Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/60447d-d305-4dea-9daa-26837038c688/1/_UGN9vA95gHYBIPKhq_Ac7rUt6w.roa
File: _UGN9vA95gHYBIPKhq_Ac7rUt6w.roa (raw, json)
Hash identifier: o5cYqqGmDbQiXWiN6iCTxacV+qhq4N51qZ5EPWZkllE=
Subject key identifier: FD:41:8D:F6:F0:3D:E6:01:D8:04:83:CA:86:AF:C0:73:BA:D4:B7:AC
Certificate issuer: /CN=1bbc841b779a2bb2c28a8daee2b2d10d5a7c34d5
Certificate serial: 01856C0A3A71C6AB94FAACA35A715D9E922A
Authority key identifier: 1B:BC:84:1B:77:9A:2B:B2:C2:8A:8D:AE:E2:B2:D1:0D:5A:7C:34:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G7yEG3eaK7LCio2u4rLRDVp8NNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/60447d-d305-4dea-9daa-26837038c688/1/_UGN9vA95gHYBIPKhq_Ac7rUt6w.roa
Signing time: Sun 01 Jan 2023 06:34:47 +0000
ROA not before: Sun 01 Jan 2023 06:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56813
IP address blocks: 91.237.88.0/23 maxlen: 24
2001:67c:299c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:3a:71:c6:ab:94:fa:ac:a3:5a:71:5d:9e:92:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bbc841b779a2bb2c28a8daee2b2d10d5a7c34d5
Validity
Not Before: Jan 1 06:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd418df6f03de601d80483ca86afc073bad4b7ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a2:4d:e2:87:7d:9b:67:b0:52:d8:99:e8:02:
8a:a2:b4:b3:4d:b8:e7:8d:74:eb:8f:fc:20:31:5c:
e3:d9:1c:54:fb:d5:f9:d5:08:9a:2b:4d:b6:d8:f5:
93:90:80:53:49:71:9a:c4:0a:42:1b:fc:7b:0f:cb:
92:d6:85:a6:a1:29:c9:8c:62:53:b4:55:85:0e:af:
77:72:d4:6e:f8:67:37:36:3c:25:c6:08:77:53:16:
f2:5b:f1:2e:01:af:56:71:78:a7:52:a2:c4:72:f7:
31:81:7b:e4:cb:50:91:5d:0d:bd:a2:c2:d8:bd:7a:
bc:4b:b1:7c:42:31:59:61:c5:28:42:cf:59:61:7a:
ff:f1:50:ae:d8:a5:b8:c9:23:48:93:ae:a4:74:a6:
16:a8:cb:df:1d:a0:cd:2c:e4:d6:3b:cd:69:51:ab:
17:44:fb:64:0e:3e:cd:af:d2:8e:e3:6c:7a:7f:d9:
4e:86:8f:ff:45:d8:4b:06:7f:ab:0d:27:e1:23:c1:
a9:11:e5:a8:b1:9b:da:d0:80:bc:02:1b:9f:c9:38:
04:30:1d:6a:e1:70:e5:c6:fe:a6:41:9c:97:1c:5c:
7a:f9:b4:c0:4a:f1:96:ac:ba:71:de:12:1c:dd:e9:
b8:99:58:09:11:c5:bf:71:58:0d:fb:48:46:a8:1a:
82:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:41:8D:F6:F0:3D:E6:01:D8:04:83:CA:86:AF:C0:73:BA:D4:B7:AC
X509v3 Authority Key Identifier:
keyid:1B:BC:84:1B:77:9A:2B:B2:C2:8A:8D:AE:E2:B2:D1:0D:5A:7C:34:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7yEG3eaK7LCio2u4rLRDVp8NNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/60447d-d305-4dea-9daa-26837038c688/1/_UGN9vA95gHYBIPKhq_Ac7rUt6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/60447d-d305-4dea-9daa-26837038c688/1/G7yEG3eaK7LCio2u4rLRDVp8NNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.88.0/23
IPv6:
2001:67c:299c::/48
Signature Algorithm: sha256WithRSAEncryption
aa:a1:3e:1e:d0:86:18:dc:c0:16:a7:80:cb:12:5a:97:3d:f2:
05:32:9a:0b:61:14:c2:69:53:c8:a6:8e:66:c1:4e:f9:a4:e4:
fb:9c:5c:18:1b:c7:02:be:ff:89:d6:d4:78:4a:6e:fa:4a:f0:
6f:a7:11:a8:8e:24:cd:ad:a1:73:e3:9b:d6:02:60:eb:0a:31:
58:3a:18:1a:9a:af:b4:6a:c2:a5:50:ec:c1:3d:03:f5:32:11:
94:f5:26:02:73:fa:4a:73:bc:f9:b7:31:0e:70:93:11:f1:2d:
27:a7:a0:d4:61:f8:88:39:66:c5:d8:ea:f8:73:68:be:fc:99:
a2:ca:ad:e3:40:01:f6:ef:91:e5:b0:ec:e4:80:8c:f7:89:12:
f5:62:ed:c2:e9:d7:4d:48:6a:c5:ed:db:f6:60:a8:2b:dd:19:
4f:45:f5:69:c5:bf:0d:c9:08:f1:26:70:1a:90:6b:e5:fe:40:
0d:44:8c:1d:fe:b1:29:74:a8:88:d4:62:e3:b6:f9:37:8a:b8:
a8:aa:b9:18:88:7b:c4:b3:7c:1d:86:34:f0:c4:be:a1:2d:eb:
fd:8e:31:7d:f1:79:ef:9e:8b:42:af:e4:42:00:0f:02:0a:53:
6d:c9:7f:01:10:78:b3:ac:50:87:c1:bf:90:18:fe:e6:51:8c:
9a:8d:eb:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:09 2024 by rpki-client on console-ams.rpki-client.org