Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/rohnF5k492fH3rwLyUJjwxmgYwQ.roa
File: rohnF5k492fH3rwLyUJjwxmgYwQ.roa (raw, json)
Hash identifier: bEUw5p/KtZmZXL6orEkNRWuBKFUScmi+rjFDljYCYMU=
Subject key identifier: AE:88:67:17:99:38:F7:67:C7:DE:BC:0B:C9:42:63:C3:19:A0:63:04
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 018B18D33133CBC2BDDDBF2925B81D4B40BD
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/rohnF5k492fH3rwLyUJjwxmgYwQ.roa
Signing time: Tue 10 Oct 2023 09:02:55 +0000
ROA not before: Tue 10 Oct 2023 09:02:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 87.254.9.0/24 maxlen: 24
87.254.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:18:d3:31:33:cb:c2:bd:dd:bf:29:25:b8:1d:4b:40:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Oct 10 09:02:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae8867179938f767c7debc0bc94263c319a06304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b6:94:42:ce:81:30:bd:d5:a7:ee:9c:8d:e2:
94:5d:11:dc:91:95:ca:1a:25:e9:bc:ab:85:44:f1:
f1:96:a1:06:5c:7c:ea:ec:79:35:5e:84:4b:fa:46:
c8:0a:fb:74:a3:24:56:36:87:54:1e:d9:3d:9d:8d:
f8:b6:99:9b:8e:a2:09:4c:15:94:d5:7d:ea:27:7e:
5a:55:7b:a1:3d:5d:94:db:2e:da:32:47:f7:a3:78:
88:d8:ff:6a:81:bc:77:f8:5a:b8:50:b7:32:c3:e0:
80:df:de:fe:b8:66:78:05:98:ac:b4:2c:9a:bf:4c:
66:51:b6:a1:0f:ab:77:10:4e:45:25:9f:5c:87:a0:
fb:e4:e2:24:bf:84:5d:b5:97:d9:48:73:61:bf:41:
75:74:f4:5c:a5:95:0b:ce:02:99:4c:74:60:d8:32:
d4:b1:d9:8b:f9:80:95:20:6a:4d:ca:a8:b3:54:cf:
04:73:b1:a3:32:3b:f6:f8:09:fc:5d:9e:7d:0c:d8:
42:a4:4c:3f:2d:4e:6a:06:a4:73:a1:9e:85:f6:99:
f0:a8:05:bf:b2:17:f6:2e:72:5f:0b:b7:4a:d2:a3:
ca:5c:9b:5a:50:b8:b6:1a:04:9e:e5:9e:ad:7a:7c:
7b:72:b7:b9:ca:8b:89:5a:21:1e:1d:93:43:35:f9:
7a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:88:67:17:99:38:F7:67:C7:DE:BC:0B:C9:42:63:C3:19:A0:63:04
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/rohnF5k492fH3rwLyUJjwxmgYwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.8.0/23
Signature Algorithm: sha256WithRSAEncryption
84:a0:79:59:0f:b3:95:4f:ad:08:27:f7:9f:cc:a9:96:c3:57:
3d:a4:67:c9:11:d9:40:94:f9:19:3a:fe:3b:cb:36:d8:0a:f3:
d5:66:1b:8d:54:d6:ca:9e:09:b1:92:52:d4:fb:de:32:cf:dc:
2c:27:23:11:0b:5a:2e:20:77:9f:3c:27:cf:26:40:6e:57:44:
95:b2:8a:03:54:66:d0:06:3d:dc:d2:8e:3d:e0:d9:bd:62:af:
53:68:86:b6:31:7e:dd:96:41:c0:ff:7a:de:6e:e6:ad:7d:d2:
ac:cb:27:b9:4d:55:e7:d8:97:20:44:6f:f0:df:e7:43:d4:92:
51:70:c6:3d:e2:ea:4b:ea:b3:2b:bf:d9:13:68:7e:70:c0:84:
10:1a:a5:99:2a:1e:a8:8c:6d:a1:5f:b7:d5:ab:14:a9:87:cc:
5e:87:2e:dd:d4:93:f4:a6:9c:59:06:e3:6f:8c:93:95:42:df:
0f:3e:04:a0:9c:b1:29:e6:9f:3c:7e:3a:ca:a7:96:bc:50:a5:
d8:0c:79:18:4a:46:c6:1b:ab:7e:17:98:2c:53:5a:ae:24:38:
c3:2e:61:d0:10:3a:ed:eb:05:bc:a3:ad:00:70:52:a4:8c:5f:
3b:d0:e2:55:04:79:3a:ad:36:de:42:64:f1:bf:c4:5a:2e:53:
13:fe:b6:fb
-----BEGIN CERTIFICATE-----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Generated at Tue Nov 7 16:27:49 2023 by rpki-client on console-fra.rpki-client.org