Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/Fdim1t1FM2iq90zsQMhSTnEbudY.roa
File: Fdim1t1FM2iq90zsQMhSTnEbudY.roa (raw, json)
Hash identifier: mydFgvhIjVRFiZ3c5Ml3rYS7MNl48bRFnjUnrAt1v0Y=
Subject key identifier: 15:D8:A6:D6:DD:45:33:68:AA:F7:4C:EC:40:C8:52:4E:71:1B:B9:D6
Certificate issuer: /CN=18caeb14a01ee16d836565e14fa53b4ab3c3cd26
Certificate serial: 018571A7B03C64154F97ABCBA2463A79FA28
Authority key identifier: 18:CA:EB:14:A0:1E:E1:6D:83:65:65:E1:4F:A5:3B:4A:B3:C3:CD:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GMrrFKAe4W2DZWXhT6U7SrPDzSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/Fdim1t1FM2iq90zsQMhSTnEbudY.roa
Signing time: Mon 02 Jan 2023 08:44:53 +0000
ROA not before: Mon 02 Jan 2023 08:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29423
IP address blocks: 91.217.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:b0:3c:64:15:4f:97:ab:cb:a2:46:3a:79:fa:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18caeb14a01ee16d836565e14fa53b4ab3c3cd26
Validity
Not Before: Jan 2 08:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15d8a6d6dd453368aaf74cec40c8524e711bb9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:5d:06:21:c4:b4:d5:02:a6:b9:03:b1:fe:9e:
15:22:90:82:e5:96:b5:41:0c:14:06:5b:38:3e:90:
5e:27:14:4a:02:db:3c:ac:a7:d7:61:82:4d:52:54:
1d:5d:eb:ec:29:c8:79:ac:07:1c:50:71:f2:1f:ec:
42:40:a9:47:d3:40:c9:08:00:18:6c:a2:1e:2f:46:
38:53:75:35:5a:81:0a:cf:c7:6f:8b:df:72:28:d1:
65:88:90:d5:af:ce:5f:57:74:5f:84:f5:44:9b:f8:
42:ce:1f:9b:3b:c3:c9:33:66:24:50:10:f5:7e:b9:
c6:de:c1:f2:22:84:c8:d0:77:41:42:26:5b:70:a0:
e4:4f:6f:1a:86:6f:29:d2:82:9d:1c:78:f7:a9:80:
b7:35:36:9e:18:6e:e8:4d:d9:3e:cd:31:de:00:a3:
5e:94:bd:01:64:8d:7b:02:37:d5:95:f5:c1:06:38:
9f:06:b2:4a:cc:dd:89:34:50:bf:4d:00:44:b7:84:
89:11:16:b6:01:36:4b:eb:90:a8:7a:b2:4d:28:a3:
7b:71:07:74:ca:bd:b1:90:b0:b7:06:3e:84:cd:2c:
7c:e2:a1:be:90:cd:de:57:a6:84:da:be:09:1e:39:
fd:8f:dc:66:5e:f5:77:4b:02:cf:c2:e2:1c:14:53:
c7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D8:A6:D6:DD:45:33:68:AA:F7:4C:EC:40:C8:52:4E:71:1B:B9:D6
X509v3 Authority Key Identifier:
keyid:18:CA:EB:14:A0:1E:E1:6D:83:65:65:E1:4F:A5:3B:4A:B3:C3:CD:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GMrrFKAe4W2DZWXhT6U7SrPDzSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/Fdim1t1FM2iq90zsQMhSTnEbudY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/GMrrFKAe4W2DZWXhT6U7SrPDzSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.27.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:f1:29:13:87:6f:e2:e5:c4:8e:62:66:0c:c9:87:7d:3a:58:
6a:8f:98:a4:1f:48:6e:c8:88:ed:67:c2:ad:ac:26:b7:cc:b6:
b9:f8:93:bd:34:ce:00:1c:68:12:fc:04:f5:23:32:7a:46:89:
bb:7b:58:51:61:aa:1a:a8:ef:7d:d0:2d:d2:70:79:75:ee:0d:
8e:9f:d4:1f:2b:b1:56:c9:bd:e0:87:43:5f:1f:85:be:c4:f7:
c3:0d:b4:60:44:d6:c7:25:ea:6d:f0:11:16:a7:30:dc:db:6c:
66:74:89:be:63:5c:ad:b7:75:de:b1:78:95:5f:cf:82:2f:25:
b9:6d:9a:fd:85:b5:b3:df:b5:89:c7:77:b7:55:6a:0c:63:3e:
05:3f:60:a4:d7:97:f8:92:e4:d7:17:ef:30:69:3d:41:53:d4:
2d:e7:c9:e3:c4:b3:5b:00:25:86:ac:50:f3:1c:57:e4:68:ea:
45:40:42:64:2e:b5:c3:bb:ec:98:55:b3:be:32:ba:8d:85:16:
d9:8b:9e:07:f1:e3:8d:da:a2:16:d1:0e:7f:33:6a:cd:71:6d:
98:67:77:86:9a:4c:73:77:3d:63:33:75:cf:cf:c9:0f:93:83:
69:e9:86:6a:2f:0f:06:4c:8f:5b:c1:1b:28:a5:78:eb:c3:5b:
28:65:c5:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:42 2024 by rpki-client on console-fra.rpki-client.org