Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/8LJ_BJRZgafFUYdVmKMqQqvuUhY.roa
File: 8LJ_BJRZgafFUYdVmKMqQqvuUhY.roa (raw, json)
Hash identifier: I1mZoXN6DyfMtHvxdXCNuXDL9HhCmRfS5rBPXp8qkjY=
Subject key identifier: F0:B2:7F:04:94:59:81:A7:C5:51:87:55:98:A3:2A:42:AB:EE:52:16
Certificate issuer: /CN=d826ca5d53c1b5308e2c9c791c630a0f22337943
Certificate serial: 018AC29063AD3A4FF17216C70958EC5F135D
Authority key identifier: D8:26:CA:5D:53:C1:B5:30:8E:2C:9C:79:1C:63:0A:0F:22:33:79:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CbKXVPBtTCOLJx5HGMKDyIzeUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/8LJ_BJRZgafFUYdVmKMqQqvuUhY.roa
Signing time: Sat 23 Sep 2023 15:02:37 +0000
ROA not before: Sat 23 Sep 2023 15:02:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25577
IP address blocks: 109.68.64.0/23 maxlen: 23
109.68.68.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c2:90:63:ad:3a:4f:f1:72:16:c7:09:58:ec:5f:13:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d826ca5d53c1b5308e2c9c791c630a0f22337943
Validity
Not Before: Sep 23 15:02:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0b27f04945981a7c551875598a32a42abee5216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:96:97:37:be:18:2e:5e:a0:c1:28:5e:c3:35:
92:da:98:05:e2:ff:69:5c:fb:67:e8:53:21:2e:1a:
8b:72:6e:b1:73:e4:b0:c0:d9:2b:be:6a:7f:d2:00:
f4:9f:b4:2b:bf:46:25:de:8b:b2:5a:2d:f2:86:45:
00:88:9e:df:29:fc:bd:58:9b:b8:99:93:fa:e8:45:
51:8d:1a:54:2b:a3:2f:25:c1:59:ba:df:a7:70:46:
ca:1a:af:be:40:20:f2:de:be:54:27:b0:ff:70:5e:
3e:b1:f3:6f:2b:97:a6:61:4d:2a:12:06:7a:4d:af:
e7:c7:8d:7f:50:eb:a6:c6:ec:36:b5:77:8a:39:b3:
ab:bf:00:19:92:3b:80:25:60:fc:10:e5:27:d5:50:
4d:08:a5:d7:c3:8a:6a:c7:e7:d2:5a:33:8d:95:c4:
61:d4:a5:6b:9c:f4:d4:4c:44:38:37:14:a6:d9:d2:
15:ff:8c:a6:45:c3:ff:42:00:32:d3:69:19:34:62:
b8:b9:70:19:3a:eb:93:f5:50:9f:dc:15:97:82:69:
44:df:b0:08:12:13:ea:00:ee:75:bc:d0:88:11:35:
c5:30:af:cf:34:2e:5a:c0:8e:fc:8c:bf:cc:6f:6b:
3f:d3:69:a4:e3:e0:2a:4b:2a:d1:2d:3e:b1:00:c9:
d5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B2:7F:04:94:59:81:A7:C5:51:87:55:98:A3:2A:42:AB:EE:52:16
X509v3 Authority Key Identifier:
keyid:D8:26:CA:5D:53:C1:B5:30:8E:2C:9C:79:1C:63:0A:0F:22:33:79:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CbKXVPBtTCOLJx5HGMKDyIzeUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/8LJ_BJRZgafFUYdVmKMqQqvuUhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/4b544e-6535-4af8-bbdb-58d2ee982879/1/2CbKXVPBtTCOLJx5HGMKDyIzeUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.68.64.0/23
109.68.68.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:75:4d:63:3e:ef:66:e7:d9:f9:b6:a7:71:4d:e4:b7:72:92:
0e:d0:1e:3f:87:1c:b2:29:e9:aa:58:49:5a:fb:7c:e6:91:06:
28:c0:60:b5:70:8d:9b:36:fb:2e:30:f1:8c:48:e0:f5:42:e5:
a5:41:61:c2:ec:e3:04:a7:15:21:e8:43:bf:47:b0:de:75:c8:
d3:06:97:04:38:04:7f:f4:4b:ad:ea:80:e3:fe:a8:56:55:9c:
0c:b3:37:94:26:69:c8:ee:de:7d:4d:0b:99:24:d5:8b:65:0d:
34:39:0a:4d:20:84:b0:4d:b3:1a:1a:86:7d:e8:ea:57:32:01:
ca:39:59:82:13:0e:3e:74:7b:50:bb:07:5e:6a:45:53:21:3d:
34:36:3a:5f:f4:b9:04:f0:53:ca:14:b1:16:8f:23:f8:a4:a1:
10:b2:7a:43:ac:8f:6a:0a:0e:9c:b4:6d:74:ed:74:00:62:b3:
84:70:60:26:66:50:3a:67:f9:09:9f:32:83:39:8e:27:51:2e:
5e:2a:c5:40:5b:01:d9:af:53:a3:f3:68:74:00:01:ee:1e:8f:
f1:2c:b8:d1:2d:86:9d:11:89:30:b1:48:2b:4c:5f:44:32:b3:
6f:02:3f:d0:0d:18:5a:2a:9e:1a:90:3f:eb:bb:48:98:d6:91:
b6:fe:3a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:18:21 2024 by rpki-client on console.sobornost.net