Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/8DUkqA6neBHOJtRN0ZcknvZB3fw.roa
File: 8DUkqA6neBHOJtRN0ZcknvZB3fw.roa (raw, json)
Hash identifier: fls61po/Q/FOFb62wBIKfbF8s80e2kaCtImQ7rToU0I=
Subject key identifier: F0:35:24:A8:0E:A7:78:11:CE:26:D4:4D:D1:97:24:9E:F6:41:DD:FC
Certificate issuer: /CN=18caeb14a01ee16d836565e14fa53b4ab3c3cd26
Certificate serial: 018571A7B0C28A73F8BADD96A8B7F6AEF056
Authority key identifier: 18:CA:EB:14:A0:1E:E1:6D:83:65:65:E1:4F:A5:3B:4A:B3:C3:CD:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GMrrFKAe4W2DZWXhT6U7SrPDzSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/8DUkqA6neBHOJtRN0ZcknvZB3fw.roa
Signing time: Mon 02 Jan 2023 08:44:53 +0000
ROA not before: Mon 02 Jan 2023 08:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43868
IP address blocks: 91.217.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:b0:c2:8a:73:f8:ba:dd:96:a8:b7:f6:ae:f0:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18caeb14a01ee16d836565e14fa53b4ab3c3cd26
Validity
Not Before: Jan 2 08:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f03524a80ea77811ce26d44dd197249ef641ddfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5f:0a:25:99:3f:e9:ea:b6:96:65:fd:e8:72:
25:16:d8:e2:57:d3:12:ea:47:86:fc:d0:af:80:c0:
a7:eb:22:83:b5:d0:95:2f:c1:ca:a7:be:57:d3:51:
6b:fb:a3:9a:13:8b:b0:f8:44:1c:c8:13:e4:1d:d9:
4e:4e:81:9e:31:45:fe:aa:92:4c:10:d8:9f:56:4e:
9c:40:a5:13:97:37:2a:26:2a:d5:f5:ad:8c:6e:49:
b2:8a:e6:db:f0:2e:25:7d:1d:13:bb:4a:cf:2f:d7:
55:c1:67:be:8d:4d:8e:34:58:70:fe:c3:0a:46:3a:
e8:94:cf:ec:4b:c9:ef:2d:dd:4a:52:2e:3c:b3:d6:
33:b5:7f:7a:e9:95:29:18:64:b7:af:9c:4a:8b:d2:
c7:2d:9d:45:b0:cf:d9:29:a3:d1:e6:23:52:ff:f2:
e4:e0:5b:00:ff:0c:2a:34:15:73:cb:00:4a:6a:04:
21:eb:18:bc:53:ba:fa:63:ba:35:80:ac:ff:c9:ac:
8c:48:d5:68:a7:67:18:47:bd:1a:04:30:58:9a:4a:
0a:27:34:51:33:95:ff:85:e1:73:81:e1:59:1f:f7:
ba:c6:91:8d:71:0c:38:e7:ee:8b:2c:3b:f5:28:d4:
1e:59:06:c0:c8:a8:26:de:46:03:9b:70:de:10:08:
3b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:35:24:A8:0E:A7:78:11:CE:26:D4:4D:D1:97:24:9E:F6:41:DD:FC
X509v3 Authority Key Identifier:
keyid:18:CA:EB:14:A0:1E:E1:6D:83:65:65:E1:4F:A5:3B:4A:B3:C3:CD:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GMrrFKAe4W2DZWXhT6U7SrPDzSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/8DUkqA6neBHOJtRN0ZcknvZB3fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/GMrrFKAe4W2DZWXhT6U7SrPDzSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.27.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:9b:bc:4f:d3:3b:ec:9b:14:a2:f6:c2:db:57:53:41:0c:20:
ba:b0:ca:15:31:fe:7c:fb:60:fb:4a:90:21:9a:04:b0:e0:24:
a7:c8:c1:65:c1:a8:06:0f:b4:89:83:63:30:89:3e:39:7b:0e:
12:d4:68:c4:c4:a4:22:65:9b:a4:ed:f2:89:1b:5f:a4:2b:33:
fa:67:ee:f8:ea:8e:e2:8b:69:48:a1:e8:40:e8:ce:31:6b:8c:
5a:c6:1d:ec:37:8c:26:19:0c:a0:86:33:8e:0c:58:47:7b:c5:
1d:6d:cc:15:a6:bf:66:33:96:fc:f3:dc:32:30:4c:0a:a2:99:
e8:88:88:5b:7f:b1:79:03:93:29:87:97:8e:1b:3d:ac:60:9c:
01:01:74:8a:07:a2:ff:f8:f2:0f:7f:2e:9b:1a:37:a7:15:b7:
46:6e:7d:73:b1:4e:59:f2:a2:c0:bc:1d:83:40:6a:d0:92:81:
c8:76:25:c7:18:8c:5e:9f:f7:52:d3:77:13:4e:d8:04:b9:b2:
b8:b6:c0:c1:4d:ea:98:af:8e:e2:2b:e1:46:e3:8d:85:c5:3b:
c0:d3:bd:47:27:dd:92:75:c7:84:f0:ea:7a:f0:28:d4:0c:c5:
8d:de:e1:cf:25:cf:dc:aa:d3:c5:1b:25:89:08:5f:b2:df:52:
f9:b0:2b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:07 2024 by rpki-client on console-ams.rpki-client.org