Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/A06Ek12jOw-1TZl3DsFjrmiPbFk.roa
File: A06Ek12jOw-1TZl3DsFjrmiPbFk.roa (raw, json)
Hash identifier: 5xeVE89enaF7f/BQXDEWIDHYzRjLIG33GUfSf7r9yYg=
Subject key identifier: 03:4E:84:93:5D:A3:3B:0F:B5:4D:99:77:0E:C1:63:AE:68:8F:6C:59
Certificate issuer: /CN=20f5ff076704523ff6be882b87eefa807b188aa9
Certificate serial: 01857295E4D23034C96ADB599D8F24B7839C
Authority key identifier: 20:F5:FF:07:67:04:52:3F:F6:BE:88:2B:87:EE:FA:80:7B:18:8A:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPX_B2cEUj_2vogrh-76gHsYiqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/A06Ek12jOw-1TZl3DsFjrmiPbFk.roa
Signing time: Mon 02 Jan 2023 13:05:04 +0000
ROA not before: Mon 02 Jan 2023 13:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42174
IP address blocks: 91.234.226.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:e4:d2:30:34:c9:6a:db:59:9d:8f:24:b7:83:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f5ff076704523ff6be882b87eefa807b188aa9
Validity
Not Before: Jan 2 13:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=034e84935da33b0fb54d99770ec163ae688f6c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:60:09:56:0c:d1:71:9c:7c:91:80:96:46:bc:
42:b5:d2:30:c4:b3:b2:c6:1c:d4:da:f3:9d:c9:2e:
ea:10:f8:69:97:4e:ad:23:7f:9f:45:12:d3:6f:4d:
08:d6:78:46:3b:d1:50:d7:ba:20:5d:76:a3:7f:70:
f1:68:b9:4a:f8:87:c4:17:4e:54:37:60:8b:fe:64:
a1:99:81:96:b2:9f:4b:43:5c:26:55:76:f4:c1:a3:
bb:09:19:d3:fc:e7:a5:ee:e1:81:77:f9:5e:86:1e:
0e:7a:01:7d:c9:81:ac:4c:11:ba:d2:69:1a:9f:7e:
69:02:58:29:18:f3:32:1a:d2:54:96:b0:ef:79:43:
56:b1:92:ed:67:90:fe:3c:29:e3:0a:c1:d1:e3:df:
c8:a4:92:b2:c0:eb:72:60:0a:dd:8b:d5:09:f4:92:
e9:48:20:ab:83:8a:b2:3b:f5:8b:3c:6b:c6:14:73:
77:89:28:1e:1b:6b:c7:54:2b:ea:01:38:62:35:8d:
e2:bd:42:67:e8:80:d4:9b:9d:b9:c6:61:14:ea:78:
fe:c4:34:ae:41:3d:14:49:7d:6c:cd:af:c9:06:ba:
69:ff:d6:48:9d:d3:28:43:50:62:50:dc:cd:26:86:
62:7b:93:c8:ae:d6:f0:7f:e4:cc:9b:c9:1b:95:cd:
8a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:4E:84:93:5D:A3:3B:0F:B5:4D:99:77:0E:C1:63:AE:68:8F:6C:59
X509v3 Authority Key Identifier:
keyid:20:F5:FF:07:67:04:52:3F:F6:BE:88:2B:87:EE:FA:80:7B:18:8A:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPX_B2cEUj_2vogrh-76gHsYiqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/A06Ek12jOw-1TZl3DsFjrmiPbFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/IPX_B2cEUj_2vogrh-76gHsYiqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.226.0/23
Signature Algorithm: sha256WithRSAEncryption
46:8a:83:4a:f0:b1:33:6f:46:5e:b3:71:42:16:d2:49:61:e5:
26:92:fa:d8:7f:d7:cb:7a:4f:c5:ec:c3:d1:a1:72:a6:1a:d4:
ed:82:3e:cd:96:44:9c:24:67:54:98:dd:4d:40:1f:db:bb:3c:
aa:19:61:75:a0:43:57:70:3f:3d:ba:6e:4f:b9:15:6b:ed:49:
3b:cb:c1:f4:42:fb:ba:8c:3b:88:38:d8:c4:d3:fa:e6:99:9e:
79:f9:04:35:c3:03:4c:b7:f0:5e:95:5b:58:f9:e2:39:d2:f5:
2c:29:18:ee:af:78:72:be:24:1a:54:e2:9d:0a:bf:b7:dd:92:
da:8c:79:9e:c3:69:2a:fc:24:7d:78:d6:ea:24:58:59:e3:ce:
24:cb:59:c4:22:67:5f:9c:c0:4d:3b:cb:02:e3:72:aa:ba:5f:
d7:8f:a7:06:50:6c:22:d5:e1:ed:f0:50:2f:e1:d8:47:16:06:
1a:3b:f8:66:a3:0c:98:f8:95:bc:2d:4c:e7:6b:af:92:6b:c6:
15:f2:14:ae:4a:75:a0:10:af:b9:71:a2:5c:2f:0b:9d:d5:0b:
da:e0:33:4c:3a:1c:54:8c:80:8d:8d:24:4d:aa:a6:4c:24:9b:
bd:77:a0:e8:97:05:f8:9d:4f:b8:4c:05:77:2f:3a:cf:41:bc:
48:2a:40:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org