Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/J8cuiXT2g23wndNvyFrcpWzDdHA.roa
File: J8cuiXT2g23wndNvyFrcpWzDdHA.roa (raw, json)
Hash identifier: e4hAOCwWTrgP6ZknxGcjGruv+CU8DSN/CkQFqjnHcNk=
Subject key identifier: 27:C7:2E:89:74:F6:83:6D:F0:9D:D3:6F:C8:5A:DC:A5:6C:C3:74:70
Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Certificate serial: 018CC348E3D7DB7D780EC8AC5D878F9C0886
Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/J8cuiXT2g23wndNvyFrcpWzDdHA.roa
Signing time: Mon 01 Jan 2024 04:29:43 +0000
ROA not before: Mon 01 Jan 2024 04:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200088
IP address blocks: 92.51.36.0/24 maxlen: 24
92.51.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 13:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:e3:d7:db:7d:78:0e:c8:ac:5d:87:8f:9c:08:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Validity
Not Before: Jan 1 04:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27c72e8974f6836df09dd36fc85adca56cc37470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5d:99:c6:a9:dd:8c:fa:3f:9c:dc:a7:ef:ab:
a1:aa:3b:28:07:59:e5:82:18:d2:61:7b:d9:1c:aa:
52:5a:40:1f:f7:1b:15:9a:5f:ca:a1:15:1f:09:64:
71:fa:de:09:5d:92:eb:ed:87:d1:00:91:41:7a:d0:
89:28:dd:41:f7:47:45:83:3f:cd:a9:18:ff:f3:0a:
d1:8c:c2:1b:f4:d2:de:47:e5:d1:de:91:b3:37:42:
7d:da:0f:7a:68:4c:dd:cd:f8:6d:de:a3:4a:15:8c:
c6:02:be:9a:75:7e:c0:67:06:d6:7f:a6:2a:08:a4:
4b:1f:ff:05:7d:a4:43:5a:dd:26:71:47:02:43:55:
a2:fb:25:ef:d1:0f:27:c2:d4:62:df:b1:05:e9:ed:
4a:6f:de:25:d4:0b:4f:89:3e:20:b8:92:b6:b2:02:
0e:56:9a:f3:d1:17:78:38:ca:e7:05:aa:82:45:eb:
a7:cc:f5:1b:cb:49:7e:3a:3b:f0:94:7d:8a:3f:f0:
82:02:b7:95:cf:64:ee:fe:c0:be:d3:70:79:e0:04:
32:c3:03:fa:42:d9:6d:ab:a4:98:b3:8b:55:3c:23:
8a:9b:01:8a:82:99:88:58:da:66:db:db:58:f7:64:
29:2e:96:bc:3a:35:16:a1:78:84:40:92:22:a7:34:
cd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C7:2E:89:74:F6:83:6D:F0:9D:D3:6F:C8:5A:DC:A5:6C:C3:74:70
X509v3 Authority Key Identifier:
keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/J8cuiXT2g23wndNvyFrcpWzDdHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.51.36.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:01:cf:7b:6a:fe:6f:ef:36:01:20:a5:31:55:b8:03:fc:33:
f0:3c:cf:b6:f5:42:c5:06:3f:28:e5:dc:b6:f6:25:d7:73:0e:
cc:49:d4:00:c5:b6:83:20:b8:2c:e0:60:42:83:21:6c:ad:b1:
e4:65:d9:9f:ce:54:8a:84:36:50:85:3b:8b:4b:aa:d2:fb:e1:
37:31:19:70:ae:46:ea:b4:fd:82:33:08:ee:e2:96:fd:b0:24:
16:38:55:e1:ef:4c:b0:bb:f8:cf:d3:a0:cd:f7:4c:2c:c6:22:
65:d3:5d:5e:86:dd:10:f2:fa:f2:a2:65:8e:61:80:85:fc:7f:
fd:16:e0:07:86:d1:d6:43:f3:42:77:ea:2c:31:1c:49:b4:50:
ae:a4:5e:ea:5a:a6:eb:14:5f:93:ab:f6:eb:f9:a5:7d:4a:ea:
27:b5:6d:3c:48:d9:f2:14:3a:18:bb:f8:79:30:de:94:3f:a3:
d9:74:89:02:ae:f3:fb:3a:5f:1a:66:ce:1e:0f:7f:58:93:bd:
d2:61:c2:8f:d1:8f:c0:cb:97:e5:6f:b3:47:1c:52:e8:bd:b7:
11:9f:77:60:8b:98:62:02:1e:01:c2:cc:6e:ad:4c:c6:74:2d:
a9:e0:5e:34:45:03:cb:a2:cc:01:d5:2d:57:40:d4:1a:5a:28:
fc:72:37:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 16:53:40 2024 by rpki-client on console-fra.rpki-client.org