Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/91431a-b50d-4d50-a6d6-f17f095dd3af/1/ler_f4sADDlH99r6YcTmrTZwGjo.roa
File: ler_f4sADDlH99r6YcTmrTZwGjo.roa (raw, json)
Hash identifier: UcCFrqLcrN4uyA/tm4FV+p1dBfMwPqPUWmzv4QNUK34=
Subject key identifier: 95:EA:FF:7F:8B:00:0C:39:47:F7:DA:FA:61:C4:E6:AD:36:70:1A:3A
Certificate issuer: /CN=9426d309d0db02df1d7e04bbb39313bd1df13358
Certificate serial: 01857030566EBF91CD234B9B8AC7F67E8DD9
Authority key identifier: 94:26:D3:09:D0:DB:02:DF:1D:7E:04:BB:B3:93:13:BD:1D:F1:33:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCbTCdDbAt8dfgS7s5MTvR3xM1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/91431a-b50d-4d50-a6d6-f17f095dd3af/1/ler_f4sADDlH99r6YcTmrTZwGjo.roa
Signing time: Mon 02 Jan 2023 01:54:54 +0000
ROA not before: Mon 02 Jan 2023 01:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42934
IP address blocks: 91.209.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:56:6e:bf:91:cd:23:4b:9b:8a:c7:f6:7e:8d:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9426d309d0db02df1d7e04bbb39313bd1df13358
Validity
Not Before: Jan 2 01:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95eaff7f8b000c3947f7dafa61c4e6ad36701a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0f:24:6d:25:8e:da:1c:76:14:50:c8:4c:fa:
78:af:1a:85:9e:2a:b6:4b:d4:5b:67:82:24:ad:e4:
cc:f5:ed:6c:7b:ea:c7:7b:1c:9c:b8:aa:1a:db:de:
87:91:60:db:17:1f:9b:84:68:24:a4:1c:49:86:d0:
55:0f:a5:73:f5:9e:ba:89:98:85:3a:d3:54:af:d6:
36:78:ba:45:a2:ae:ca:cc:2d:19:52:03:9e:7d:f3:
76:f9:04:4b:df:f8:e2:bc:42:14:cb:25:59:77:e4:
89:d4:d5:7e:5e:eb:04:bb:54:06:1c:34:7e:56:46:
10:21:cb:d4:77:cb:af:e7:32:d2:eb:d2:1f:1f:e9:
4d:c7:d9:58:e4:b5:57:81:1f:b7:57:b4:98:51:6a:
c1:da:1f:78:e5:a4:07:96:09:8e:47:14:5f:91:15:
2a:e1:21:a2:60:ac:4a:4f:91:08:04:18:05:78:db:
b7:dd:ba:15:fa:70:15:d5:b1:69:2b:bb:d9:a6:68:
ee:24:d9:00:00:27:b8:80:3a:03:36:8c:1e:15:12:
29:6d:11:9f:c5:bc:d5:f5:06:69:e5:d3:8e:49:67:
60:74:d8:a8:68:4d:4d:c5:dd:c3:24:c9:45:3e:67:
92:c4:f7:b2:f3:d5:a2:2d:18:0c:83:01:e6:61:07:
13:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EA:FF:7F:8B:00:0C:39:47:F7:DA:FA:61:C4:E6:AD:36:70:1A:3A
X509v3 Authority Key Identifier:
keyid:94:26:D3:09:D0:DB:02:DF:1D:7E:04:BB:B3:93:13:BD:1D:F1:33:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCbTCdDbAt8dfgS7s5MTvR3xM1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/91431a-b50d-4d50-a6d6-f17f095dd3af/1/ler_f4sADDlH99r6YcTmrTZwGjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/91431a-b50d-4d50-a6d6-f17f095dd3af/1/lCbTCdDbAt8dfgS7s5MTvR3xM1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.255.0/24
Signature Algorithm: sha256WithRSAEncryption
52:36:be:cb:3d:05:21:2d:b1:99:13:da:33:52:c2:fe:25:5d:
40:bf:ef:c3:4e:a7:13:82:38:5c:32:c8:e2:22:0a:72:69:0d:
44:22:71:b6:89:33:08:eb:e2:29:84:0b:19:21:87:53:b5:a4:
57:46:b4:1e:2b:98:c0:89:5f:84:e9:5c:a9:57:62:d7:95:90:
2e:48:a0:d2:8c:cb:d1:5a:7e:33:40:2f:43:9d:60:a6:79:e8:
04:a9:bd:0a:22:8b:f2:0f:32:ea:97:3a:11:bf:a5:be:ab:4f:
59:52:a9:da:ff:1e:30:13:fc:d0:2e:ac:d0:51:99:f8:c9:2c:
ce:c3:34:48:a8:ad:35:43:db:59:66:aa:85:ad:9c:66:4c:33:
64:8a:66:b0:6f:57:8b:aa:a8:51:25:65:63:61:34:a3:70:20:
38:01:d8:0f:d0:73:6e:25:c3:91:c7:a9:bd:2d:38:82:c8:c6:
91:43:89:45:bb:33:5d:d3:d3:f6:96:cf:0b:9e:03:ad:51:bc:
f5:d6:3e:55:c7:45:e0:a3:5b:e8:45:a4:fd:24:b9:f3:57:80:
1e:c1:b7:83:6c:cd:c8:47:47:bd:15:09:37:76:a7:37:20:13:
b4:e8:f5:f0:65:c6:49:72:c8:34:64:6e:84:97:54:7d:17:43:
1a:bb:3e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:32 2024 by rpki-client on console-ams.rpki-client.org