Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/T0dEgV50M8qNruGQMrUH5-6fWpw.roa
File: T0dEgV50M8qNruGQMrUH5-6fWpw.roa (raw, json)
Hash identifier: 9YDvQRJqnGCgUK/Y4f4S/BgOla5k0LvLvzyPNRXhoTI=
Subject key identifier: 4F:47:44:81:5E:74:33:CA:8D:AE:E1:90:32:B5:07:E7:EE:9F:5A:9C
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 01897A9E600317FA9C885D0CFDFF20A09FFC
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/T0dEgV50M8qNruGQMrUH5-6fWpw.roa
Signing time: Fri 21 Jul 2023 22:42:26 +0000
ROA not before: Fri 21 Jul 2023 22:42:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 195.34.94.0/23 maxlen: 23
91.204.78.0/24 maxlen: 24
91.204.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Aug 2023 21:51:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7a:9e:60:03:17:fa:9c:88:5d:0c:fd:ff:20:a0:9f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Jul 21 22:42:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f4744815e7433ca8daee19032b507e7ee9f5a9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:54:8c:15:f7:c7:c5:28:3f:55:64:a2:aa:51:
90:1f:cf:56:99:03:1c:68:49:96:68:b5:9d:65:e5:
7e:b1:7c:07:68:47:5e:f6:48:50:54:16:fc:ed:7e:
4f:f1:a5:ae:03:15:3e:04:5d:1e:1c:48:91:90:0c:
0b:75:31:ff:e4:d5:84:43:0b:aa:f7:d0:89:e4:30:
c9:c0:07:fb:58:24:5c:89:a6:d4:54:88:c3:f6:31:
ea:64:ea:9f:f7:f8:5c:fe:8d:bf:e0:fb:7d:e9:52:
58:ef:21:5c:07:22:23:cb:ba:ea:d3:fa:bc:49:ae:
5f:b6:89:06:d4:eb:99:02:d4:e8:c0:07:f5:f0:8b:
5b:a7:38:68:20:74:40:24:a2:8d:f1:88:1c:50:a9:
25:5c:f5:99:c4:3a:bc:14:ff:8f:06:5b:14:ba:b3:
30:96:54:47:1b:a8:7a:59:05:b6:d1:a9:1c:92:4e:
30:26:6d:ff:60:48:ac:77:f0:b2:7b:e3:aa:17:5c:
44:ed:5d:a3:e9:66:e3:8a:68:f5:ca:07:95:5a:40:
28:23:6d:4a:f6:04:b6:b8:9c:15:d9:0d:5d:ec:e6:
47:d7:1d:c0:29:f3:2b:b6:ba:d1:cd:59:d3:ce:29:
16:19:7f:ce:6d:2b:5a:90:d2:80:97:4c:d9:1e:07:
fb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:47:44:81:5E:74:33:CA:8D:AE:E1:90:32:B5:07:E7:EE:9F:5A:9C
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/T0dEgV50M8qNruGQMrUH5-6fWpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.77.0-91.204.78.255
195.34.94.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:c5:a2:a1:89:c7:be:2b:e0:f7:ff:de:48:eb:f3:3a:34:9c:
53:cb:c6:90:0a:47:88:a0:06:ed:33:af:96:9f:c8:d1:10:6a:
f7:eb:1d:e6:e3:97:f2:85:54:28:1f:ce:09:a7:21:e3:36:f5:
16:70:e0:93:fc:d5:da:1c:80:09:78:17:4a:ae:3d:43:62:8e:
f9:8e:70:e8:15:49:82:50:e6:c6:24:27:a9:ce:7e:9e:49:0f:
08:d1:3d:be:cc:72:5b:f5:02:51:7b:bd:df:cb:8f:87:02:73:
68:ec:23:e1:b6:81:eb:5a:25:95:6f:1c:03:7a:42:52:38:95:
48:7b:67:65:eb:b8:96:48:75:9f:55:12:53:c9:4a:cd:d0:fc:
21:6e:90:cd:a7:18:e5:e5:4f:1a:b4:1e:74:fa:7e:0b:89:2a:
0a:a4:e7:8f:02:a3:04:59:2a:c1:ae:ef:40:30:04:cf:63:d3:
93:e5:50:67:a3:b1:b8:a8:1d:a8:be:64:1a:1a:0c:19:4c:8e:
ae:1a:f7:9a:f9:41:72:ce:1b:82:a7:ad:7a:2a:51:0d:90:f6:
77:1d:e1:7a:96:4c:8d:d8:50:bf:19:64:db:8d:a4:da:0a:72:
9e:9d:4d:61:76:fd:14:7d:07:5d:ba:bd:ed:e4:d7:87:df:3f:
69:f8:b1:27
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:38 2024 by rpki-client on console-ams.rpki-client.org