Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/d4m-lKf8wOC-GY1RFTeXQA1ZLrM.roa
File: d4m-lKf8wOC-GY1RFTeXQA1ZLrM.roa (raw, json)
Hash identifier: WKy1M+J0RQhEpQEy7VEs8qQ0qnRRqUkeoa9eb11S8r0=
Subject key identifier: 77:89:BE:94:A7:FC:C0:E0:BE:19:8D:51:15:37:97:40:0D:59:2E:B3
Certificate issuer: /CN=c8d5e37178d8524c72660a1d796165999e586622
Certificate serial: 018CAA0B54F854241547FFA90E3D5178DCD0
Authority key identifier: C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/d4m-lKf8wOC-GY1RFTeXQA1ZLrM.roa
Signing time: Wed 27 Dec 2023 06:51:58 +0000
ROA not before: Wed 27 Dec 2023 06:51:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397423
IP address blocks: 91.239.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:aa:0b:54:f8:54:24:15:47:ff:a9:0e:3d:51:78:dc:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d5e37178d8524c72660a1d796165999e586622
Validity
Not Before: Dec 27 06:51:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7789be94a7fcc0e0be198d51153797400d592eb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4f:3c:34:cb:38:28:18:5e:3e:a7:0e:a6:a5:
30:59:0c:f5:76:38:a0:d6:d8:57:5a:e9:cc:17:ce:
41:0e:67:a2:78:5c:33:1a:ae:51:b9:af:2a:21:c9:
a5:36:38:93:c3:73:7d:b2:79:5c:ee:e4:92:6b:11:
f8:d3:a9:8d:00:37:7e:68:6a:dc:ec:78:f9:c2:15:
3e:a7:e1:73:d0:f6:a6:c5:1b:f5:a3:56:83:ed:3d:
17:15:bb:d3:1b:51:23:85:8d:5f:63:2a:dd:15:62:
55:59:d6:ce:1e:d6:4f:79:5c:7b:93:9a:6c:57:21:
df:1f:53:85:68:18:b3:1c:2a:a4:41:fb:40:4f:3a:
95:b0:d9:7e:c8:c7:35:66:46:3b:6a:0d:3b:28:37:
86:00:ae:2e:22:0c:52:60:14:06:b7:42:14:90:6b:
a8:8b:24:fa:ba:2a:5a:8d:f8:4f:17:04:f4:21:fd:
5a:cb:d3:b5:4e:6f:76:82:02:a8:69:e5:75:11:7c:
ac:47:89:14:94:7e:d2:8a:02:3a:dc:41:10:04:ae:
d0:40:d7:35:58:4f:5c:08:45:27:5d:5c:7d:0f:fb:
da:70:f5:1c:88:f2:f7:cd:30:d4:84:2a:41:72:34:
17:f0:a4:01:d1:49:99:21:bc:95:12:09:64:94:82:
31:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:89:BE:94:A7:FC:C0:E0:BE:19:8D:51:15:37:97:40:0D:59:2E:B3
X509v3 Authority Key Identifier:
keyid:C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/d4m-lKf8wOC-GY1RFTeXQA1ZLrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/yNXjcXjYUkxyZgodeWFlmZ5YZiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.37.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:7f:6b:b9:92:89:7f:7b:16:2f:47:f9:82:2b:3c:23:5f:24:
f9:c0:92:f9:7a:1b:5f:61:70:09:f5:8a:ad:7e:b4:bc:25:75:
af:4c:ff:81:f6:44:ad:fd:9b:30:bb:05:dc:d7:91:21:b4:ba:
5f:7c:5c:cf:0a:6e:a4:aa:da:30:c6:b0:76:99:a1:0d:1c:ad:
a3:77:e9:aa:83:fc:62:b3:6c:d6:7d:b4:60:4f:43:c1:1b:43:
26:e9:7c:2e:6d:c1:fc:52:10:01:c4:3f:a9:86:5b:c4:42:ce:
99:62:5c:2f:f5:f4:95:93:78:c0:0f:72:76:a7:c5:4b:55:ae:
9b:e6:9f:d9:bb:9e:5c:31:55:fd:c9:43:89:97:5e:16:67:3d:
b7:82:5c:92:3b:31:d6:43:b8:e6:79:c9:c2:96:d9:20:33:71:
0c:82:b6:af:bc:0d:dc:db:f8:80:a5:36:1a:d9:af:e8:27:33:
ee:75:7a:5c:01:d8:62:cb:ac:49:dc:65:80:d6:33:44:aa:d7:
d8:8e:0e:b9:96:b1:84:b6:1e:2c:9f:3b:5b:37:0c:6c:fa:6d:
2e:ad:c1:8f:ea:f9:e9:8d:68:b1:59:86:01:76:cf:08:aa:bb:
f1:12:7a:fa:1f:57:a0:6d:13:71:98:57:61:5e:32:20:00:07:
15:5f:2e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:31 2024 by rpki-client on console-ams.rpki-client.org