Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/26cNT7CFBLK5f5rVZ1eky0LLBfY.roa
File: 26cNT7CFBLK5f5rVZ1eky0LLBfY.roa (raw, json)
Hash identifier: zAuIVngNVdHLs77ebt811SnBB6LbypCWj9Vb201kBho=
Subject key identifier: DB:A7:0D:4F:B0:85:04:B2:B9:7F:9A:D5:67:57:A4:CB:42:CB:05:F6
Certificate issuer: /CN=a90200a0000df5d845b9db284d0a2dbee676c5a8
Certificate serial: 01856E145ADC8FAD906E470D92A55EBA4202
Authority key identifier: A9:02:00:A0:00:0D:F5:D8:45:B9:DB:28:4D:0A:2D:BE:E6:76:C5:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQIAoAAN9dhFudsoTQotvuZ2xag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/26cNT7CFBLK5f5rVZ1eky0LLBfY.roa
Signing time: Sun 01 Jan 2023 16:05:05 +0000
ROA not before: Sun 01 Jan 2023 16:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52125
IP address blocks: 91.222.64.0/24 maxlen: 24
91.222.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:5a:dc:8f:ad:90:6e:47:0d:92:a5:5e:ba:42:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a90200a0000df5d845b9db284d0a2dbee676c5a8
Validity
Not Before: Jan 1 16:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dba70d4fb08504b2b97f9ad56757a4cb42cb05f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c5:74:41:89:c3:14:85:b2:ec:96:25:01:e5:
d6:d7:5a:81:b3:85:3e:2b:c4:55:b8:3b:c7:55:50:
b7:f6:b7:7c:43:a6:bd:8c:dc:83:d1:b3:93:c0:14:
c2:01:19:4c:e0:fd:96:cd:ed:a0:c4:0b:a0:d2:14:
7b:58:b2:83:af:e1:9b:76:4d:6a:80:ac:66:b0:cc:
35:59:94:2b:e0:df:85:47:c6:ee:22:de:e8:e3:7d:
46:50:f8:4b:95:56:8c:8f:ae:aa:6b:bc:38:31:05:
88:f7:93:81:6a:3e:24:d9:62:52:2a:97:34:c4:ba:
6d:83:6b:2e:39:0b:67:ed:6e:24:24:1b:da:5c:be:
75:86:dc:39:21:1e:89:27:80:19:73:1a:98:a6:61:
df:51:4a:d6:ad:4d:56:5b:b3:68:a9:0b:72:62:4b:
b7:c3:50:3e:8c:fd:8c:c4:de:fa:c2:94:8f:6b:54:
5b:bd:a5:32:db:0f:a5:58:a4:e9:e6:29:65:be:db:
c7:f6:9e:20:bf:fe:a5:e0:b2:32:15:b1:c4:72:0e:
c9:00:93:1e:5c:40:c4:c0:2f:fd:d4:28:b7:32:dc:
5a:18:1c:1a:d8:f5:c4:25:0f:dd:b6:e1:b0:a2:4e:
60:5d:66:95:49:46:52:3b:d9:26:ea:51:60:cc:be:
5f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A7:0D:4F:B0:85:04:B2:B9:7F:9A:D5:67:57:A4:CB:42:CB:05:F6
X509v3 Authority Key Identifier:
keyid:A9:02:00:A0:00:0D:F5:D8:45:B9:DB:28:4D:0A:2D:BE:E6:76:C5:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQIAoAAN9dhFudsoTQotvuZ2xag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/26cNT7CFBLK5f5rVZ1eky0LLBfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/qQIAoAAN9dhFudsoTQotvuZ2xag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.64.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:c8:64:c6:c9:c7:8c:96:f8:46:01:e4:9a:f7:46:d0:3b:95:
ce:89:50:38:6e:e3:f2:cf:6b:a1:4e:ec:72:0c:19:fe:4e:eb:
d7:1c:86:f1:96:b7:72:51:b4:eb:94:f0:81:d2:25:3a:01:98:
f1:bd:5c:63:22:42:51:f9:1d:97:37:69:57:ef:04:d2:6f:0e:
f8:ce:4d:bf:c6:51:a7:e9:20:a1:be:3f:c3:48:69:31:eb:96:
ad:17:22:ec:06:9f:cb:fd:43:ca:dd:6f:34:67:11:6f:7a:d2:
22:e2:ce:1d:74:e1:3f:a4:6e:be:33:95:fd:82:d2:9b:0d:61:
a6:4b:7f:bc:82:11:5f:e7:11:8e:9e:96:de:cf:10:dd:74:25:
ce:ac:7d:eb:61:bf:8d:a4:43:28:93:18:3b:28:51:a3:dd:e3:
bb:3b:77:a0:16:84:55:38:b6:99:cb:a9:8d:6c:f8:2a:9b:c6:
86:0b:70:61:78:30:96:27:a5:4c:a2:34:63:a3:6d:34:42:c4:
21:1a:a4:e4:78:3d:13:f3:a9:c4:0e:5c:26:b3:77:7d:47:eb:
7e:d0:7d:8e:93:12:d3:b4:78:e7:86:ba:c9:7e:7c:73:6d:c6:
0c:e1:2b:03:7d:4b:69:c7:3f:b4:1a:14:3d:0c:f4:dc:f2:d9:
45:c1:a6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:20 2024 by rpki-client on console-fra.rpki-client.org