Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cd8269-2b7e-4a78-a9c6-ec7a3603e17e/1/AxWU7WuCmZcFgXlTHUThSfgISEE.roa
File: AxWU7WuCmZcFgXlTHUThSfgISEE.roa (raw, json)
Hash identifier: TgpKfaofroDq505WQXJiBFIo+ldskS2iN0qoqwYWTO4=
Subject key identifier: 03:15:94:ED:6B:82:99:97:05:81:79:53:1D:44:E1:49:F8:08:48:41
Certificate issuer: /CN=96b122a7dba7432930c831f57a9406f73449c5b7
Certificate serial: 01857270FC108D9772E48E9C9C13C4633E3A
Authority key identifier: 96:B1:22:A7:DB:A7:43:29:30:C8:31:F5:7A:94:06:F7:34:49:C5:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrEip9unQykwyDH1epQG9zRJxbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cd8269-2b7e-4a78-a9c6-ec7a3603e17e/1/AxWU7WuCmZcFgXlTHUThSfgISEE.roa
Signing time: Mon 02 Jan 2023 12:24:45 +0000
ROA not before: Mon 02 Jan 2023 12:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213374
IP address blocks: 91.234.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:70:fc:10:8d:97:72:e4:8e:9c:9c:13:c4:63:3e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b122a7dba7432930c831f57a9406f73449c5b7
Validity
Not Before: Jan 2 12:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=031594ed6b829997058179531d44e149f8084841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:aa:f7:3f:e4:44:de:cf:0e:ae:68:c9:ea:4c:
71:78:2d:89:d6:97:30:2c:d1:1e:e8:6d:eb:9e:9b:
4d:6f:8c:7c:79:7a:52:0e:e4:05:e8:a0:ba:ea:d5:
08:d2:b2:c9:fe:cc:2a:af:98:48:a8:37:44:b0:33:
16:22:bd:2c:60:22:ec:25:12:19:75:6a:e1:f5:df:
00:66:7f:6a:b5:a3:9e:17:67:c6:d5:f3:4b:2b:3e:
6c:a4:02:b5:f8:b6:3b:78:53:7e:c2:14:3b:43:18:
79:0f:cb:4e:b5:31:7e:83:3a:32:3c:f2:9e:ea:2c:
70:aa:f9:2c:f7:ca:f5:1a:c7:a7:71:c5:51:c6:01:
f7:16:95:7c:b7:f3:96:1f:f6:16:74:9a:fb:34:ae:
d4:2c:11:e1:e7:28:57:5c:75:36:f6:93:6d:86:14:
ae:7d:3b:3c:56:63:d4:a0:c0:ee:1d:71:a2:78:ec:
70:92:f5:f4:6a:27:09:6c:0d:77:81:ad:a4:48:77:
49:16:1a:fb:71:6c:00:95:6c:39:8f:23:9e:f4:2d:
7e:94:fb:c5:00:47:59:43:2a:47:aa:8b:5b:f3:26:
7b:f2:c4:b9:50:b0:8d:5f:1f:a1:db:01:89:f7:52:
ba:dc:1b:b6:3a:cd:8c:55:9e:0c:33:1c:56:5a:33:
ac:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:15:94:ED:6B:82:99:97:05:81:79:53:1D:44:E1:49:F8:08:48:41
X509v3 Authority Key Identifier:
keyid:96:B1:22:A7:DB:A7:43:29:30:C8:31:F5:7A:94:06:F7:34:49:C5:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrEip9unQykwyDH1epQG9zRJxbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cd8269-2b7e-4a78-a9c6-ec7a3603e17e/1/AxWU7WuCmZcFgXlTHUThSfgISEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cd8269-2b7e-4a78-a9c6-ec7a3603e17e/1/lrEip9unQykwyDH1epQG9zRJxbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.238.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:29:43:2b:aa:ba:cc:9c:b0:fb:2d:a1:2b:63:8b:99:9f:b6:
d3:eb:55:f2:8c:02:2d:ab:51:41:0e:dd:16:f9:2c:e7:5d:c9:
2e:a6:fa:b1:38:ef:95:ec:41:63:cd:9b:59:2d:25:53:84:e8:
bc:f8:4d:2d:13:fc:8d:2f:8a:25:db:93:26:a3:d2:e8:83:57:
ac:34:77:bd:99:e9:a7:83:81:4e:aa:25:32:d2:2e:f0:56:df:
d9:33:49:1f:c5:c7:9d:7d:0d:18:d2:4e:1c:ec:60:55:25:93:
a9:5e:53:40:a8:5d:ea:33:32:4c:07:bc:ec:04:f4:56:ad:59:
7f:25:de:29:05:3f:88:27:68:62:8d:a3:29:c0:3f:60:49:c8:
63:1f:a7:7d:b6:e7:1d:ba:73:f1:1e:b7:fa:60:89:b2:28:ba:
3f:c9:c3:89:52:82:d3:35:1d:0f:93:be:63:0f:45:53:c5:07:
45:00:45:9e:f5:0e:5a:d5:d1:02:05:96:75:c8:f2:a8:27:ac:
8f:89:cb:65:ea:ad:9e:d9:ba:65:3d:5b:22:59:86:c6:d7:f2:
88:7c:88:ac:f0:e3:f7:c4:bc:50:f5:8a:ac:ca:e7:6b:8a:95:
25:83:84:51:ee:e2:72:a2:87:f6:ce:f8:f2:0f:85:fa:a6:18:
ea:21:15:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:52 2024 by rpki-client on console-fra.rpki-client.org