Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/7FhSMwxsP_meGw0O9qWLu6zOuQ4.roa
File: 7FhSMwxsP_meGw0O9qWLu6zOuQ4.roa (raw, json)
Hash identifier: i3lVyyo9iU6E3+LabA4MiAiRgyte1aRlUPm3eaztJ80=
Subject key identifier: EC:58:52:33:0C:6C:3F:F9:9E:1B:0D:0E:F6:A5:8B:BB:AC:CE:B9:0E
Certificate issuer: /CN=8986e25683302c38270d0f90c4aad1519393d545
Certificate serial: 01856D0A92709B1FFCE3F72F31134FFA0E02
Authority key identifier: 89:86:E2:56:83:30:2C:38:27:0D:0F:90:C4:AA:D1:51:93:93:D5:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYbiVoMwLDgnDQ-QxKrRUZOT1UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/7FhSMwxsP_meGw0O9qWLu6zOuQ4.roa
Signing time: Sun 01 Jan 2023 11:14:47 +0000
ROA not before: Sun 01 Jan 2023 11:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 91.239.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Oct 2023 09:29:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:92:70:9b:1f:fc:e3:f7:2f:31:13:4f:fa:0e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8986e25683302c38270d0f90c4aad1519393d545
Validity
Not Before: Jan 1 11:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec5852330c6c3ff99e1b0d0ef6a58bbbacceb90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f2:c5:b1:ba:8f:a9:e5:a4:56:92:3f:26:5e:
13:3d:5a:be:f8:3c:94:1b:9f:d7:db:b9:3b:19:a4:
26:09:f3:d2:42:67:23:ee:6c:c6:7e:4d:d4:75:ed:
3f:25:cb:cb:68:13:8e:79:6f:30:f3:ac:21:85:81:
2a:74:bc:66:b7:95:75:8d:a1:93:d4:cb:56:6b:49:
bf:bc:06:13:06:81:e3:60:66:1c:45:40:ca:23:9a:
c5:9a:1c:19:09:b4:7c:40:1b:49:fe:27:8f:ab:91:
65:95:01:f9:c5:95:ef:d7:4f:b3:70:26:ad:c6:80:
bb:e5:ae:a5:e2:2e:b0:31:1c:b1:92:ad:64:8b:72:
7f:83:07:4b:51:48:31:18:a6:45:76:6a:74:a5:f4:
67:8c:8d:05:c5:4f:97:1c:82:60:ab:20:a2:53:e6:
56:f6:17:2e:15:9d:dd:14:31:d7:0d:8c:3a:57:ec:
e0:75:78:92:b7:63:84:83:54:76:84:50:6b:3d:a3:
ab:49:e2:56:72:73:24:55:7d:92:81:98:4c:e6:77:
bc:83:b9:ca:24:d5:33:f5:6d:fb:2a:d9:84:48:1e:
09:16:d1:aa:f6:79:ff:df:aa:67:1f:87:e7:66:81:
eb:7d:46:9a:d8:bc:31:c9:42:a3:f1:fb:99:4d:b5:
5e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:58:52:33:0C:6C:3F:F9:9E:1B:0D:0E:F6:A5:8B:BB:AC:CE:B9:0E
X509v3 Authority Key Identifier:
keyid:89:86:E2:56:83:30:2C:38:27:0D:0F:90:C4:AA:D1:51:93:93:D5:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYbiVoMwLDgnDQ-QxKrRUZOT1UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/7FhSMwxsP_meGw0O9qWLu6zOuQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/iYbiVoMwLDgnDQ-QxKrRUZOT1UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.122.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:c8:e1:73:83:53:d1:f5:a2:90:f7:09:6e:08:4a:1a:5d:77:
dc:87:c2:48:06:82:3d:f1:9f:49:20:a9:26:aa:ad:49:47:44:
5e:69:ec:c8:85:88:19:f0:07:29:ce:3c:17:5d:de:78:6d:3c:
ef:11:b3:a4:84:b1:a1:24:71:30:48:e9:42:19:e7:26:1b:6b:
6a:7c:5c:76:12:30:f6:d9:7b:c2:49:c2:55:47:d4:7b:0f:2d:
d3:fc:09:97:d3:6b:56:ec:b7:81:0d:41:0e:ec:ff:94:fa:58:
a5:06:87:f8:90:bf:5a:e9:c8:6b:cb:35:82:86:32:62:a7:5b:
e5:e3:59:e2:b4:63:36:55:46:97:8d:f2:67:d7:1f:0d:ea:40:
bb:93:e5:c2:51:a4:ad:5e:ea:5c:14:b7:55:44:0b:14:8b:eb:
31:a5:7e:11:eb:ec:d3:69:7e:2b:f8:3b:b8:2a:33:35:da:fe:
40:6d:ee:fc:20:e5:fd:b3:22:da:32:5d:38:56:0d:3b:e7:10:
5d:ed:df:f9:7a:3c:aa:d2:b9:80:56:5e:b3:b7:c3:5d:44:f2:
8d:72:cd:9a:19:e2:99:6a:cd:00:ad:58:4b:c3:a3:7c:48:44:
ad:3c:c5:e6:4e:23:5e:1a:fe:0d:b3:f2:da:b0:f0:dd:6c:99:
e4:12:e3:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:17 2024 by rpki-client on console-fra.rpki-client.org