Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/abCq8E7PaboyyM1xfeBI3CERoVQ.roa
File: abCq8E7PaboyyM1xfeBI3CERoVQ.roa (raw, json)
Hash identifier: zizT9DvcxDYDy09cicX+b7qHuPN+Xm8hbkkiV32tiUM=
Subject key identifier: 69:B0:AA:F0:4E:CF:69:BA:32:C8:CD:71:7D:E0:48:DC:21:11:A1:54
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0191D1436D947E83517735125AD81D5F41D7
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/abCq8E7PaboyyM1xfeBI3CERoVQ.roa
Signing time: Sun 08 Sep 2024 10:52:22 +0000
ROA not before: Sun 08 Sep 2024 10:52:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 87.107.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 12:44:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d1:43:6d:94:7e:83:51:77:35:12:5a:d8:1d:5f:41:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Sep 8 10:52:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69b0aaf04ecf69ba32c8cd717de048dc2111a154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9c:4b:ef:62:67:20:5e:b9:fb:4a:76:0d:40:
75:a8:50:6b:3e:fb:cd:04:0f:f0:63:f4:b2:45:43:
44:a2:48:8d:1d:1a:6f:be:6c:d8:0e:a6:8d:a5:f8:
cd:e7:44:17:ed:fc:3c:1f:96:6a:81:29:c1:4b:66:
ff:75:2a:3e:45:8b:99:69:33:8e:b1:11:e3:04:bc:
94:5d:61:69:b4:77:d5:b1:c8:0d:73:64:b9:a8:2b:
36:1e:3d:cb:4d:9c:71:73:63:b1:5e:db:9a:3e:d0:
34:d3:f8:f1:5a:e5:95:83:92:d6:b3:4d:54:91:e6:
01:eb:3c:34:d6:ac:33:c5:74:40:09:ea:f3:f4:86:
01:7a:a3:93:41:2c:59:9c:e8:9f:1f:3d:ab:c3:5a:
a5:da:71:7f:40:ed:30:23:ef:90:d4:27:af:09:f5:
ae:3a:a4:e7:06:ab:e7:a3:54:70:32:ee:69:cb:6d:
2f:d1:0d:ea:a2:a6:90:89:dd:e6:49:7b:04:ad:31:
8e:42:23:43:29:23:a6:ca:d1:7e:ff:f7:ab:ee:9c:
6d:cf:1f:08:a5:f8:6d:27:9a:b6:28:e9:81:65:41:
59:c4:10:15:87:12:8e:48:aa:e8:a2:36:a0:b5:77:
62:d8:59:93:0e:43:10:6b:4e:ab:5d:49:69:f1:b0:
1e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B0:AA:F0:4E:CF:69:BA:32:C8:CD:71:7D:E0:48:DC:21:11:A1:54
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/abCq8E7PaboyyM1xfeBI3CERoVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.159.0/24
Signature Algorithm: sha256WithRSAEncryption
63:f7:73:ed:f7:86:5d:7a:f2:19:60:82:3b:ed:f1:83:a3:7e:
da:eb:bc:40:db:4c:f8:68:01:1b:e6:a6:34:5f:72:52:ee:0a:
44:04:e7:73:8f:d3:e1:00:e6:5f:17:21:54:19:ea:11:e9:48:
45:67:e4:e1:9c:ac:10:1e:50:4e:d4:8f:af:1a:37:dc:2a:db:
7b:ce:d9:a1:3f:38:bc:cb:32:f1:4f:34:a6:ab:d7:bb:58:45:
fe:ed:98:f2:90:cc:52:ab:ba:c5:d3:b2:80:d6:cd:2a:cc:cf:
09:b0:cb:b8:bc:61:f0:03:bd:90:e5:93:76:e5:74:d9:68:16:
bd:d1:16:24:03:8e:f6:c9:c3:6e:16:d0:0f:b0:46:a3:eb:64:
ff:f1:20:4e:d9:11:25:46:e6:04:a2:4e:11:63:18:e8:f7:d6:
f1:6d:6f:3f:10:00:7e:13:c6:6c:98:24:1d:7a:36:eb:0c:47:
8a:77:48:fc:30:c9:bd:0d:97:df:7b:95:5b:d3:5c:d9:9e:69:
d4:ca:11:25:50:5c:15:fc:03:5c:a8:c3:8a:8f:4b:b2:3d:89:
bf:80:ed:fe:e5:a6:da:f9:5c:3b:2f:a1:76:57:cc:b0:02:68:
df:6e:93:15:e6:75:15:85:c6:a3:14:86:ae:0e:df:50:cb:19:
17:62:cf:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 15:05:14 2024 by rpki-client on console-ams.rpki-client.org