Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2fcecd-1b6c-4ae9-9d36-6d3812aa5eb5/1/_72ZjPj2G4Tt7sOQzXqEKJh37kA.roa
File: _72ZjPj2G4Tt7sOQzXqEKJh37kA.roa (raw, json)
Hash identifier: 1YMeLk73VAZoYAymDg+ukvLiE/hCak1cC5Fh9s6jEW0=
Subject key identifier: FF:BD:99:8C:F8:F6:1B:84:ED:EE:C3:90:CD:7A:84:28:98:77:EE:40
Certificate issuer: /CN=0239a40bef930438d53cd07f07ff9153e2fb9be8
Certificate serial: 01856BEEB0439F264ABDAC1B2954E228D43C
Authority key identifier: 02:39:A4:0B:EF:93:04:38:D5:3C:D0:7F:07:FF:91:53:E2:FB:9B:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AjmkC--TBDjVPNB_B_-RU-L7m-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2fcecd-1b6c-4ae9-9d36-6d3812aa5eb5/1/_72ZjPj2G4Tt7sOQzXqEKJh37kA.roa
Signing time: Sun 01 Jan 2023 06:04:42 +0000
ROA not before: Sun 01 Jan 2023 06:04:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17012
IP address blocks: 91.243.72.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:b0:43:9f:26:4a:bd:ac:1b:29:54:e2:28:d4:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0239a40bef930438d53cd07f07ff9153e2fb9be8
Validity
Not Before: Jan 1 06:04:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffbd998cf8f61b84edeec390cd7a84289877ee40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:11:af:7a:b4:52:ce:3f:55:28:97:4b:83:9a:
42:22:c2:10:e4:a7:5a:87:12:ed:96:62:f0:3a:b8:
d1:9e:cc:91:ee:9b:1b:8b:8b:e4:3a:d6:76:58:df:
09:65:d1:24:09:ae:82:34:21:d8:cc:2b:d7:3d:70:
f4:cc:5b:00:58:15:48:24:0a:d8:77:f3:23:67:bd:
c9:82:50:0e:a6:48:08:7c:a7:4e:20:c2:eb:f0:02:
31:46:0a:ec:ea:17:aa:22:32:b9:62:34:de:89:5b:
7f:77:a2:5a:24:21:55:db:62:62:9f:fa:3c:9a:18:
55:14:80:e4:b0:0f:81:45:9f:0b:cb:5a:a9:e6:18:
e7:e6:91:59:8f:db:ef:24:33:2a:6f:86:8b:b0:d0:
bc:26:df:2c:7d:de:44:fe:6f:7c:8e:37:09:47:da:
30:0f:97:a3:f1:0f:38:af:61:1d:09:52:86:0c:32:
f0:2b:0b:09:f5:44:e7:2b:31:79:7c:80:86:c4:d7:
3c:4c:43:ce:c7:5d:7b:77:60:a4:c2:85:30:a5:55:
e6:24:72:30:1e:91:bb:f4:43:ca:a0:42:c6:57:f7:
0f:1d:de:d8:04:5d:80:63:66:1e:99:93:e0:18:5c:
35:68:53:72:f4:d8:9c:56:d5:72:e8:d7:56:8a:80:
04:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BD:99:8C:F8:F6:1B:84:ED:EE:C3:90:CD:7A:84:28:98:77:EE:40
X509v3 Authority Key Identifier:
keyid:02:39:A4:0B:EF:93:04:38:D5:3C:D0:7F:07:FF:91:53:E2:FB:9B:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AjmkC--TBDjVPNB_B_-RU-L7m-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2fcecd-1b6c-4ae9-9d36-6d3812aa5eb5/1/_72ZjPj2G4Tt7sOQzXqEKJh37kA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2fcecd-1b6c-4ae9-9d36-6d3812aa5eb5/1/AjmkC--TBDjVPNB_B_-RU-L7m-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.72.0/23
Signature Algorithm: sha256WithRSAEncryption
98:fb:a2:a8:3f:05:52:65:98:cf:1d:bf:06:1f:9f:aa:5a:44:
1d:f3:b1:40:5c:ca:4b:12:6e:23:ec:29:74:2f:32:ad:2c:66:
10:1b:ca:4b:96:50:82:a8:3d:8f:be:df:e6:5b:df:93:53:5a:
50:84:5c:1a:ba:a3:4b:39:5c:73:cd:c3:50:da:0a:87:ff:69:
80:70:39:e4:32:f4:50:67:c7:66:fa:68:1f:11:20:ae:e4:ee:
60:70:57:6e:74:32:a9:13:2d:b5:b8:d7:af:0e:8c:10:b0:1b:
5a:50:a2:40:d3:c9:b2:bb:24:8e:04:f8:d5:46:73:59:da:86:
18:21:4d:a3:b5:c7:48:d0:cf:b1:17:fb:ec:4d:92:d0:1c:00:
a8:fa:a5:1e:4b:71:f0:dd:31:10:b8:96:61:00:c8:41:72:51:
ae:fa:32:7c:f8:2d:21:21:7e:59:2d:51:39:48:9a:96:55:f1:
25:4c:76:eb:61:e1:fb:34:4a:30:65:c7:83:88:d2:bb:fa:8c:
64:92:a0:fe:11:be:fa:aa:46:4e:88:ce:00:fb:5f:a8:76:cf:
86:e7:c1:9b:b4:74:a0:84:26:ac:b5:92:d7:35:80:33:89:4f:
ce:00:03:f1:27:66:b3:2b:6f:83:5f:34:de:e3:94:50:22:81:
82:49:2e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:13 2024 by rpki-client on console-fra.rpki-client.org