Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/184099-35fe-43d6-a9b6-f76a87222ed0/1/DiZ7p3UBiYskhjFmX6OErPLsqj8.roa
File: DiZ7p3UBiYskhjFmX6OErPLsqj8.roa (raw, json)
Hash identifier: EBalRNwKYT0fVCfDrM7W00SKDZUicWqzoBXYtPZk27I=
Subject key identifier: 0E:26:7B:A7:75:01:89:8B:24:86:31:66:5F:A3:84:AC:F2:EC:AA:3F
Certificate issuer: /CN=ba3c124548e2bdf66110264ce97ea4fa231f30d6
Certificate serial: 01856BDC97AB363B3EAFACEB832BCE4B552D
Authority key identifier: BA:3C:12:45:48:E2:BD:F6:61:10:26:4C:E9:7E:A4:FA:23:1F:30:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ujwSRUjivfZhECZM6X6k-iMfMNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/184099-35fe-43d6-a9b6-f76a87222ed0/1/DiZ7p3UBiYskhjFmX6OErPLsqj8.roa
Signing time: Sun 01 Jan 2023 05:44:56 +0000
ROA not before: Sun 01 Jan 2023 05:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51202
IP address blocks: 91.218.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:97:ab:36:3b:3e:af:ac:eb:83:2b:ce:4b:55:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba3c124548e2bdf66110264ce97ea4fa231f30d6
Validity
Not Before: Jan 1 05:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e267ba77501898b248631665fa384acf2ecaa3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a8:a7:17:b0:da:07:2c:65:ba:59:ed:29:80:
c5:3d:ad:81:b0:c8:57:a0:32:f9:eb:bf:46:84:d2:
9b:9a:bd:fc:df:54:61:e4:3e:ef:df:5d:92:37:3f:
46:7b:c1:6b:6e:cc:76:3b:b8:c8:96:65:0e:c1:c5:
7f:b6:be:1b:83:de:28:68:49:0c:25:f8:ad:f6:26:
8f:50:82:e3:0b:15:f1:fc:b5:7e:51:84:be:de:3c:
bf:fa:26:f0:4e:1b:f8:d0:df:5d:63:70:f9:66:17:
db:1e:98:66:a8:01:61:6c:5e:a2:65:89:c1:37:51:
4b:86:2a:5f:a7:ff:a1:45:1d:8e:81:e7:3c:c7:aa:
64:f6:64:b4:db:a1:95:79:90:ab:c0:3d:a2:b9:05:
e3:eb:f9:13:b8:0d:96:c6:35:93:46:f2:7d:e4:88:
d5:46:a1:77:d8:42:04:35:b5:2a:23:c8:07:9b:c1:
c8:4e:57:37:33:1d:08:1f:6d:49:63:1d:55:1e:ff:
1e:45:69:67:7f:c0:9d:af:dc:b7:36:a0:38:89:9d:
fe:39:ad:df:5b:d6:8f:8c:c5:70:14:ee:7a:ec:e5:
d0:bf:67:15:2a:54:2b:0c:c7:cb:6c:1b:b3:0d:ea:
48:ba:9f:69:48:48:e8:2d:7c:76:a6:3f:69:d7:6f:
22:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:26:7B:A7:75:01:89:8B:24:86:31:66:5F:A3:84:AC:F2:EC:AA:3F
X509v3 Authority Key Identifier:
keyid:BA:3C:12:45:48:E2:BD:F6:61:10:26:4C:E9:7E:A4:FA:23:1F:30:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ujwSRUjivfZhECZM6X6k-iMfMNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/184099-35fe-43d6-a9b6-f76a87222ed0/1/DiZ7p3UBiYskhjFmX6OErPLsqj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/184099-35fe-43d6-a9b6-f76a87222ed0/1/ujwSRUjivfZhECZM6X6k-iMfMNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.0.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:a3:8c:c3:77:1b:18:18:93:3b:a4:93:26:42:6d:cc:f7:eb:
2f:0b:83:e2:0d:bb:a2:67:a7:63:57:02:8b:50:89:3c:22:50:
6c:a0:c7:1e:44:d9:ae:35:e7:c1:96:af:35:97:fa:a8:45:ef:
fb:52:81:21:0f:a6:22:8c:cc:0e:54:29:10:88:5d:39:78:94:
02:02:53:54:ff:b6:55:f6:ec:71:10:8e:10:76:43:5f:e9:dd:
e8:d3:1f:0d:84:47:3e:3d:e0:cb:c5:c4:ca:1a:0e:b9:4b:6f:
bd:17:46:b9:4c:1d:98:d7:de:ac:65:07:2e:76:33:af:5f:c1:
f9:99:17:88:99:3a:c1:32:58:52:3e:01:c8:6a:4a:ce:7a:b2:
a1:0c:25:14:6e:52:f9:1f:8b:05:68:0a:61:fe:64:cd:cd:bc:
03:0c:0b:35:1e:d9:4b:6d:19:13:bb:50:cb:ec:03:6e:78:42:
9b:40:49:b4:28:8f:0c:ce:87:f0:2e:8f:7e:61:0e:e5:4e:a3:
82:69:2a:42:7e:d8:66:bd:32:73:30:4c:af:82:9d:87:5d:9a:
5b:07:f7:a1:37:f5:ac:df:2c:10:9b:2a:90:d3:59:8d:cb:ac:
92:d6:a1:26:e1:58:4e:80:74:70:d5:e5:83:df:cd:98:2e:8a:
a2:88:ad:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org