Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/EsqVChWJc6TV8LlFxpGKWhfUXSU.roa
File: EsqVChWJc6TV8LlFxpGKWhfUXSU.roa (raw, json)
Hash identifier: hJKHGN1EC6e1sjATIygMx01UEPSBrEQj/uuBQzocz3I=
Subject key identifier: 12:CA:95:0A:15:89:73:A4:D5:F0:B9:45:C6:91:8A:5A:17:D4:5D:25
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 01897A9E5F7F09E8042184CD1A0E80C0B5AD
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/EsqVChWJc6TV8LlFxpGKWhfUXSU.roa
Signing time: Fri 21 Jul 2023 22:42:26 +0000
ROA not before: Fri 21 Jul 2023 22:42:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 91.204.76.0/24 maxlen: 24
91.204.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Aug 2023 21:51:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7a:9e:5f:7f:09:e8:04:21:84:cd:1a:0e:80:c0:b5:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Jul 21 22:42:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12ca950a158973a4d5f0b945c6918a5a17d45d25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8f:7a:bf:00:f4:1d:21:a8:37:9e:b2:a4:0c:
51:0a:e3:17:01:ec:d4:14:76:15:f2:57:fd:c1:6c:
99:9b:3b:25:63:56:e6:e5:e3:f4:1f:92:23:8c:80:
3a:0d:03:b7:8e:97:41:af:59:c8:32:c3:68:c7:bd:
4e:c2:5c:cc:88:24:29:70:78:e0:2d:fb:10:a9:47:
1d:4a:70:a0:55:79:9f:cd:40:a0:29:0e:53:9d:52:
19:a1:ec:92:64:b6:b9:31:0e:f8:a2:b8:e8:cf:36:
cf:42:4e:93:63:48:8f:cf:b0:5e:ef:42:73:b8:2e:
22:97:67:be:cc:0d:4a:85:f3:00:55:c3:02:b5:d1:
54:95:b8:12:9d:3a:2e:e6:c1:cb:63:4a:85:9f:8e:
6f:b6:2e:a1:11:e5:61:b3:b3:b8:d4:b8:2f:ca:dc:
68:91:f3:13:27:64:5d:b3:dd:37:27:89:69:ff:13:
74:80:ae:80:b0:46:f7:e2:e7:9b:77:33:ed:33:23:
60:a5:7c:c1:18:02:d3:46:8f:89:0b:d6:79:5d:30:
c1:33:01:f3:e3:b6:87:2a:e3:86:85:3d:d4:ce:1d:
09:f9:01:fa:fa:93:32:92:94:2a:e4:f0:a6:08:f2:
b8:d8:69:a3:ad:43:b9:18:2f:d4:e1:f1:b0:56:6d:
51:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:CA:95:0A:15:89:73:A4:D5:F0:B9:45:C6:91:8A:5A:17:D4:5D:25
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/EsqVChWJc6TV8LlFxpGKWhfUXSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.76.0/24
91.204.79.0/24
Signature Algorithm: sha256WithRSAEncryption
62:54:2d:86:b9:1d:7e:5f:c0:8b:4d:07:7e:e0:a2:f9:f8:9e:
2e:13:57:8e:80:5b:95:14:99:d1:c8:18:68:27:37:3f:6c:4e:
8c:2a:f5:eb:17:ab:53:06:07:ad:3a:3c:bb:46:0f:c3:bc:57:
cc:01:ee:7c:9b:67:47:44:2b:a0:6d:7a:06:88:6d:1c:df:e7:
8a:a7:32:8a:30:97:d3:83:ec:70:d9:3c:d3:66:38:6a:9c:4e:
3b:f9:87:f3:01:89:d9:2e:f5:49:da:92:3d:c0:19:14:60:c8:
08:a7:14:43:9b:47:24:8d:c5:81:0a:a5:cf:a4:62:e5:d4:da:
a1:0b:38:7a:0e:b5:d5:54:d7:98:9b:3a:a8:67:28:b8:11:c3:
84:f3:51:ad:33:76:7b:af:c6:f3:02:a2:8b:dd:27:89:25:6a:
b5:ca:67:cc:ac:33:cb:88:6c:0b:85:4e:f2:87:00:86:cb:48:
c3:37:f1:cd:80:be:60:6b:7f:07:14:89:19:c6:59:92:6a:2d:
f4:99:cd:62:2e:3d:9c:b1:b6:87:d8:a2:47:04:dc:c8:a3:fb:
9a:25:92:82:f9:20:89:be:3d:cd:b6:70:96:17:d3:c3:24:ce:
ff:f2:3a:c7:e5:28:26:38:47:47:55:5d:cb:d5:37:aa:05:6e:
1e:8c:f6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:38 2024 by rpki-client on console-ams.rpki-client.org