Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/8o2SErkBeDVuWbAMPNsvMJPn-tQ.roa
File: 8o2SErkBeDVuWbAMPNsvMJPn-tQ.roa (raw, json)
Hash identifier: BsdZvN6E0SpMbtcQj5QP9fA/RUSBaa8F2rliq7xUXg4=
Subject key identifier: F2:8D:92:12:B9:01:78:35:6E:59:B0:0C:3C:DB:2F:30:93:E7:FA:D4
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 01914D2C13191F99CB2F929082437F20F03D
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/8o2SErkBeDVuWbAMPNsvMJPn-tQ.roa
Signing time: Tue 13 Aug 2024 19:16:59 +0000
ROA not before: Tue 13 Aug 2024 19:16:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 87.254.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 10:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4d:2c:13:19:1f:99:cb:2f:92:90:82:43:7f:20:f0:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Aug 13 19:16:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f28d9212b90178356e59b00c3cdb2f3093e7fad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a1:ba:c1:65:28:ba:30:c6:b1:35:d6:ce:5e:
f8:6c:39:ed:6a:1c:49:71:21:04:4e:53:ef:dd:93:
7f:5e:22:6f:5a:d7:78:67:db:94:ad:bc:e2:a0:17:
31:d0:15:8b:78:db:34:e0:37:2c:06:4f:38:93:f2:
a6:cb:a2:d7:28:f6:f9:67:e3:c2:f2:db:4d:14:e7:
2a:84:64:e8:f0:1e:79:b2:a7:d0:74:04:b6:62:94:
8f:6e:91:c3:20:a7:72:94:f3:9c:9b:0e:03:af:52:
75:89:86:c8:0e:a5:d4:ea:9d:0c:6e:f4:42:a6:d3:
97:49:18:53:e6:ca:f0:48:18:f0:95:02:2d:6a:d0:
24:dc:f5:64:fd:5d:34:42:86:f6:6f:5d:6c:0f:07:
00:6f:3b:24:fc:09:f4:d0:92:05:88:21:83:b1:0a:
93:57:c5:39:6a:bb:44:c4:d4:a2:2c:7b:a9:8c:8a:
2b:de:97:70:b4:d3:03:2b:ac:32:20:65:af:b2:e1:
5d:8e:6c:f7:12:81:b9:a7:51:62:62:30:aa:b2:b5:
c2:0f:80:7c:61:d5:e9:27:a8:ef:b6:39:2d:6d:70:
5c:a0:06:f5:1f:30:22:22:bf:a4:16:d1:9e:37:25:
d3:0b:3e:20:03:8c:19:9d:1c:86:eb:44:5a:11:e1:
26:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8D:92:12:B9:01:78:35:6E:59:B0:0C:3C:DB:2F:30:93:E7:FA:D4
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/8o2SErkBeDVuWbAMPNsvMJPn-tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.23.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:8d:ae:a1:da:95:e1:d4:66:4a:48:d3:91:6b:1a:6b:30:ae:
53:ab:fc:c0:96:c9:06:d4:3c:78:cc:cc:e9:c7:fb:f4:fe:74:
03:c3:6c:65:b3:cf:c1:e3:9f:c3:0e:18:71:83:c8:61:50:52:
a2:95:5f:71:6f:8c:25:4c:71:e3:ec:c6:c5:93:4d:7b:7d:ca:
36:15:fd:8d:b6:90:bd:12:30:ff:5c:f0:2e:13:3f:7d:94:44:
06:de:27:72:60:37:f4:a3:05:27:19:bc:a8:05:9b:34:20:eb:
13:ec:48:80:4d:ad:3d:60:d6:09:17:77:31:bb:90:ad:71:d9:
8c:3f:4b:d4:fb:90:ab:a4:b6:41:82:1f:9b:96:b2:c3:2c:5a:
63:f5:29:69:c7:8a:3e:f3:9c:71:65:1e:bd:8b:e7:b5:e6:0d:
34:cb:91:d1:6b:ee:f3:ee:7e:33:56:32:0c:d0:72:ad:61:c9:
88:b0:1b:88:88:11:8a:cc:a8:45:6f:a4:b8:f0:2f:68:68:fb:
13:3c:91:86:8a:24:7c:46:ae:bd:b3:60:83:2e:6a:42:43:05:
a0:53:d6:42:32:4d:c0:55:fa:be:2b:61:6d:85:ca:c4:9b:b2:
df:f5:ae:b5:ba:92:c0:36:49:ae:86:50:e8:a9:3d:f1:6b:d6:
0e:22:cf:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 16:42:33 2024 by rpki-client on console-fra.rpki-client.org