Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6d7f0d-7e4e-47d6-b9db-ca0c772b729f/1/8-Ai2LLNs-TXZl6KVxPNcLe2sLI.roa
File: 8-Ai2LLNs-TXZl6KVxPNcLe2sLI.roa (raw, json)
Hash identifier: AVFwXV/VrvkoRwbB5rQyQiwbtcpyvt9hmB7GzN4IgvU=
Subject key identifier: F3:E0:22:D8:B2:CD:B3:E4:D7:66:5E:8A:57:13:CD:70:B7:B6:B0:B2
Certificate issuer: /CN=268f501bbf9e13cdd2eb899d97121f669aa29135
Certificate serial: 018C858D693351393B44A4B1EBD33B8DBE65
Authority key identifier: 26:8F:50:1B:BF:9E:13:CD:D2:EB:89:9D:97:12:1F:66:9A:A2:91:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jo9QG7-eE83S64mdlxIfZpqikTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6d7f0d-7e4e-47d6-b9db-ca0c772b729f/1/8-Ai2LLNs-TXZl6KVxPNcLe2sLI.roa
Signing time: Wed 20 Dec 2023 04:48:06 +0000
ROA not before: Wed 20 Dec 2023 04:48:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.234.36.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:85:8d:69:33:51:39:3b:44:a4:b1:eb:d3:3b:8d:be:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=268f501bbf9e13cdd2eb899d97121f669aa29135
Validity
Not Before: Dec 20 04:48:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3e022d8b2cdb3e4d7665e8a5713cd70b7b6b0b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1a:b9:87:18:f3:8b:6b:6a:e1:79:8e:f5:bd:
e9:ce:b3:5c:0a:77:a4:86:da:c3:cf:56:c3:a6:fd:
f9:5d:b8:57:53:58:28:1e:e0:39:55:8c:eb:b4:80:
21:fb:00:4f:da:21:7d:94:66:d3:6c:2a:62:5d:4a:
cc:8e:95:85:23:66:94:a6:f6:05:01:03:1b:b5:1c:
fc:b1:77:3b:42:58:5a:77:87:57:65:5d:1f:74:8c:
75:74:52:0f:ad:b7:0f:4e:c3:92:4d:99:50:23:66:
a9:3b:c6:7d:1d:18:eb:b9:6e:3e:28:8c:d5:41:46:
dc:f7:0f:52:9c:e9:87:d0:0a:8e:45:99:13:4a:58:
87:38:18:84:d2:dc:b0:fc:a8:d8:16:d8:e8:28:98:
2f:0b:40:79:dd:77:67:f4:d7:2a:9c:ac:7f:45:3f:
aa:e3:63:a5:de:d6:70:d1:b2:32:1e:99:8b:a4:df:
50:88:44:34:00:5b:30:77:5a:3f:fc:16:0a:f6:52:
5c:f1:3b:d9:73:28:12:b3:b2:85:48:8c:ed:7e:24:
1a:e9:85:1f:85:d2:2f:e9:ba:8e:75:0a:3c:e5:ef:
7a:41:17:e9:48:de:38:66:e5:b1:bf:d2:7a:45:45:
01:5d:e0:3b:1b:ae:f0:94:9f:7d:95:a8:fb:45:89:
e6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E0:22:D8:B2:CD:B3:E4:D7:66:5E:8A:57:13:CD:70:B7:B6:B0:B2
X509v3 Authority Key Identifier:
keyid:26:8F:50:1B:BF:9E:13:CD:D2:EB:89:9D:97:12:1F:66:9A:A2:91:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jo9QG7-eE83S64mdlxIfZpqikTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6d7f0d-7e4e-47d6-b9db-ca0c772b729f/1/8-Ai2LLNs-TXZl6KVxPNcLe2sLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6d7f0d-7e4e-47d6-b9db-ca0c772b729f/1/Jo9QG7-eE83S64mdlxIfZpqikTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.36.0/24
Signature Algorithm: sha256WithRSAEncryption
10:9d:e4:5e:af:23:6b:4c:5f:dc:22:f6:27:3b:72:86:cb:5b:
25:50:e9:bc:01:81:bd:1b:d9:f2:5e:51:83:fb:30:cf:e8:10:
4a:6f:4a:81:d5:31:33:0c:0f:f4:f9:d6:57:d7:88:21:ae:57:
b8:96:8a:23:59:c2:96:42:ba:d6:47:4a:64:95:17:58:be:80:
a9:55:24:46:7c:14:73:a4:40:69:79:b5:31:e0:30:c2:3f:f0:
c4:74:7d:d5:4d:a4:29:17:14:4e:2a:9a:64:91:46:35:08:30:
b2:65:82:04:d2:3e:b8:96:23:05:d6:26:98:12:b3:7d:1c:a3:
a8:3f:71:b0:17:d8:3f:74:15:82:05:99:e0:d4:d4:19:a8:3a:
71:30:d4:5d:34:a5:fd:bb:ec:12:ae:97:35:98:ca:62:f9:2d:
f8:98:3c:be:48:c8:12:cd:0b:3f:bc:8e:80:44:ec:a4:18:bf:
03:24:6f:07:61:17:d2:ba:50:19:9a:34:42:8f:26:fc:89:45:
e9:1a:cb:ed:40:10:67:95:23:a5:b0:4b:c1:6e:26:f2:57:b5:
fc:44:59:30:a1:e1:c9:ec:42:c2:07:1d:ab:42:c6:39:9e:b6:
9b:26:34:25:86:6a:62:9a:45:a4:d8:ca:b1:ab:86:b4:2b:f9:
d8:db:16:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:59 2024 by rpki-client on console-ams.rpki-client.org