Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/jhG292jSmPdk0nXj_w9fIVBoRQw.roa
File: jhG292jSmPdk0nXj_w9fIVBoRQw.roa (raw, json)
Hash identifier: gIigjezvQz1876xht5E0tDqL1+VFJNtAmTy0h4cof6Q=
Subject key identifier: 8E:11:B6:F7:68:D2:98:F7:64:D2:75:E3:FF:0F:5F:21:50:68:45:0C
Certificate issuer: /CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Certificate serial: 01881F734A2A0C9A9608EB4C9BD4E5D901A4
Authority key identifier: 67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/jhG292jSmPdk0nXj_w9fIVBoRQw.roa
Signing time: Mon 15 May 2023 12:47:09 +0000
ROA not before: Mon 15 May 2023 12:47:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 91.240.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 00:05:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:73:4a:2a:0c:9a:96:08:eb:4c:9b:d4:e5:d9:01:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Validity
Not Before: May 15 12:47:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e11b6f768d298f764d275e3ff0f5f215068450c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8c:32:14:06:90:cf:fa:71:08:63:30:a1:e5:
74:3f:76:a6:c7:f1:47:a4:b6:48:c2:c4:12:7f:42:
02:7c:36:d6:c2:be:30:3d:74:82:5d:66:48:31:fe:
f2:aa:95:bd:c8:f9:ea:4e:1b:dd:4c:a4:ff:bc:9b:
01:87:b0:ad:f2:24:16:f8:72:70:36:54:0a:b4:19:
28:d7:41:34:ea:65:8e:bf:0b:79:26:4b:41:c5:c5:
40:27:65:91:74:e4:37:f6:c7:42:44:cd:53:8a:ba:
aa:a2:45:4b:8c:20:e4:e6:c0:8d:be:75:57:c6:3d:
ae:81:b3:2d:09:6a:b1:ce:40:f9:de:be:c2:7c:c7:
86:2a:d1:f6:08:6c:9e:3e:b7:b9:68:92:d5:60:b1:
30:36:8c:02:8e:a0:75:fc:31:77:77:10:c3:3b:60:
0d:3a:40:07:87:a8:72:d6:fe:66:73:60:c8:29:99:
8b:1d:ea:ab:34:3e:12:29:e0:2d:35:b8:8b:95:78:
cc:bb:64:04:e5:62:1f:29:ae:a5:22:bd:75:d9:a8:
a5:79:d1:43:ce:60:3d:97:02:b5:8f:90:af:d3:b9:
95:dc:b0:7c:c3:bb:f0:5d:9d:04:85:67:32:99:d3:
de:5e:e8:56:1e:a2:4e:68:87:e3:60:9e:2e:9c:87:
3f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:11:B6:F7:68:D2:98:F7:64:D2:75:E3:FF:0F:5F:21:50:68:45:0C
X509v3 Authority Key Identifier:
keyid:67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/jhG292jSmPdk0nXj_w9fIVBoRQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.243.0/24
Signature Algorithm: sha256WithRSAEncryption
06:de:46:c5:86:77:3f:5a:1f:fb:33:93:f3:2d:49:8d:ba:07:
06:75:c3:51:52:27:d8:09:00:2a:5e:7d:0e:65:69:e9:a4:f1:
8b:5d:42:63:41:a3:f4:9d:a7:7b:05:8b:11:2d:4f:c5:5e:6b:
8c:92:07:3a:49:3d:df:ea:11:4e:b6:0a:56:4e:18:00:1b:8e:
e7:fe:c4:e5:54:3d:49:4a:2c:fd:26:40:de:e9:f2:11:b2:36:
af:9f:53:26:13:db:3f:90:98:87:0d:92:43:3f:5b:0c:80:a7:
ae:f5:89:36:12:49:91:90:77:33:67:a0:2c:b2:b0:89:d9:2f:
b4:c5:07:e0:f5:80:76:1d:e8:e7:b9:24:9b:9a:18:b7:1a:12:
0d:96:0e:6a:8d:5a:a1:77:40:69:15:85:c0:32:aa:e0:2a:e7:
64:d7:da:5c:fa:18:a8:24:9c:9e:15:12:76:d5:4d:07:6a:e6:
ad:c5:41:9d:d5:bc:3a:77:86:bd:2a:fb:48:15:87:ba:58:58:
11:f8:ae:cd:7a:f1:5d:70:5f:77:12:5b:b6:36:e5:15:5e:8a:
80:0f:d9:08:78:aa:1a:2c:42:91:d5:50:03:83:1c:72:d0:e3:
5a:d8:c8:b4:a3:5f:b0:7a:1b:e5:46:3b:b7:9b:6d:ec:b3:3c:
64:4d:55:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:27 2024 by rpki-client on console-fra.rpki-client.org