Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/8iAekC_gNAX-WPV-0Zh59jH19hE.roa
File: 8iAekC_gNAX-WPV-0Zh59jH19hE.roa (raw, json)
Hash identifier: 6xbS0k/xkvCL5pF6Wm+F8hXi2DlJwC/yXzTeM3rXVoY=
Subject key identifier: F2:20:1E:90:2F:E0:34:05:FE:58:F5:7E:D1:98:79:F6:31:F5:F6:11
Certificate issuer: /CN=0e3c9ee1be3308fd6bd4a7c7ac2b9d910089b779
Certificate serial: 018572837D430734BDCB5C1418EF9AC22585
Authority key identifier: 0E:3C:9E:E1:BE:33:08:FD:6B:D4:A7:C7:AC:2B:9D:91:00:89:B7:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Djye4b4zCP1r1KfHrCudkQCJt3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/8iAekC_gNAX-WPV-0Zh59jH19hE.roa
Signing time: Mon 02 Jan 2023 12:44:57 +0000
ROA not before: Mon 02 Jan 2023 12:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199034
IP address blocks: 91.202.177.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:7d:43:07:34:bd:cb:5c:14:18:ef:9a:c2:25:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e3c9ee1be3308fd6bd4a7c7ac2b9d910089b779
Validity
Not Before: Jan 2 12:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2201e902fe03405fe58f57ed19879f631f5f611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:dd:f0:b7:44:72:ff:81:1e:22:4e:c6:d2:59:
a3:ad:3c:ae:38:ab:f2:48:e2:55:82:0d:32:cd:40:
55:cd:78:80:f3:29:e5:0b:b5:4d:9b:40:d4:70:b2:
3f:7b:ed:10:76:a2:67:52:65:ba:9b:20:2b:9a:0e:
bd:e5:fa:d2:7c:53:b9:a2:c7:85:b5:1c:e1:7f:b4:
49:2c:3a:32:2b:57:ff:21:e6:92:73:f4:bd:48:ca:
05:9c:95:47:52:a0:f9:f4:ce:f1:b0:07:87:33:a5:
03:dd:4d:2b:79:3f:d8:2c:5a:7d:e4:d4:80:e1:79:
a9:1f:3b:d3:b5:dd:51:a7:5f:45:d3:5e:74:cd:0e:
14:d4:96:6b:63:a6:89:f2:ee:98:9d:67:ae:53:e5:
9d:07:99:9e:26:ca:15:93:b4:7c:0c:28:f3:2b:7b:
02:80:82:4a:5c:d4:9f:10:1a:24:fa:64:fb:fd:cd:
86:76:78:0d:fc:8b:fe:4a:b4:74:30:6a:2f:b7:31:
0c:ec:13:89:f1:e7:b4:0a:5c:5b:60:40:49:c3:07:
72:84:2e:98:f4:cc:b9:02:bc:10:a1:9e:e5:d0:4b:
c7:38:4a:09:ed:b0:7e:22:a7:8e:2b:dc:1c:14:86:
18:ae:df:e3:6f:04:f7:d0:5a:4d:4d:fc:ee:c7:b1:
bd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:20:1E:90:2F:E0:34:05:FE:58:F5:7E:D1:98:79:F6:31:F5:F6:11
X509v3 Authority Key Identifier:
keyid:0E:3C:9E:E1:BE:33:08:FD:6B:D4:A7:C7:AC:2B:9D:91:00:89:B7:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Djye4b4zCP1r1KfHrCudkQCJt3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/8iAekC_gNAX-WPV-0Zh59jH19hE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/Djye4b4zCP1r1KfHrCudkQCJt3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.177.0/24
Signature Algorithm: sha256WithRSAEncryption
66:45:14:38:b4:f4:1d:c9:16:ec:7f:22:27:e3:d7:52:8f:5d:
17:b2:82:a4:81:ad:1b:03:77:9f:18:8d:6e:13:d0:bc:74:08:
48:17:b4:05:da:c0:55:78:4a:7d:4d:24:c8:72:ab:e4:7b:d7:
5c:6e:7c:5a:a4:0f:35:7f:f1:2a:31:68:30:d3:28:8f:18:28:
9b:ee:d2:00:0d:07:74:de:61:41:5c:1b:f6:f0:2d:0d:09:6b:
0b:fd:8f:d3:25:0e:a1:2e:e7:e5:0f:f3:4d:71:75:c2:7f:f7:
a3:21:d9:b6:12:73:66:c8:e6:7e:0f:48:eb:d1:e3:1b:64:30:
b1:56:1e:e2:4d:0e:f6:6c:4f:09:1d:97:28:9b:6b:2f:40:df:
d1:ce:de:d9:42:9c:a6:f9:91:d7:df:f9:e3:88:57:48:d5:be:
33:54:27:7b:8b:a2:b0:a2:d8:ed:d2:23:dd:a7:a8:34:24:74:
ee:7e:05:3e:31:e0:70:c9:48:98:19:6e:96:b8:99:06:7c:7a:
ec:8b:dd:5c:f3:61:bf:64:89:18:0e:8f:58:85:68:dd:cb:fd:
90:9b:62:7d:5f:ba:a2:77:2e:0d:ff:c5:4f:1c:25:23:cf:5d:
4f:01:0f:93:52:a5:7f:60:52:4a:66:52:61:c6:fd:f3:95:3d:
df:e8:be:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:40 2024 by rpki-client on console-ams.rpki-client.org