Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/00ec37-3841-4f64-a1bd-dd9dd763339d/1/7Be2hOBguqGKjUJ5CgCrdg34FJU.roa
File: 7Be2hOBguqGKjUJ5CgCrdg34FJU.roa (raw, json)
Hash identifier: gEyOr6iXJFLxkwjoXMRj0oi96Z1RbD2BMMSs83bSKYA=
Subject key identifier: EC:17:B6:84:E0:60:BA:A1:8A:8D:42:79:0A:00:AB:76:0D:F8:14:95
Certificate issuer: /CN=485355706836c6d07c7fd25d5b59db0b6d894fb5
Certificate serial: 01862B7CE5E0A6777E4F5DD2D527B38D374E
Authority key identifier: 48:53:55:70:68:36:C6:D0:7C:7F:D2:5D:5B:59:DB:0B:6D:89:4F:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFNVcGg2xtB8f9JdW1nbC22JT7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/00ec37-3841-4f64-a1bd-dd9dd763339d/1/7Be2hOBguqGKjUJ5CgCrdg34FJU.roa
Signing time: Tue 07 Feb 2023 10:47:30 +0000
ROA not before: Tue 07 Feb 2023 10:47:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 91.228.10.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:7c:e5:e0:a6:77:7e:4f:5d:d2:d5:27:b3:8d:37:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=485355706836c6d07c7fd25d5b59db0b6d894fb5
Validity
Not Before: Feb 7 10:47:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec17b684e060baa18a8d42790a00ab760df81495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6f:3a:ff:c8:af:e0:11:be:2a:ec:6f:73:1b:
63:61:44:8a:e1:ea:23:3b:34:6f:f0:4d:7e:d9:75:
46:1b:9d:d7:ee:eb:d1:a1:4d:53:cc:fd:49:a8:9b:
d1:03:5c:35:9a:fc:35:b4:89:64:4b:1b:dc:a8:0f:
15:40:b0:54:a3:79:05:a0:f0:d6:98:6a:79:72:c2:
c0:fd:3b:3b:10:aa:e5:c6:be:4c:11:37:38:a4:60:
72:d0:00:69:19:45:25:ea:2b:67:e0:a6:d7:ee:db:
b7:59:f6:1d:46:92:62:b8:a9:93:ac:ab:13:06:25:
4a:a5:e2:ce:d1:73:51:a5:39:8a:16:57:50:65:10:
a7:f2:b0:c9:e2:3b:de:75:42:1a:2f:5c:17:f8:0a:
30:8a:cf:c9:90:e9:7b:38:16:7b:ef:df:5c:85:29:
48:6d:85:8e:0e:1c:27:a2:9a:be:9a:42:7c:02:e2:
04:be:09:68:1b:a8:93:1f:47:aa:6f:81:69:63:bd:
60:46:f0:ff:76:6c:7b:3a:1d:77:07:e8:7f:8d:a1:
3c:1b:92:6b:48:bd:f3:76:74:19:38:bd:4e:2e:68:
84:57:db:f6:b2:d4:d5:33:6e:39:14:9e:60:24:82:
09:44:2a:f1:c8:1f:a6:6b:3f:66:0f:0a:0a:46:f1:
86:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:17:B6:84:E0:60:BA:A1:8A:8D:42:79:0A:00:AB:76:0D:F8:14:95
X509v3 Authority Key Identifier:
keyid:48:53:55:70:68:36:C6:D0:7C:7F:D2:5D:5B:59:DB:0B:6D:89:4F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFNVcGg2xtB8f9JdW1nbC22JT7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/00ec37-3841-4f64-a1bd-dd9dd763339d/1/7Be2hOBguqGKjUJ5CgCrdg34FJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/00ec37-3841-4f64-a1bd-dd9dd763339d/1/SFNVcGg2xtB8f9JdW1nbC22JT7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.10.0/24
Signature Algorithm: sha256WithRSAEncryption
92:39:d5:1f:85:16:0a:cf:47:6a:99:dc:b7:0e:5e:15:89:62:
90:4c:5d:59:07:30:04:55:3b:74:78:30:49:f0:5c:c8:a8:ae:
a9:6b:af:ee:c1:24:62:84:a4:b9:7a:9d:b5:b6:ff:5c:47:86:
da:0a:13:84:14:a1:cf:a6:a1:04:0e:07:22:fc:d4:f0:9b:14:
2d:96:9c:53:61:cd:78:8c:58:38:f2:7c:e4:f5:92:b3:f2:08:
d4:da:4e:65:bd:89:73:92:12:71:f0:34:98:1b:46:ad:39:23:
58:29:e2:fb:04:94:fd:73:07:79:c6:53:06:18:56:4e:6c:c1:
e2:5e:e5:08:0c:8e:8d:32:35:67:93:ab:4a:0d:fc:8a:f3:60:
67:e1:8e:f0:a1:a7:54:6c:e5:66:ee:bc:6f:42:8c:be:45:8c:
4f:11:f4:dd:8f:08:61:bd:69:66:ea:87:95:03:f4:72:1e:ca:
06:fb:f3:26:78:db:45:71:e6:61:8f:d1:3a:8d:07:1e:6d:c8:
9b:33:a5:d5:0b:e1:dc:6e:a7:e6:63:26:b3:ed:dc:e8:4d:64:
74:cd:f6:01:66:d6:6c:1b:8d:a5:3b:db:11:ea:78:2c:ae:95:
7e:fd:a6:24:0b:d5:4b:0f:19:57:e1:fd:12:52:71:de:24:fd:
ea:d4:aa:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:43 2024 by rpki-client on console-fra.rpki-client.org