Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/J1t1n-rHV57oI_Yt14Km38nnuv0.roa
File: J1t1n-rHV57oI_Yt14Km38nnuv0.roa (raw, json)
Hash identifier: sL3oFfJPKy+u3/M6AALubtpIuD0fsAogbZT63r1ZZQk=
Subject key identifier: 27:5B:75:9F:EA:C7:57:9E:E8:23:F6:2D:D7:82:A6:DF:C9:E7:BA:FD
Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Certificate serial: 01856D5404EDC223FBF1CB9898E12B171D78
Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/J1t1n-rHV57oI_Yt14Km38nnuv0.roa
Signing time: Sun 01 Jan 2023 12:35:00 +0000
ROA not before: Sun 01 Jan 2023 12:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197655
IP address blocks: 91.223.193.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:04:ed:c2:23:fb:f1:cb:98:98:e1:2b:17:1d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Validity
Not Before: Jan 1 12:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=275b759feac7579ee823f62dd782a6dfc9e7bafd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2b:a7:26:72:b1:47:f1:fc:c6:05:dd:32:4b:
0b:25:dd:79:b9:2b:bc:c0:e7:0f:57:7c:64:25:27:
a7:20:7f:08:61:72:7f:41:1e:b2:44:fa:0b:b9:e2:
fb:ca:c9:52:bf:07:b4:79:24:11:d9:1c:c8:5c:b1:
e7:a1:6b:55:56:a2:92:d6:d8:62:50:77:4d:46:e5:
fe:73:06:6f:0e:8d:93:f7:3f:99:17:5f:f8:6b:ea:
7c:e0:4b:76:c3:36:92:56:12:67:e8:5e:1a:44:92:
7d:bb:7e:cd:e6:cd:ed:ea:ae:06:23:39:e9:2b:a3:
09:72:d9:f7:ba:e4:29:47:1b:76:39:61:5a:82:e6:
c6:c7:2c:8f:08:5a:29:bb:72:d2:b2:fb:e4:99:9c:
99:55:9a:52:40:41:80:e0:aa:8a:2f:88:fc:58:e5:
80:74:cc:24:58:9d:35:df:63:5d:00:0a:5e:b0:3d:
a7:82:0f:f3:1a:3b:63:f4:7d:3b:ac:ae:9d:59:25:
50:83:25:da:78:7f:82:a7:92:ff:08:81:7c:7c:e3:
67:e7:1e:9d:26:71:03:f7:1c:60:b9:d7:01:3c:9c:
ac:5c:57:d8:66:ab:71:15:8b:d5:5f:05:66:7a:9e:
c6:fa:fe:c8:1c:c9:b2:99:7e:65:e7:ed:d0:b2:55:
25:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:5B:75:9F:EA:C7:57:9E:E8:23:F6:2D:D7:82:A6:DF:C9:E7:BA:FD
X509v3 Authority Key Identifier:
keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/J1t1n-rHV57oI_Yt14Km38nnuv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.193.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:ce:d0:21:af:66:27:4d:7b:49:a1:d4:a5:7a:30:29:98:99:
ae:39:33:4b:4e:ad:f9:c0:ce:1f:35:4a:f6:07:92:7c:3a:7f:
1c:2b:bb:d3:f7:34:b0:11:18:f2:da:ae:7c:f4:c0:b4:42:e2:
5d:71:b8:d5:82:3f:35:0d:5f:ad:7d:7c:05:48:95:c7:ff:fd:
cf:ec:ff:01:9f:d6:ee:dc:04:c5:c1:ec:12:8b:ff:c8:ab:c1:
94:22:5e:cf:3f:84:d9:8e:f2:96:62:56:57:f7:88:9f:19:6e:
4c:8f:42:e5:c1:4b:43:2c:b5:42:04:fa:7f:2c:b5:4f:5a:c8:
6a:b8:dc:71:9b:e1:b4:ba:15:bb:0d:a7:71:9c:d6:39:75:2e:
b4:91:2b:4f:dc:58:3a:75:32:b2:5d:91:72:00:00:a8:e0:c6:
0a:fc:bf:1b:a3:3d:d9:83:ca:dc:d1:83:17:8c:b2:69:4f:78:
f0:8d:2c:87:54:74:ec:d7:0e:d5:d4:6c:d7:2e:f2:76:ea:a4:
51:b6:39:0f:fb:fc:7d:7e:31:47:ac:ab:60:a9:1f:54:29:19:
00:55:cd:ea:d6:55:f7:05:bc:2f:88:6a:e5:45:44:97:42:10:
4e:39:a3:a8:d1:76:1a:ae:bf:0f:0c:77:42:7c:67:8d:0f:e8:
ce:fb:17:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:14 2024 by rpki-client on console-fra.rpki-client.org