Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/bhQ871e81b6LQilWzLo9YDQxIHk.roa
File: bhQ871e81b6LQilWzLo9YDQxIHk.roa (raw, json)
Hash identifier: wwsCg31mgNnI2Sm+sW5Hg0d/tdbW1ptocr8M7glQbtE=
Subject key identifier: 6E:14:3C:EF:57:BC:D5:BE:8B:42:29:56:CC:BA:3D:60:34:31:20:79
Certificate issuer: /CN=0fea8ae19061acc5489ac2719082acea5a2fc5d3
Certificate serial: 01879F1DB40CCC9B48C27B983F4E1820AF01
Authority key identifier: 0F:EA:8A:E1:90:61:AC:C5:48:9A:C2:71:90:82:AC:EA:5A:2F:C5:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/bhQ871e81b6LQilWzLo9YDQxIHk.roa
Signing time: Thu 20 Apr 2023 14:42:16 +0000
ROA not before: Thu 20 Apr 2023 14:42:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60912
IP address blocks: 91.236.230.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9f:1d:b4:0c:cc:9b:48:c2:7b:98:3f:4e:18:20:af:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fea8ae19061acc5489ac2719082acea5a2fc5d3
Validity
Not Before: Apr 20 14:42:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e143cef57bcd5be8b422956ccba3d6034312079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c1:c5:d5:8a:08:29:96:0a:a1:c0:46:02:b3:
bb:e1:90:f6:73:71:e6:44:d1:8d:88:aa:89:4f:e5:
57:3b:e9:17:d1:a2:f0:d5:c9:26:6c:c4:bb:70:6e:
43:13:c2:29:2b:6f:0d:bd:71:25:d1:55:d7:80:84:
80:11:34:b1:9a:d3:98:53:c2:3a:f6:1a:7d:30:0f:
18:65:7e:58:df:50:aa:26:d5:bf:8c:a2:57:3c:41:
1e:af:60:22:1f:4c:16:41:4c:44:cd:49:8b:63:15:
15:80:5f:76:a7:c0:4e:9f:d7:3b:88:b7:42:46:c4:
18:cf:05:fd:cb:19:89:ea:82:45:6f:b8:4c:b5:63:
e0:85:1a:1b:cd:7a:f8:6b:b3:12:cd:4d:74:70:b9:
40:a8:61:9a:58:6d:16:f6:5b:bd:19:7a:68:33:1c:
9a:26:a1:3b:b1:06:e3:17:89:ec:81:60:b0:2e:9c:
58:09:44:91:3b:8c:7c:6e:b6:ac:d1:91:29:d2:c0:
6d:a2:1c:23:60:4a:bf:59:d0:45:d1:bb:4f:83:4a:
ae:0e:fc:59:ce:e5:32:5b:1d:cb:3b:91:af:bd:90:
77:9a:08:b1:c7:73:b6:f8:f1:f7:19:c4:70:60:29:
0a:20:0e:29:2d:9a:46:5c:3a:9d:ad:ec:d2:8a:6e:
e3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:14:3C:EF:57:BC:D5:BE:8B:42:29:56:CC:BA:3D:60:34:31:20:79
X509v3 Authority Key Identifier:
keyid:0F:EA:8A:E1:90:61:AC:C5:48:9A:C2:71:90:82:AC:EA:5A:2F:C5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/bhQ871e81b6LQilWzLo9YDQxIHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.230.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:e9:50:f3:f1:25:c8:4d:53:74:6d:fd:e6:6a:64:74:8f:ed:
d3:e5:6a:b4:5e:7f:fd:66:fb:61:24:59:82:b6:fe:27:b4:c6:
39:24:0d:d9:71:d4:ad:dc:97:80:b6:bf:8f:31:86:c7:0b:69:
3a:8d:d6:ba:ae:f1:3f:f3:95:21:10:01:c4:17:23:a2:d7:b4:
a0:a0:4a:27:18:ed:0d:ae:22:c7:6d:b9:e1:4d:3b:14:66:ec:
9e:05:6a:12:5b:ce:48:21:12:40:90:2b:13:0a:b9:a6:9a:c5:
f1:97:70:81:52:2c:74:cd:04:9f:41:0e:69:a3:08:9a:18:09:
50:1c:68:c1:65:e7:e1:6c:84:f8:06:7f:86:37:25:46:bf:3f:
90:e8:5a:c6:e1:8b:2d:ae:e5:bf:29:f4:68:51:63:9f:49:3f:
bc:c6:52:71:c3:47:6f:57:2b:ea:a4:d5:9b:c5:3e:33:e4:92:
a4:11:38:e7:e1:7a:1c:88:3e:9d:9b:c9:24:e7:7e:9d:13:2a:
36:61:01:c3:1a:97:33:8f:24:a5:a0:64:db:36:da:42:90:ad:
5d:2d:9a:b8:96:81:3d:42:40:93:fa:12:25:ad:0f:00:5f:a4:
b3:60:93:82:a7:b9:db:b8:cd:9a:11:f2:6f:f4:5d:af:9f:da:
68:4a:58:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:55 2023 by rpki-client on console-fra.rpki-client.org