Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/kttnD4t1k2bsRY69iXNwKo0FLc8.roa
File: kttnD4t1k2bsRY69iXNwKo0FLc8.roa (raw, json)
Hash identifier: bWv3z2Sa3EwmIR2Pk21T3gW+RxA8CTKVhe5obBPDD9M=
Subject key identifier: 92:DB:67:0F:8B:75:93:66:EC:45:8E:BD:89:73:70:2A:8D:05:2D:CF
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 018E1D91D94EE796CF1BE63E3688F295A29F
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/kttnD4t1k2bsRY69iXNwKo0FLc8.roa
Signing time: Fri 08 Mar 2024 10:18:01 +0000
ROA not before: Fri 08 Mar 2024 10:18:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215758
IP address blocks: 91.204.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 13:56:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:1d:91:d9:4e:e7:96:cf:1b:e6:3e:36:88:f2:95:a2:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Mar 8 10:18:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92db670f8b759366ec458ebd8973702a8d052dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:85:e0:b9:46:4a:5c:b4:18:46:45:61:34:72:
40:dc:53:fa:ea:ba:1c:df:43:3f:53:cf:6a:28:0a:
ca:9c:77:dd:63:ff:69:65:61:d4:23:e0:be:ec:31:
a2:cc:bd:a5:32:7a:75:a1:2c:ce:f9:84:55:f3:29:
ac:ae:09:7a:d0:e4:ce:3b:90:3a:53:cd:19:ed:5e:
26:47:e0:be:11:82:96:5b:8f:f6:91:23:ac:ff:f7:
f1:70:5a:a0:44:92:a9:47:82:5f:af:52:e3:28:02:
33:22:e7:14:85:e8:d3:d9:09:73:cc:0b:4d:95:42:
90:fb:35:5a:d2:5b:06:01:a8:20:2a:e4:ab:e1:bb:
ff:59:42:86:19:99:82:f2:85:0c:8e:96:a1:16:75:
cb:ef:ad:db:b0:03:75:09:0d:e6:a1:88:b1:91:b0:
22:a2:d7:28:2f:37:50:88:b4:b4:90:c9:11:c6:8c:
f6:a8:05:5e:da:2e:6c:ba:35:99:7a:37:54:cb:a0:
6b:47:37:c3:84:3d:83:f7:f2:5e:ec:28:5b:b8:4d:
1b:a2:18:c4:44:72:de:40:be:18:44:55:20:26:86:
9f:fe:8d:0f:2b:9b:ba:dd:a6:83:6a:ab:dd:f9:85:
88:7a:4f:7e:50:f8:3a:26:6f:a1:5c:d4:b7:e0:c4:
ea:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DB:67:0F:8B:75:93:66:EC:45:8E:BD:89:73:70:2A:8D:05:2D:CF
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/kttnD4t1k2bsRY69iXNwKo0FLc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.78.0/24
Signature Algorithm: sha256WithRSAEncryption
27:e3:17:8b:6a:87:13:87:77:3f:91:a8:44:a5:d8:bd:c5:64:
1d:48:ff:3b:65:7f:93:c3:5f:3e:5a:86:d9:dd:aa:a4:46:26:
72:18:dd:ff:78:a6:a1:2d:08:93:2d:c6:e1:6e:b7:bb:f2:43:
f5:2f:c9:d7:64:f0:3d:0a:f5:4d:34:73:6c:9e:6b:aa:80:3b:
0d:7b:c8:13:2a:fb:c6:63:2c:c8:a9:5e:a3:1a:5f:d6:88:20:
d1:46:30:0f:93:22:7c:85:e9:98:6c:17:44:cd:f9:35:9b:5c:
cb:27:68:83:55:ba:0a:ea:bb:ad:64:ef:87:c8:fc:45:91:7e:
93:39:28:aa:d5:aa:f0:8e:d1:03:59:28:53:70:c1:62:dd:e4:
e8:e6:ea:41:8c:ad:d2:38:c2:cd:23:9f:20:28:ee:3c:47:3d:
03:ec:97:c4:c1:08:2d:3a:aa:b9:ce:d1:b5:07:e7:22:58:04:
95:75:b0:06:a7:9e:db:c0:36:7d:e9:a2:8e:72:02:52:7d:2f:
65:2a:3c:08:13:0d:9c:e3:c9:d6:09:e6:85:0e:e4:d1:d4:ed:
bd:1c:4d:64:58:bc:97:0e:fc:a4:af:a1:2d:a3:d5:24:1b:6e:
1e:92:90:4a:07:7f:bb:1f:60:ba:90:93:7b:62:df:02:48:7d:
e1:66:70:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:22 2024 by rpki-client on console-fra.rpki-client.org