Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/JdHXOvphvtm9bRNCox-VBKmcXmg.roa
File: JdHXOvphvtm9bRNCox-VBKmcXmg.roa (raw, json)
Hash identifier: zH/urs1f36xN5kcEtDEPDrjqGl0h64JZte0DMpizBwc=
Subject key identifier: 25:D1:D7:3A:FA:61:BE:D9:BD:6D:13:42:A3:1F:95:04:A9:9C:5E:68
Certificate issuer: /CN=18caeb14a01ee16d836565e14fa53b4ab3c3cd26
Certificate serial: 018857F5C4E961691C3A879CEA8A0D5CA071
Authority key identifier: 18:CA:EB:14:A0:1E:E1:6D:83:65:65:E1:4F:A5:3B:4A:B3:C3:CD:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GMrrFKAe4W2DZWXhT6U7SrPDzSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/JdHXOvphvtm9bRNCox-VBKmcXmg.roa
Signing time: Fri 26 May 2023 12:08:24 +0000
ROA not before: Fri 26 May 2023 12:08:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206915
IP address blocks: 91.217.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:f5:c4:e9:61:69:1c:3a:87:9c:ea:8a:0d:5c:a0:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18caeb14a01ee16d836565e14fa53b4ab3c3cd26
Validity
Not Before: May 26 12:08:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25d1d73afa61bed9bd6d1342a31f9504a99c5e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cb:6c:2d:54:90:ed:e5:b9:05:6e:4c:46:e2:
f7:c0:ca:94:5c:56:b8:c4:83:2e:00:a0:9a:c0:c0:
b6:8d:f7:1c:7e:30:27:4a:21:50:34:6b:60:db:fb:
51:4e:e8:db:36:85:a5:ea:bd:6a:5c:40:b6:ce:3e:
9e:ea:f0:6c:10:d8:a6:8b:d3:99:4d:14:bb:b2:42:
50:6e:0d:7a:11:17:3a:30:9f:ba:1c:88:c6:df:44:
5f:46:ec:3f:b5:ee:da:e5:57:de:e6:da:63:dc:38:
83:27:a2:4b:13:bf:82:65:d6:0c:a1:28:08:5f:35:
ba:c3:df:aa:78:e0:44:a9:f4:a0:40:39:5b:ef:38:
7c:c9:d8:21:ef:76:39:9a:81:60:71:6a:d1:e7:87:
01:d7:ef:8f:fa:ee:c0:1d:e2:31:34:d2:d7:20:38:
5c:ff:d7:3c:d5:c8:ac:57:84:b3:71:d8:fe:9c:7f:
20:a6:c0:4a:69:e3:33:63:86:56:3c:00:a0:78:3b:
6e:c4:1a:ba:b2:48:9b:00:3c:7f:85:04:c9:9a:86:
ec:2b:b4:ea:c8:35:b5:db:26:6e:18:10:8d:40:e5:
79:c6:f8:05:62:f3:30:8f:3a:e6:05:7f:ea:aa:c7:
d3:3f:26:2e:b2:31:7c:26:88:28:38:ed:39:b9:63:
68:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D1:D7:3A:FA:61:BE:D9:BD:6D:13:42:A3:1F:95:04:A9:9C:5E:68
X509v3 Authority Key Identifier:
keyid:18:CA:EB:14:A0:1E:E1:6D:83:65:65:E1:4F:A5:3B:4A:B3:C3:CD:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GMrrFKAe4W2DZWXhT6U7SrPDzSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/JdHXOvphvtm9bRNCox-VBKmcXmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/e7b1d7-3d7a-46ab-810f-eddf23c1ba6d/1/GMrrFKAe4W2DZWXhT6U7SrPDzSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.26.0/24
Signature Algorithm: sha256WithRSAEncryption
00:40:7e:b7:d0:df:ff:71:91:6e:5c:32:7a:75:f6:8c:22:b0:
eb:93:a9:98:1f:c4:73:3d:64:c1:48:1d:a2:07:d9:fd:d8:00:
0f:eb:55:7b:35:87:2f:95:ce:42:bd:2f:14:3a:3a:ae:58:fc:
e7:dd:6d:d3:99:58:b1:94:56:8f:74:62:80:97:32:46:72:6b:
51:9e:77:5d:44:20:5b:96:53:b2:55:d6:41:ee:d3:7d:21:2a:
20:6e:fd:45:90:56:9b:9c:4e:ce:c1:84:1c:79:72:03:f7:8f:
95:ef:7d:6c:c3:2b:c7:fd:af:12:9a:37:62:06:98:1a:6d:c6:
61:66:a2:db:af:79:19:e5:7b:11:db:05:97:a2:34:3d:8d:9a:
eb:be:a8:50:b7:4b:b6:2c:e9:a3:00:29:95:e8:18:67:73:07:
e8:a9:cf:a5:e7:68:9f:01:63:8d:6b:67:a3:7f:73:17:cc:7e:
8d:1d:63:3c:b3:56:5b:ac:af:87:8d:8b:d8:2f:df:e6:6e:cd:
e8:ea:6f:2c:58:56:bc:93:ea:81:f5:be:29:c0:73:7d:a5:e2:
1e:55:9e:1a:6d:82:92:b5:0a:83:34:64:ab:10:8f:2c:7d:ba:
fa:28:50:a6:aa:34:25:30:a4:c5:32:1a:62:ab:4b:0b:70:35:
58:8b:5d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:08 2024 by rpki-client on console-ams.rpki-client.org