Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/kKbc6Q0hi5tb3sWJ6e7Oob6LXFc.roa
File: kKbc6Q0hi5tb3sWJ6e7Oob6LXFc.roa (raw, json)
Hash identifier: xUVzKOvSqx/5kC0xTjw5ZesfNGr5TzdkuqSx7vK70sg=
Subject key identifier: 90:A6:DC:E9:0D:21:8B:9B:5B:DE:C5:89:E9:EE:CE:A1:BE:8B:5C:57
Certificate issuer: /CN=80e6205c2a210f57fb71f27f3c4baaeb53dd5e33
Certificate serial: 01856B37C73EE4BC5C52BAF7B3368C67D0C2
Authority key identifier: 80:E6:20:5C:2A:21:0F:57:FB:71:F2:7F:3C:4B:AA:EB:53:DD:5E:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOYgXCohD1f7cfJ_PEuq61PdXjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/kKbc6Q0hi5tb3sWJ6e7Oob6LXFc.roa
Signing time: Sun 01 Jan 2023 02:44:55 +0000
ROA not before: Sun 01 Jan 2023 02:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47607
IP address blocks: 91.208.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:c7:3e:e4:bc:5c:52:ba:f7:b3:36:8c:67:d0:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80e6205c2a210f57fb71f27f3c4baaeb53dd5e33
Validity
Not Before: Jan 1 02:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90a6dce90d218b9b5bdec589e9eecea1be8b5c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1c:22:d5:a8:20:8f:cf:ef:d5:42:05:65:59:
6f:8b:ee:ad:f4:f0:6b:4f:9b:37:6c:ab:f6:47:4a:
b5:00:df:76:c1:2b:e6:e2:15:44:70:01:ba:c5:8f:
25:08:8d:39:7f:8a:5d:38:ef:8e:5f:ab:7b:70:9e:
b4:52:4e:59:f2:90:8b:98:27:5c:f0:2f:13:d0:e3:
46:62:90:02:36:17:5a:de:27:b8:f3:4d:af:92:7f:
4b:b7:f1:cb:b7:d8:49:96:83:f0:8e:60:f5:65:c1:
f9:35:e4:f7:bc:6d:45:af:fb:ad:37:e8:d2:29:38:
d1:74:ad:d1:31:34:be:e0:c4:da:0c:5b:0f:d6:d6:
28:16:71:52:7e:66:b8:fc:17:8c:04:a8:7b:88:05:
f5:f9:97:a0:00:53:ce:73:0e:2a:6f:5b:47:5e:46:
ab:09:f7:48:bb:22:5d:db:c4:04:97:93:c1:40:8f:
94:72:b0:b0:85:1c:fc:c0:b2:40:86:ad:3c:00:dc:
7f:a7:2a:dc:21:d6:34:85:1e:d4:83:48:fe:19:b4:
1a:32:a3:39:48:ea:e8:cd:1e:3f:15:51:d4:b5:be:
23:1a:dc:ae:b4:7d:b1:3a:eb:ae:75:40:48:ec:9f:
6a:53:ae:29:26:d7:21:a9:79:97:eb:8e:a4:50:a5:
31:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:A6:DC:E9:0D:21:8B:9B:5B:DE:C5:89:E9:EE:CE:A1:BE:8B:5C:57
X509v3 Authority Key Identifier:
keyid:80:E6:20:5C:2A:21:0F:57:FB:71:F2:7F:3C:4B:AA:EB:53:DD:5E:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOYgXCohD1f7cfJ_PEuq61PdXjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/kKbc6Q0hi5tb3sWJ6e7Oob6LXFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1f74e4-dc68-4b2e-8eb1-7b8d7ee9f411/1/gOYgXCohD1f7cfJ_PEuq61PdXjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.70.0/24
Signature Algorithm: sha256WithRSAEncryption
29:a1:0a:c8:05:f3:8c:e7:2a:f2:f8:91:5b:ce:c4:d7:88:78:
e4:86:d1:4d:ce:18:7a:80:b0:5f:c2:5c:7d:84:74:98:8b:ab:
0a:0d:e4:40:eb:62:a6:92:66:24:b1:04:c7:3a:20:9e:69:ee:
9d:6e:d0:c0:00:82:7c:03:57:40:73:a6:c0:8f:75:58:76:4b:
cd:b1:64:5c:62:38:3f:dc:2a:40:39:d4:8a:91:c6:04:d3:b2:
25:5d:29:65:a8:62:05:8b:1b:27:46:75:af:df:c3:81:d3:ff:
d1:00:31:5c:33:83:5f:a6:98:a6:fc:28:ad:e8:53:6a:08:f9:
75:aa:c8:e6:6c:2b:c7:aa:c3:5d:01:6a:42:79:45:8e:e2:da:
95:67:69:f8:8e:b5:b5:13:6b:8b:cd:47:c0:33:ee:91:b0:de:
6a:72:dd:95:5c:11:d1:1a:2d:c9:73:d5:e5:a2:70:e7:70:ba:
43:6c:42:3f:69:c7:4e:dd:d4:0d:27:73:61:61:b5:5f:25:6e:
ad:b2:1f:d5:50:02:36:82:20:10:71:0c:32:5b:64:ad:cb:8c:
c0:40:4e:bb:bd:2f:6a:dd:ca:40:05:ef:91:4d:9c:61:f0:18:
c4:a1:d2:9d:7c:ec:85:88:b1:bd:fc:cc:54:ea:74:74:00:5b:
c0:3f:f5:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:13 2024 by rpki-client on console-fra.rpki-client.org