Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/JpB63RdQcEWlPq5UVlTtOh7v_d4.roa
File: JpB63RdQcEWlPq5UVlTtOh7v_d4.roa (raw, json)
Hash identifier: Q4mSoxG6QmD4OZEgJx0uNS/ODSPhJY9vL6VqjEBmszw=
Subject key identifier: 26:90:7A:DD:17:50:70:45:A5:3E:AE:54:56:54:ED:3A:1E:EF:FD:DE
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 01915AABA03038E266473AB112AC871185D5
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/JpB63RdQcEWlPq5UVlTtOh7v_d4.roa
Signing time: Fri 16 Aug 2024 10:11:22 +0000
ROA not before: Fri 16 Aug 2024 10:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 91.204.78.0/24 maxlen: 24
195.34.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Oct 2024 11:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5a:ab:a0:30:38:e2:66:47:3a:b1:12:ac:87:11:85:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Aug 16 10:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26907add17507045a53eae545654ed3a1eeffdde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:45:f1:fb:d6:e9:41:4e:d9:a1:22:3f:20:5e:
5d:02:ee:62:82:76:64:c3:18:9b:a1:28:ee:d1:c4:
9a:d5:7c:c1:a8:ca:68:1c:3c:75:24:22:30:b9:c5:
84:fe:70:fe:4d:05:20:a7:3d:4b:7e:84:ee:2e:53:
e7:ed:a1:7a:30:5f:60:4c:fc:ba:fb:c4:d9:2e:9b:
70:33:88:3f:e4:30:cb:4b:6b:7d:6c:29:a6:27:7f:
d6:f3:4f:c9:13:0a:6a:3c:e0:fd:12:ad:53:76:cc:
55:09:59:f6:4d:8a:a9:04:bd:00:7a:9f:1e:fc:39:
54:f2:31:ba:8d:9c:ee:80:90:fa:2c:eb:dd:b2:c2:
73:d3:e3:40:8c:77:ac:b4:d4:41:5e:d8:e0:b0:43:
00:b0:43:d6:15:88:3f:c1:2a:07:14:d6:ad:f2:40:
47:6b:dc:ae:22:11:5d:f9:76:58:c7:c7:8d:ad:b8:
01:10:6a:32:01:34:0a:95:15:5f:d1:9a:7b:21:bf:
ca:55:53:a6:e4:04:ea:f0:44:38:e4:d5:b7:c3:69:
ae:16:2d:5c:d3:85:fb:73:98:25:74:e3:3e:20:cc:
63:4f:34:ae:45:4e:9a:1c:cd:3e:6b:e7:c1:cf:e0:
23:0e:11:77:9a:5b:6b:05:75:fb:a1:dd:6f:ff:7c:
40:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:90:7A:DD:17:50:70:45:A5:3E:AE:54:56:54:ED:3A:1E:EF:FD:DE
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/JpB63RdQcEWlPq5UVlTtOh7v_d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.78.0/24
195.34.95.0/24
Signature Algorithm: sha256WithRSAEncryption
76:4a:4d:72:a0:8b:92:23:74:0a:ea:62:53:8c:da:00:4a:dd:
0d:df:4a:ba:2c:62:79:4a:32:2e:bb:45:bd:dc:bd:cb:b0:cd:
e4:91:40:14:80:fc:ea:05:f1:89:f6:13:90:3d:00:4e:09:71:
a7:cc:3f:ce:2a:b5:85:82:bb:27:b3:98:07:51:26:f6:90:0b:
a2:2d:f4:1b:67:85:85:42:79:b3:b0:81:d0:e0:38:77:0a:9b:
ea:ce:50:91:a0:18:5c:80:03:cf:5e:b4:93:d1:36:8f:28:41:
ec:5c:ac:7b:16:56:45:24:24:2a:62:1b:d6:8c:1c:2c:a8:6e:
7d:77:d1:d2:6e:17:0b:85:9f:ba:c2:e6:5b:86:c5:2f:73:78:
9d:27:93:90:18:9c:39:25:fe:21:ec:d8:9a:60:d4:43:4b:68:
96:12:26:78:a3:df:c8:ab:8f:76:d3:bf:ab:9a:d3:2a:c9:12:
8c:39:b4:c7:89:7c:3a:ef:fb:59:29:aa:e6:d9:50:94:a6:de:
03:8f:36:3a:a7:11:87:d4:8c:91:6b:ee:14:49:0b:52:98:f0:
4b:6f:94:ab:a4:e4:2e:cc:88:e5:47:3f:52:1b:a0:b8:1b:bf:
2d:44:d0:e5:31:7b:0f:74:f2:f3:05:96:87:fa:08:2e:72:3c:
96:a5:b0:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 18:58:31 2024 by rpki-client on console-ams.rpki-client.org