Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/iU9dN2SqPcxJZ9s-icpb622Ib5Q.roa
File: iU9dN2SqPcxJZ9s-icpb622Ib5Q.roa (raw, json)
Hash identifier: L1uRGtGZTgd2yyk0kiZU62frDHaIh7rUS2NkURckvhI=
Subject key identifier: 89:4F:5D:37:64:AA:3D:CC:49:67:DB:3E:89:CA:5B:EB:6D:88:6F:94
Certificate issuer: /CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Certificate serial: 01857082CCD595A5EE8429C46BA247E1FB67
Authority key identifier: 80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/iU9dN2SqPcxJZ9s-icpb622Ib5Q.roa
Signing time: Mon 02 Jan 2023 03:24:58 +0000
ROA not before: Mon 02 Jan 2023 03:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51522
IP address blocks: 91.247.112.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:cc:d5:95:a5:ee:84:29:c4:6b:a2:47:e1:fb:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Validity
Not Before: Jan 2 03:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=894f5d3764aa3dcc4967db3e89ca5beb6d886f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cf:98:1c:99:0f:e9:65:74:31:d9:03:8d:1d:
10:4d:ca:31:42:2d:b8:48:e3:23:76:32:e2:c0:a0:
fc:76:2f:fa:e7:f8:31:4a:c0:37:d6:ce:b9:b2:f1:
23:8c:b1:c4:09:ca:5a:69:4b:07:40:5a:4b:a8:a7:
8c:cc:75:13:86:8e:37:67:b8:00:44:e3:d4:19:78:
8e:6a:44:07:a5:ee:cf:c3:34:65:93:18:a6:58:bb:
ca:65:a7:35:d6:6f:d6:42:67:08:5e:77:ca:18:50:
58:f5:39:e1:2f:9e:98:99:26:a4:6b:6c:53:4c:60:
16:01:c6:0a:a6:16:c3:3e:84:a1:18:ae:36:3f:6c:
ed:8d:c0:a7:46:68:7f:92:45:9c:ee:b1:57:28:40:
13:fd:ba:33:12:e4:9b:73:5d:f6:6f:3a:c4:2f:96:
de:5a:9e:07:94:c2:5a:21:72:a5:5d:92:fb:91:a0:
36:29:7b:ae:c5:3d:1e:fe:dd:81:fe:0f:a1:5e:27:
83:0f:ae:9f:ed:1a:09:22:4f:85:0f:d8:c6:3e:5e:
2a:57:6b:fa:2d:cf:f2:a4:56:27:45:1e:07:76:fd:
15:c5:af:96:cd:68:c6:7d:ce:b0:3b:29:c9:3e:95:
c7:06:27:b4:e0:cf:66:4a:31:56:e6:49:0e:76:45:
3f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4F:5D:37:64:AA:3D:CC:49:67:DB:3E:89:CA:5B:EB:6D:88:6F:94
X509v3 Authority Key Identifier:
keyid:80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/iU9dN2SqPcxJZ9s-icpb622Ib5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/gI4jjjDct1l1n7ijlNniEaKLnYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.112.0/21
Signature Algorithm: sha256WithRSAEncryption
79:37:cc:31:24:d6:59:61:57:d9:bf:51:86:d9:88:55:1b:9a:
ce:5f:99:24:d5:70:4a:52:b2:ed:1b:30:d3:4a:69:c1:67:e6:
24:41:9f:18:89:e4:17:48:91:8b:40:3b:47:10:ac:02:1c:eb:
9f:e3:32:61:70:70:ff:8a:a5:ea:5a:d3:31:53:55:af:75:ca:
1f:f2:05:38:18:49:fc:2b:cd:68:5f:c6:28:8b:15:43:b0:46:
39:a4:a5:b0:6a:27:dd:07:49:5f:28:5b:5a:e7:93:d3:46:36:
fa:25:30:be:cb:54:28:f8:32:2f:ed:ee:20:3b:83:f7:b8:65:
37:1e:bd:1c:7e:8d:65:4f:a4:19:86:ee:21:67:d5:36:61:d7:
6c:2e:e0:79:24:43:34:7b:18:5b:e1:2d:01:d5:4e:62:9d:db:
68:f7:24:74:84:5f:97:d6:e6:a3:98:15:7a:e9:0a:cb:f6:3d:
33:9b:3b:4b:40:c0:82:55:6a:7b:4c:ba:43:57:38:61:9f:a3:
6f:04:ce:9b:90:94:1f:a0:23:31:67:6f:f4:b1:53:bc:7c:d2:
75:79:ca:33:d8:9b:1c:36:ce:48:56:1e:fd:a9:d0:ae:44:6b:
5a:0e:d6:3d:e2:05:16:77:03:69:ad:af:1e:7e:79:53:16:38:
5e:eb:e6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:02 2024 by rpki-client on console-fra.rpki-client.org