Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/zAIcnxj4bVZYJsHWJ9N4fVNLK-c.roa
File: zAIcnxj4bVZYJsHWJ9N4fVNLK-c.roa (raw, json)
Hash identifier: by2xviIq1UzODiF/2Zz0IcJ4FXTmVLQMmkTQgtf3JrY=
Subject key identifier: CC:02:1C:9F:18:F8:6D:56:58:26:C1:D6:27:D3:78:7D:53:4B:2B:E7
Certificate issuer: /CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Certificate serial: 01857246B572C87ACAC2F9578C7E17F20EED
Authority key identifier: 67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/zAIcnxj4bVZYJsHWJ9N4fVNLK-c.roa
Signing time: Mon 02 Jan 2023 11:38:34 +0000
ROA not before: Mon 02 Jan 2023 11:38:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43007
IP address blocks: 91.194.28.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:b5:72:c8:7a:ca:c2:f9:57:8c:7e:17:f2:0e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Validity
Not Before: Jan 2 11:38:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc021c9f18f86d565826c1d627d3787d534b2be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ca:90:49:f2:0e:cd:5d:32:c7:de:7d:ae:43:
dd:8e:7e:26:99:c1:6c:d1:2c:6c:3b:60:c9:e0:bb:
37:88:df:54:b3:bc:ee:0d:d5:cc:a2:06:7d:10:fe:
bb:50:3e:ed:db:3a:b1:f9:3d:2b:1a:de:ca:47:f5:
8b:c9:58:42:72:80:73:43:61:34:f3:23:be:d6:91:
da:79:2f:32:fb:2e:1a:6f:90:68:20:0c:72:86:78:
1b:55:75:0d:15:82:74:b8:2b:f4:a1:16:c6:c0:b5:
20:e5:68:16:24:e6:fd:48:6b:69:1c:41:85:42:7b:
9e:f8:c9:91:2f:fd:61:ef:87:5a:de:cb:12:e5:46:
f2:25:f6:3d:c9:07:8d:ce:f8:e3:a9:00:a5:87:6d:
b4:b7:1d:5d:ab:50:aa:f9:40:44:3f:5d:d0:67:87:
02:c9:ca:35:f6:7f:d7:ec:01:9a:32:3d:12:aa:51:
fe:1f:5c:b4:12:6b:6b:7d:f0:a8:cf:68:b0:cf:75:
5e:24:c5:3b:4a:5d:70:d1:db:d1:5d:36:c7:3e:c8:
db:4d:2a:7f:05:9a:63:61:db:a8:0a:da:40:0a:40:
81:46:5b:53:fb:93:e8:9b:11:86:00:93:81:72:8d:
7c:99:30:d4:97:52:79:b4:a9:a7:2b:82:c3:97:c4:
b6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:02:1C:9F:18:F8:6D:56:58:26:C1:D6:27:D3:78:7D:53:4B:2B:E7
X509v3 Authority Key Identifier:
keyid:67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/zAIcnxj4bVZYJsHWJ9N4fVNLK-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.28.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:51:49:69:56:05:ff:de:e0:f0:cc:12:ef:d6:4d:8c:9d:15:
98:af:fb:bf:49:96:26:0f:a1:27:ce:22:2c:c9:18:d2:49:c5:
63:7f:e6:76:09:73:63:57:20:6c:30:12:4f:6a:68:f3:11:e8:
9f:d9:32:49:06:ea:62:74:35:fe:40:13:e0:34:c3:8c:e0:ea:
2c:a7:bb:31:42:e0:8a:e8:45:ce:72:ca:f5:e4:f7:f6:8e:14:
bb:40:0f:27:d8:7c:bd:e0:f6:15:63:41:15:09:81:b1:e1:18:
d1:2e:c1:4a:3d:e6:27:43:20:c3:26:a6:62:5b:b0:7c:bb:35:
b4:7e:c8:d2:1c:df:58:fe:cb:9e:18:76:5b:ce:6b:97:23:c2:
49:bb:e4:78:d7:8d:df:a1:a1:92:3a:d0:e3:3b:48:fb:17:64:
cc:46:9e:15:66:1f:50:da:67:a6:4c:1c:b8:37:97:47:7e:5a:
72:1e:9d:17:94:be:23:a7:1e:67:06:80:5a:c2:8e:93:a4:1a:
cf:e9:2a:46:e6:79:22:30:62:6f:f5:10:b7:e0:f3:25:fd:04:
4b:08:44:c9:26:e2:eb:ae:0b:04:ec:05:25:61:52:7b:1c:72:
b0:1d:18:37:79:10:20:d5:ec:1c:77:f0:0e:77:5f:48:23:70:
29:50:5c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:45 2024 by rpki-client on console-fra.rpki-client.org