Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/JwMcDkFiyFFbYBLRGMqaDGy6OK4.roa
File: JwMcDkFiyFFbYBLRGMqaDGy6OK4.roa (raw, json)
Hash identifier: cGLr6B8OoiqCVce7FLo7YYJi+jRLIydJL7GDa94rtgQ=
Subject key identifier: 27:03:1C:0E:41:62:C8:51:5B:60:12:D1:18:CA:9A:0C:6C:BA:38:AE
Certificate issuer: /CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Certificate serial: 018DE686C52B744A69490DA54CEC1C66A9E5
Authority key identifier: 67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/JwMcDkFiyFFbYBLRGMqaDGy6OK4.roa
Signing time: Mon 26 Feb 2024 17:46:48 +0000
ROA not before: Mon 26 Feb 2024 17:46:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 91.240.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 15:48:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e6:86:c5:2b:74:4a:69:49:0d:a5:4c:ec:1c:66:a9:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Validity
Not Before: Feb 26 17:46:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27031c0e4162c8515b6012d118ca9a0c6cba38ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:61:d7:9f:29:12:21:58:7c:8c:6e:84:5f:f7:
e3:91:ad:b8:fa:28:ee:fb:e9:ef:ce:05:50:0d:da:
79:4a:12:cc:56:16:33:c2:27:ee:b4:c9:5c:cd:09:
83:da:b1:ff:a1:99:a1:8b:6d:a2:28:40:59:e9:45:
cd:4e:28:12:c4:44:5f:57:9c:cf:f7:af:c9:21:e8:
12:a3:72:c4:7c:c6:c7:6f:f0:bb:9d:48:0f:d4:27:
c4:42:6a:a3:3a:ab:99:a0:2d:c3:94:f9:78:86:71:
91:79:b1:30:72:3b:9e:fe:d5:26:2b:89:25:fb:dc:
bd:df:ab:26:b5:e8:c1:4b:c8:ef:b5:77:4d:6e:bd:
ab:2b:25:a3:38:eb:7a:16:3c:2d:ec:53:df:18:ba:
e0:47:0b:41:a5:83:10:08:ed:2c:dc:cc:ba:8d:96:
11:11:75:45:a1:3b:02:aa:c0:4a:a3:e0:bf:1e:66:
d7:9c:aa:34:d9:af:e4:c2:68:ce:83:8c:3f:f7:d0:
8d:72:89:e5:24:1a:63:f1:ce:7a:34:d6:a8:4e:64:
85:95:89:7b:10:4b:a1:7d:ca:dd:d3:b5:59:0c:98:
45:49:52:15:4f:8f:c0:68:78:27:8d:56:12:c9:57:
5d:d2:f5:9b:e3:b3:c6:71:d7:1c:68:6c:d1:63:81:
54:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:03:1C:0E:41:62:C8:51:5B:60:12:D1:18:CA:9A:0C:6C:BA:38:AE
X509v3 Authority Key Identifier:
keyid:67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/JwMcDkFiyFFbYBLRGMqaDGy6OK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.243.0/24
Signature Algorithm: sha256WithRSAEncryption
64:9a:8d:e2:3f:60:e2:01:da:c9:5e:87:6c:5f:80:92:c7:f5:
a6:d1:61:b2:57:31:9d:e8:3a:a4:a1:34:9e:55:0e:12:7b:38:
d7:00:88:a5:54:d1:1b:93:50:9c:e9:25:6b:fe:a7:1c:22:a9:
6c:c3:91:b2:9f:94:ad:41:a3:7e:fe:75:9e:7a:d2:60:d0:76:
50:db:d4:bb:7a:46:4e:ad:e2:7a:2c:e2:51:1c:06:56:8e:9d:
7f:2e:ec:a1:6b:b7:d0:e0:6d:34:a0:ca:5e:f5:14:c5:71:da:
84:89:79:57:28:e3:fe:0c:a8:d4:9d:ee:54:6c:51:14:35:f3:
21:fd:67:70:1b:10:84:75:ba:3a:d6:b4:36:13:fe:41:3b:85:
bc:a4:71:11:5a:2f:50:9e:80:f3:48:a5:ef:be:34:c1:15:d0:
a0:ae:72:11:e4:e2:a5:5f:43:c7:bd:3e:09:5a:3b:d9:ee:81:
0a:eb:d2:be:fa:67:66:e1:b6:96:bc:80:e1:74:3c:82:34:c6:
e3:b6:41:bf:bf:4f:92:9c:bb:7f:45:ea:5c:8a:ea:8a:3d:7c:
4b:f7:c3:7a:9d:7e:e3:ee:60:c5:6f:22:66:d1:65:f5:5f:33:
8d:a6:15:70:56:e2:38:5e:01:81:d7:96:67:85:bf:1a:d5:10:
f8:98:10:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:52 2024 by rpki-client on console-ams.rpki-client.org