Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/1b332d-4715-475e-989f-6eeaca15b5a1/1/n6sIL9gw0cPX4nPgP_vXa1tPcWE.roa
File: n6sIL9gw0cPX4nPgP_vXa1tPcWE.roa (raw, json)
Hash identifier: VzlsnDsr4YL8Qs6/FaykVK965TIPmK7vINmqbcXpQLA=
Subject key identifier: 9F:AB:08:2F:D8:30:D1:C3:D7:E2:73:E0:3F:FB:D7:6B:5B:4F:71:61
Certificate issuer: /CN=104c0dc87b02232e49dc54d4ffbf4495ee033655
Certificate serial: 01856F26BC58D5E6D7AB40455B942D53DF97
Authority key identifier: 10:4C:0D:C8:7B:02:23:2E:49:DC:54:D4:FF:BF:44:95:EE:03:36:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EEwNyHsCIy5J3FTU_79Ele4DNlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/1b332d-4715-475e-989f-6eeaca15b5a1/1/n6sIL9gw0cPX4nPgP_vXa1tPcWE.roa
Signing time: Sun 01 Jan 2023 21:04:47 +0000
ROA not before: Sun 01 Jan 2023 21:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197490
IP address blocks: 91.221.210.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:bc:58:d5:e6:d7:ab:40:45:5b:94:2d:53:df:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=104c0dc87b02232e49dc54d4ffbf4495ee033655
Validity
Not Before: Jan 1 21:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fab082fd830d1c3d7e273e03ffbd76b5b4f7161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:16:34:e4:07:7f:1a:0f:6c:40:25:58:7b:4c:
1c:de:e4:5d:90:2c:5e:4d:e3:51:55:d8:12:6c:b0:
6a:dc:f3:9c:3b:dc:19:c6:4c:8f:21:df:76:18:5d:
76:43:88:a9:d1:02:b0:38:ac:70:a8:0b:f5:97:c5:
99:b3:98:46:04:d8:0f:04:6a:8d:ec:4d:73:e9:75:
dd:f0:08:8f:ab:3a:dc:13:6b:70:66:25:94:bb:63:
23:ab:bf:26:c9:fb:e6:9e:56:ec:94:64:63:5a:8d:
b5:b5:b8:70:d7:b4:a5:b6:77:2c:84:32:a7:6a:54:
f8:7b:c6:23:01:dd:a4:f6:e6:57:25:b9:5f:6e:69:
1c:42:6d:ac:16:b8:6d:48:43:aa:3a:1a:d9:09:5c:
a5:36:06:ea:85:5f:d8:d3:e2:bc:44:6c:13:e9:bc:
fa:e1:c9:2c:2d:8b:6d:6e:bc:e3:c8:09:88:95:09:
bf:39:b2:17:9c:fb:b0:13:4b:9f:4c:62:c8:79:6b:
26:a5:e1:5c:77:97:bb:fa:d4:01:cd:14:db:15:56:
0e:d7:3a:a8:22:bf:85:8e:a5:c4:7c:1d:6e:76:31:
12:9b:cb:64:b4:65:69:22:4d:78:ac:a9:1b:0a:09:
72:24:58:92:61:ec:38:f9:d8:11:7c:57:23:96:06:
e3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:AB:08:2F:D8:30:D1:C3:D7:E2:73:E0:3F:FB:D7:6B:5B:4F:71:61
X509v3 Authority Key Identifier:
keyid:10:4C:0D:C8:7B:02:23:2E:49:DC:54:D4:FF:BF:44:95:EE:03:36:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EEwNyHsCIy5J3FTU_79Ele4DNlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1b332d-4715-475e-989f-6eeaca15b5a1/1/n6sIL9gw0cPX4nPgP_vXa1tPcWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/1b332d-4715-475e-989f-6eeaca15b5a1/1/EEwNyHsCIy5J3FTU_79Ele4DNlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.210.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:95:87:35:36:01:a4:1e:b0:14:0a:c9:d7:0c:23:48:dd:b0:
f4:0b:d3:eb:7d:d4:e5:32:a0:cf:52:3c:ad:f4:45:4c:c2:10:
9a:a4:fd:65:56:f0:10:93:be:c2:34:ff:81:fd:54:05:25:5b:
be:2b:3a:55:02:ed:bc:2c:4d:f9:2a:02:d6:22:97:13:b2:82:
c1:02:d6:6d:86:a6:c0:9f:60:a3:c5:a6:84:17:6e:db:c9:2f:
4f:3f:7f:f3:12:7a:fa:51:1e:18:d0:bc:31:49:78:b9:b4:ff:
1b:89:0f:9d:d1:ca:74:39:73:6c:eb:3c:12:b7:d2:d2:c2:91:
8f:98:52:fd:20:54:b4:ab:6e:d2:a4:47:18:ff:a5:56:b9:81:
86:e4:59:c1:60:1f:f4:82:23:b9:c2:7b:92:0c:fc:6a:24:25:
85:6a:20:92:14:b1:33:b2:c2:67:a1:3b:bc:97:0c:63:da:52:
20:e1:7d:b4:71:a3:a2:1a:ce:df:a3:b5:12:37:1c:64:a7:c4:
74:6c:31:fa:8d:e6:f9:97:04:d9:d6:fe:8e:2a:90:f9:c1:e4:
c5:ba:3b:25:cb:2a:4c:78:35:0f:00:eb:a2:f1:dd:ba:85:1c:
3a:38:5b:81:ee:d9:51:cf:d4:6b:26:55:a6:23:f8:05:cb:5b:
fd:06:f8:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org