Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/0nNfkEIEvVEukYUKLeTIFJhdIuw.roa
File: 0nNfkEIEvVEukYUKLeTIFJhdIuw.roa (raw, json)
Hash identifier: W8kuN8QXRgZZmJMs1Ewkur5ohPXbMdXko8o7UJBx8f8=
Subject key identifier: D2:73:5F:90:42:04:BD:51:2E:91:85:0A:2D:E4:C8:14:98:5D:22:EC
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 0188D72F5AED5C70B9BEA807AE86A04E4257
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/0nNfkEIEvVEukYUKLeTIFJhdIuw.roa
Signing time: Tue 20 Jun 2023 05:03:04 +0000
ROA not before: Tue 20 Jun 2023 05:03:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 91.201.142.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d7:2f:5a:ed:5c:70:b9:be:a8:07:ae:86:a0:4e:42:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jun 20 05:03:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2735f904204bd512e91850a2de4c814985d22ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:37:9c:fb:99:8c:8a:b4:03:bc:b8:2b:52:02:
fb:6a:81:c9:65:9f:13:3b:db:9e:47:fc:86:73:73:
f2:f2:24:01:d7:34:ac:6a:d8:46:53:29:8b:2f:0a:
71:e7:34:76:77:b9:bf:49:d0:29:fd:a2:6e:ee:ff:
1c:04:35:36:8d:63:f6:5a:1d:80:d7:43:9d:13:bf:
9d:a4:e5:0d:8f:20:60:a7:f5:b5:26:19:d6:e3:06:
74:f6:d4:de:78:9a:f6:38:17:7e:a2:93:00:f9:d6:
f2:1b:de:34:1b:6a:6d:09:09:00:cc:d1:76:a2:42:
ad:7a:73:6d:f3:33:04:e2:30:94:a2:55:9f:a3:58:
f6:6d:79:a6:58:3f:08:8c:50:0b:af:cf:d8:00:0a:
91:6b:06:e9:88:21:e0:9f:3a:8f:80:bb:5c:ad:d7:
71:df:5b:80:1f:cb:8e:0c:7a:f6:58:d0:58:fc:d0:
b1:fd:cd:e2:85:96:22:03:03:3b:07:df:b9:65:b6:
18:e1:7b:ee:bf:8c:6c:22:12:f7:5a:e3:eb:e9:5a:
94:52:96:11:e7:90:9f:81:38:e0:01:db:d9:0f:6f:
e3:6c:12:42:2f:7b:1b:5d:55:af:f4:59:fd:2f:cb:
59:de:b3:6c:61:c4:e2:4f:a4:f0:5d:ae:5e:13:76:
42:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:73:5F:90:42:04:BD:51:2E:91:85:0A:2D:E4:C8:14:98:5D:22:EC
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/0nNfkEIEvVEukYUKLeTIFJhdIuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.142.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:8d:75:e0:fb:1e:2a:44:da:32:73:0b:53:60:36:a6:0a:20:
97:23:bf:ec:ad:3e:73:78:35:bb:f6:fc:3c:e2:52:c4:0b:4e:
c3:ce:fb:fd:18:07:18:e8:bb:3d:e4:1a:4f:ea:2f:51:9b:07:
b5:d5:48:b0:e1:ea:26:9e:e7:a9:e5:e9:12:09:7a:9a:12:f6:
12:fe:f7:3d:4b:5d:bd:0e:dd:11:c1:d7:01:16:22:69:91:c7:
87:d6:f1:37:04:bb:a1:c5:38:71:12:e8:c6:f0:ae:cb:de:a1:
58:1c:0f:8c:b2:67:55:5f:ca:62:20:91:d7:37:fa:aa:ee:f9:
91:b9:7e:cc:54:52:a9:7c:fd:d2:9d:28:b8:cf:d2:fa:5d:92:
a9:11:ba:fb:42:28:89:dd:96:03:4a:e4:c8:d9:91:db:b7:da:
62:9e:05:52:8f:08:e6:19:e2:e0:2e:1d:4a:ed:52:cd:53:e3:
1b:66:df:ef:f3:40:96:7a:dc:54:bf:2f:02:c6:38:ab:83:c8:
c6:98:7b:34:e5:c2:ef:b4:fe:8d:87:b9:6a:62:01:59:be:d3:
5d:f2:b7:a6:17:85:fe:56:50:37:f0:cf:e1:d7:95:e5:e8:e7:
6c:63:8b:af:e5:53:3a:55:cb:8c:8d:14:31:0e:1e:a2:57:54:
72:80:47:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:04 2024 by rpki-client on console-fra.rpki-client.org