Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/fb53d6-ada8-426d-99fb-c5cf4b3b1ca6/1/d_inPN-sXdO_ER3-DVe7Pp9hFyY.roa
File: d_inPN-sXdO_ER3-DVe7Pp9hFyY.roa (raw, json)
Hash identifier: LsVhbyXHj0Uuc+GyiIFEONyO7Fh8cdSbsYJU/A/JMro=
Subject key identifier: 77:F8:A7:3C:DF:AC:5D:D3:BF:11:1D:FE:0D:57:BB:3E:9F:61:17:26
Certificate issuer: /CN=04f46af885d1ccbb0c09b06870785b5e691787e1
Certificate serial: 018B70CE63DCE1E155713644B4FF8401D52B
Authority key identifier: 04:F4:6A:F8:85:D1:CC:BB:0C:09:B0:68:70:78:5B:5E:69:17:87:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BPRq-IXRzLsMCbBocHhbXmkXh-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/fb53d6-ada8-426d-99fb-c5cf4b3b1ca6/1/d_inPN-sXdO_ER3-DVe7Pp9hFyY.roa
Signing time: Fri 27 Oct 2023 11:04:16 +0000
ROA not before: Fri 27 Oct 2023 11:04:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50272
IP address blocks: 91.235.60.0/23 maxlen: 23
91.235.60.0/22 maxlen: 22
91.235.62.0/24 maxlen: 24
195.238.234.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:ce:63:dc:e1:e1:55:71:36:44:b4:ff:84:01:d5:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04f46af885d1ccbb0c09b06870785b5e691787e1
Validity
Not Before: Oct 27 11:04:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77f8a73cdfac5dd3bf111dfe0d57bb3e9f611726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bf:84:59:37:13:9d:e1:f8:77:98:cc:31:d7:
90:8f:c5:fa:35:75:48:e8:11:ec:bb:4a:b8:96:6c:
5b:6d:f9:1c:e3:54:b1:ed:9f:59:c0:6e:d3:4e:e2:
88:bf:d0:ae:67:c8:2a:ab:09:2d:1b:43:7b:b4:6d:
83:1d:23:93:1d:67:b6:21:15:24:18:11:c0:95:96:
b4:e1:41:64:66:55:6a:a8:6b:fc:cb:94:5c:ae:da:
b1:cc:ef:0e:34:95:04:d8:72:61:d4:82:8f:23:a3:
5a:e1:ea:e2:98:91:7c:6f:08:1d:cc:7e:9f:a1:23:
e3:a7:38:f9:07:4e:e0:21:bb:a9:23:31:03:63:46:
28:4f:64:df:05:0d:a1:36:ce:d0:ec:5a:2e:7e:08:
7c:06:51:78:18:6e:b3:45:0c:d8:d8:ab:16:df:35:
f5:6d:71:b5:2b:62:2b:3c:d1:bd:67:be:0a:59:c9:
82:e1:70:fc:3a:e1:15:0c:5d:cd:02:9c:60:90:92:
f7:da:7e:d7:f5:70:4e:93:f7:c1:1e:04:64:15:78:
24:61:5d:14:15:7e:14:86:e1:44:53:21:32:50:cb:
9b:64:fe:ba:f0:fe:01:05:d1:c9:66:76:56:8e:92:
c9:45:97:6e:e5:90:cc:73:0e:c6:c9:62:07:3b:a4:
02:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F8:A7:3C:DF:AC:5D:D3:BF:11:1D:FE:0D:57:BB:3E:9F:61:17:26
X509v3 Authority Key Identifier:
keyid:04:F4:6A:F8:85:D1:CC:BB:0C:09:B0:68:70:78:5B:5E:69:17:87:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BPRq-IXRzLsMCbBocHhbXmkXh-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/fb53d6-ada8-426d-99fb-c5cf4b3b1ca6/1/d_inPN-sXdO_ER3-DVe7Pp9hFyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/fb53d6-ada8-426d-99fb-c5cf4b3b1ca6/1/BPRq-IXRzLsMCbBocHhbXmkXh-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.60.0/22
195.238.234.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:e9:83:11:a3:2f:bb:df:47:71:e3:74:2e:5e:50:02:ec:e3:
25:f8:64:f5:a0:41:97:32:19:82:1b:e3:e7:49:28:bd:45:08:
f5:a1:41:e3:8e:20:72:fa:14:7a:88:8e:36:ba:c1:e4:30:2e:
7e:84:41:8e:68:ec:c6:1f:34:b0:a3:7d:16:80:0a:e4:da:60:
f3:83:f2:60:95:0e:8c:a1:e2:50:34:bb:4b:3c:db:a9:40:b4:
6e:76:25:b8:af:27:b4:00:9c:53:67:44:31:65:6d:7d:85:4e:
e8:dc:27:76:2b:34:53:72:14:37:52:70:ca:cc:1d:7d:3a:6c:
1e:86:06:e7:11:f1:16:19:55:d4:a6:a0:50:e7:90:82:2c:73:
1f:36:d3:8d:0a:ab:85:67:e9:7f:4a:ec:ff:73:c6:98:25:7d:
36:b6:95:95:af:0e:85:e9:0a:c9:5f:7e:4c:7e:3f:cf:f4:c6:
a2:57:b4:f1:dc:e3:c2:b5:83:77:a6:ff:0c:a9:63:25:44:a5:
12:e4:50:56:89:d6:33:eb:ec:60:9b:dd:ec:c4:47:d3:25:6e:
45:c0:43:17:e8:24:6f:d4:a2:72:ce:4a:03:3d:a4:85:a9:89:
ff:b8:d1:e3:b5:5f:5b:96:e0:ec:f1:8a:2c:04:4f:e6:a9:96:
79:3c:99:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:02 2024 by rpki-client on console-fra.rpki-client.org