Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/x7peb7sFtxR_W7cKaW6sDgPq96w.roa
File: x7peb7sFtxR_W7cKaW6sDgPq96w.roa (raw, json)
Hash identifier: /zBF+H9k/NY40honFbmwN7Cjy/O4dyVBL1I5DcjlV/U=
Subject key identifier: C7:BA:5E:6F:BB:05:B7:14:7F:5B:B7:0A:69:6E:AC:0E:03:EA:F7:AC
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 018A9959224A16A129F32D4F4D0A098C55C7
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/x7peb7sFtxR_W7cKaW6sDgPq96w.roa
Signing time: Fri 15 Sep 2023 14:57:50 +0000
ROA not before: Fri 15 Sep 2023 14:57:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.198.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Nov 2023 10:15:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:99:59:22:4a:16:a1:29:f3:2d:4f:4d:0a:09:8c:55:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Sep 15 14:57:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7ba5e6fbb05b7147f5bb70a696eac0e03eaf7ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:08:c2:b0:a4:36:5e:07:97:82:bf:32:46:47:
6a:69:d2:54:e3:f9:be:d9:49:6f:08:e4:31:28:df:
b6:fb:fd:8f:f3:2e:28:49:a9:42:04:f5:35:a2:61:
88:e8:d9:f7:d4:77:bb:ee:1b:7f:f4:c1:6d:dd:ab:
32:53:86:18:d1:76:dd:fd:29:7c:85:9d:ae:4b:43:
c7:ae:d7:00:a6:4e:74:c1:4c:de:c1:49:89:17:e0:
67:0a:a0:51:01:a1:6e:f6:b1:0c:89:98:30:ff:b2:
1f:d2:b5:c9:b6:dc:26:f6:f1:e7:27:fc:09:35:a0:
28:39:1d:c1:19:39:ea:e2:1b:5c:13:56:23:84:e7:
59:55:84:6e:28:76:b3:5b:a4:c4:8b:8c:b0:f7:06:
18:35:c6:c1:56:72:fb:3e:ad:fd:11:dd:47:3a:ea:
88:8f:fe:e7:96:26:ab:a2:de:bd:5a:dd:25:15:34:
23:2f:8b:b0:10:df:dc:bf:eb:9a:73:46:ec:30:c9:
7f:8d:f8:5a:6f:fb:48:9d:8f:35:ab:0c:b8:44:53:
16:70:3d:9c:11:7f:a6:12:e4:b7:97:d1:d8:65:16:
e8:ee:d3:de:89:95:1e:31:3b:69:17:95:a6:57:eb:
11:aa:2a:c0:36:44:eb:a5:7f:18:58:51:86:2f:49:
f7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:BA:5E:6F:BB:05:B7:14:7F:5B:B7:0A:69:6E:AC:0E:03:EA:F7:AC
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/x7peb7sFtxR_W7cKaW6sDgPq96w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.81.0/24
Signature Algorithm: sha256WithRSAEncryption
59:1f:6e:0c:28:fc:05:44:31:29:00:57:bf:58:4d:3b:9f:5d:
62:a2:c7:2c:15:51:0b:3c:69:84:0f:d8:45:89:4d:49:0a:0a:
6e:25:46:9a:6d:bc:be:db:fc:48:55:6a:c4:ee:d5:11:f2:f8:
24:73:ed:63:78:ff:25:fc:9b:2e:f6:7f:30:cb:e0:ed:a5:51:
3b:25:c4:b5:0c:cf:06:1a:e1:39:b0:bd:1a:76:a7:e0:db:21:
28:91:d7:84:d4:1e:f0:f5:e2:b7:0d:59:72:5e:8d:b1:dc:e4:
b6:83:9c:82:fe:36:d8:48:46:8d:e9:99:bc:28:b9:da:a5:3b:
0b:fb:dc:43:ed:14:0b:a2:49:af:ae:0d:8d:71:b1:5c:b8:9f:
d8:20:1c:6d:27:17:c4:97:7f:df:24:a9:31:4e:00:60:01:3f:
11:63:cc:7c:2a:5a:c6:c5:c0:a0:15:6f:65:ef:19:5e:b8:5c:
81:ff:72:7f:4d:40:1a:fe:c9:00:dc:0d:4d:87:b5:b5:08:8d:
81:00:d8:1f:ae:a0:80:9d:1c:99:4b:9d:a4:f6:c4:b0:ef:bd:
26:ee:c2:0b:fd:98:cd:39:d4:1b:b0:e8:0c:61:85:5b:e0:7e:
2c:f8:64:ca:fa:96:f0:24:37:7c:ab:ad:90:40:a2:18:81:0c:
50:b5:87:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:52 2024 by rpki-client on console-fra.rpki-client.org