Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/4f76b4-7d56-47a0-ac5b-653f239fe9a0/1/gewIFfBDbvnBBctrx_cpe422wdo.roa
File: gewIFfBDbvnBBctrx_cpe422wdo.roa (raw, json)
Hash identifier: Mhm+tp0khJsSsQuvraPS+EfkDAU++0AMm5BdpDHhvCo=
Subject key identifier: 81:EC:08:15:F0:43:6E:F9:C1:05:CB:6B:C7:F7:29:7B:8D:B6:C1:DA
Certificate issuer: /CN=5a5e66b2759e50bb69bb0a4409eeb3ba48c46c56
Certificate serial: 0189BB6D1FD75B23EAFDD8C33A83D5DC2923
Authority key identifier: 5A:5E:66:B2:75:9E:50:BB:69:BB:0A:44:09:EE:B3:BA:48:C4:6C:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wl5msnWeULtpuwpECe6zukjEbFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/4f76b4-7d56-47a0-ac5b-653f239fe9a0/1/gewIFfBDbvnBBctrx_cpe422wdo.roa
Signing time: Thu 03 Aug 2023 12:43:58 +0000
ROA not before: Thu 03 Aug 2023 12:43:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202391
IP address blocks: 91.237.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 13 Sep 2023 06:41:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:6d:1f:d7:5b:23:ea:fd:d8:c3:3a:83:d5:dc:29:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a5e66b2759e50bb69bb0a4409eeb3ba48c46c56
Validity
Not Before: Aug 3 12:43:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81ec0815f0436ef9c105cb6bc7f7297b8db6c1da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8a:12:42:de:29:2b:85:c1:6d:82:df:22:94:
ba:e2:45:99:fc:31:c3:44:38:9d:79:b4:2d:0f:b1:
bb:14:57:51:9c:20:88:59:52:67:0f:57:0e:23:99:
07:2e:f3:94:a5:21:f0:f9:c5:4c:35:8a:7a:14:3e:
23:8d:a3:df:ba:68:4b:d5:7e:ae:a8:b6:a5:02:9a:
c5:55:4b:c4:f9:1d:7c:f2:2c:8e:b8:d4:ab:19:f6:
d5:18:b4:bf:18:f3:1b:ce:93:2b:ae:09:50:24:a4:
99:66:af:64:69:56:b8:86:6b:62:2e:0c:c5:5a:ff:
c6:6d:2a:68:d3:0d:35:15:f0:5f:4e:0e:12:32:a2:
13:83:db:0b:6a:a5:2f:f5:77:44:c4:ef:3e:00:95:
f0:56:42:80:1b:5f:fb:c1:80:13:82:59:34:71:b3:
81:e2:dd:38:2b:66:52:7b:3b:d9:1e:ff:b3:2a:3a:
6f:cc:2f:93:8e:08:f7:44:8c:d6:26:89:f5:c0:a1:
9f:fe:e9:d9:56:6d:72:08:0c:52:10:5d:50:1d:95:
78:01:aa:47:4e:52:75:4d:4f:3a:7a:12:c5:1a:61:
3d:ed:34:93:03:bc:59:69:c1:6b:5f:50:08:cc:20:
85:89:2b:cd:81:8c:b3:2b:95:a9:55:e0:60:6c:2e:
7a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EC:08:15:F0:43:6E:F9:C1:05:CB:6B:C7:F7:29:7B:8D:B6:C1:DA
X509v3 Authority Key Identifier:
keyid:5A:5E:66:B2:75:9E:50:BB:69:BB:0A:44:09:EE:B3:BA:48:C4:6C:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wl5msnWeULtpuwpECe6zukjEbFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/4f76b4-7d56-47a0-ac5b-653f239fe9a0/1/gewIFfBDbvnBBctrx_cpe422wdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/4f76b4-7d56-47a0-ac5b-653f239fe9a0/1/Wl5msnWeULtpuwpECe6zukjEbFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.254.0/23
Signature Algorithm: sha256WithRSAEncryption
82:60:e1:76:c5:46:26:2d:57:16:61:a2:ab:07:ac:45:31:57:
3a:1b:2e:56:9f:e1:d9:e3:d5:45:c9:73:4e:af:92:09:df:9b:
c1:fc:a4:b3:c6:2d:ae:da:c4:28:95:11:da:17:41:49:20:09:
93:9d:ac:c0:a3:be:74:ac:23:6b:77:4b:34:96:3c:1b:2a:d9:
69:34:9d:03:87:ba:44:f2:c6:69:72:04:7b:33:29:c5:8b:60:
e2:66:5b:5d:f0:e6:75:6a:db:59:50:75:96:0e:fc:d6:ca:d7:
ae:d3:23:a9:30:c5:c3:f5:e0:7f:21:42:3e:a1:31:a3:ab:d5:
62:cc:41:4b:e4:e4:2f:7c:d2:bf:28:73:f1:66:70:01:91:cb:
ec:5d:39:6e:c8:c7:8d:74:c0:28:76:28:0c:9d:0e:59:b4:04:
bf:3a:4e:6f:7d:72:39:d2:79:9f:b9:10:27:ce:e1:88:d1:da:
8e:68:c9:dc:c1:b3:9f:56:fa:62:b6:62:c0:f7:cb:1a:d9:66:
7b:e5:35:a1:e8:be:ef:d2:84:67:04:39:ff:5c:96:a9:20:e5:
df:d2:17:d1:ba:9e:c2:fc:e2:94:5e:5c:eb:d6:ee:97:91:9c:
4e:ed:5e:04:61:79:84:0d:83:28:48:f6:69:56:bf:61:37:0b:
8b:a4:6e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:23 2024 by rpki-client on console-fra.rpki-client.org