AB:AA:81:22:D2:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kaWPMR52tvjxSI0q5-rqoEi0ls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/juj9Wn-wC-rBjJ8uO0BIvEuR8Hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/6kaWPMR52tvjxSI0q5-rqoEi0ls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.242.0/23
Signature Algorithm: sha256WithRSAEncryption
49:b4:2e:e2:9e:f0:e3:fe:e4:b2:dc:40:22:c3:0d:78:2a:4d:
c9:04:df:3a:99:6c:66:b7:cf:da:b1:ca:c6:56:e2:08:ca:2e:
43:35:ee:5e:aa:05:4f:42:58:b9:15:eb:2d:a1:f5:f1:84:c9:
4a:61:05:92:eb:71:00:7c:f9:33:61:30:9a:f1:35:dd:5b:27:
31:a6:05:b6:d0:37:d3:1b:6e:7d:fe:36:f4:30:38:ca:cc:8e:
7d:c5:e6:70:6d:cf:09:c7:9d:31:ea:da:21:d4:b8:db:94:f7:
52:ea:84:83:41:9b:e9:6e:79:a0:f9:4d:ea:fe:ff:db:c9:a5:
73:54:0f:cf:92:30:cb:de:ac:90:c3:df:19:72:47:68:fa:85:
5e:ab:51:1f:52:88:11:f9:17:97:57:7c:65:70:1f:e4:92:06:
74:54:80:7a:b6:09:3b:4b:7a:95:37:9a:65:a1:2f:1a:ff:83:
6b:e3:9a:71:79:4b:99:5d:07:19:46:04:6e:18:c6:ca:1b:21:
10:ec:2a:a6:40:7e:9f:4f:10:39:63:4d:be:4f:a2:29:ec:04:
7a:14:d0:b7:97:ff:3b:4f:14:40:65:2d:17:c2:75:83:dd:ff:
4f:14:f2:3f:71:8b:05:8c:33:46:93:d9:fe:f5:6d:0e:a5:7d:
8a:67:b4:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:11 2024 by rpki-client on console-fra.rpki-client.org