Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/7AwzQm19EVTD-Uym2jkWA61Qqb8.roa
File: 7AwzQm19EVTD-Uym2jkWA61Qqb8.roa (raw, json)
Hash identifier: A0knU+4E5eWgm3SmZ/yiQrWfGLnzG7Rs02eDFhdWSkU=
Subject key identifier: EC:0C:33:42:6D:7D:11:54:C3:F9:4C:A6:DA:39:16:03:AD:50:A9:BF
Certificate issuer: /CN=a90200a0000df5d845b9db284d0a2dbee676c5a8
Certificate serial: 01856E145A9C7F20AA16E95E788181302F65
Authority key identifier: A9:02:00:A0:00:0D:F5:D8:45:B9:DB:28:4D:0A:2D:BE:E6:76:C5:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQIAoAAN9dhFudsoTQotvuZ2xag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/7AwzQm19EVTD-Uym2jkWA61Qqb8.roa
Signing time: Sun 01 Jan 2023 16:05:05 +0000
ROA not before: Sun 01 Jan 2023 16:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 91.222.64.0/24 maxlen: 24
91.222.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:5a:9c:7f:20:aa:16:e9:5e:78:81:81:30:2f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a90200a0000df5d845b9db284d0a2dbee676c5a8
Validity
Not Before: Jan 1 16:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec0c33426d7d1154c3f94ca6da391603ad50a9bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d2:97:51:a9:bc:d4:22:52:b4:0b:b6:83:9e:
25:dd:2c:ac:08:00:aa:2d:d3:2c:1b:94:ea:26:5a:
ee:5c:e7:52:9d:3b:4c:da:e7:e6:20:37:65:0f:ea:
2b:e0:21:d7:f3:7c:02:03:d9:7f:79:85:21:c2:53:
6b:92:8d:c6:cb:7f:99:25:e7:44:ad:15:37:0b:36:
8f:6f:95:ce:28:c8:7c:2f:5e:44:2e:cd:cc:0a:4f:
47:56:b8:15:80:d8:63:b3:4f:cb:78:07:fe:f1:9a:
0f:b8:19:35:c2:80:a2:5f:71:4d:f4:88:c5:96:de:
7b:f7:ad:bd:66:8f:13:43:01:48:29:ed:20:bd:da:
6a:87:2f:29:e9:24:0a:83:f5:e5:fa:83:fa:be:c2:
db:81:1a:d0:30:24:d9:d4:f5:80:93:87:93:1c:aa:
45:0b:24:8f:2b:5c:ab:59:e8:ed:a5:21:b1:f9:a2:
32:65:ee:60:a6:d3:30:7f:0d:c5:06:db:2f:51:12:
b0:b7:67:8f:16:20:93:d7:33:ad:d0:dc:66:7c:37:
70:07:b1:52:1e:ac:ab:f1:00:08:b8:8f:06:69:7c:
89:c0:4b:dc:46:88:3b:58:5b:cf:13:eb:ec:77:d5:
ca:fa:d8:20:4f:89:9f:78:ee:8d:f4:8c:c5:bd:d1:
17:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:0C:33:42:6D:7D:11:54:C3:F9:4C:A6:DA:39:16:03:AD:50:A9:BF
X509v3 Authority Key Identifier:
keyid:A9:02:00:A0:00:0D:F5:D8:45:B9:DB:28:4D:0A:2D:BE:E6:76:C5:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQIAoAAN9dhFudsoTQotvuZ2xag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/7AwzQm19EVTD-Uym2jkWA61Qqb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b1e3e1-8b7d-4e22-870c-58f574495bb8/1/qQIAoAAN9dhFudsoTQotvuZ2xag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.64.0/23
Signature Algorithm: sha256WithRSAEncryption
74:83:49:4d:c8:f7:2d:0d:28:10:00:fa:32:9a:4b:5e:e7:3e:
cf:2f:bc:bd:00:4f:23:29:c2:50:c0:9c:6c:4a:fb:93:9c:fd:
7f:8c:5d:06:41:a3:6e:b5:40:b5:9e:36:94:14:b2:14:39:c5:
b0:c3:5a:40:ba:dc:dc:79:1b:99:cc:bf:55:ac:3c:a5:30:a8:
e5:bc:ce:d9:0f:c8:33:c6:1a:e4:08:ad:7d:c2:ae:0d:4b:a4:
78:85:5c:27:57:23:b7:ff:d1:bb:ee:4c:95:02:af:8e:79:ba:
e7:7a:34:36:05:e7:3e:70:53:00:ee:5b:ac:aa:73:dc:e2:42:
aa:da:00:dc:78:48:ec:ec:95:10:fe:1c:db:09:bd:ec:ac:4d:
03:00:2e:c1:9a:85:aa:b6:2c:79:1b:90:8d:24:c0:c5:01:29:
07:7b:c1:bd:0f:f0:40:dd:e4:ea:56:17:a5:2b:6c:69:0a:a1:
ee:06:1b:04:e5:8c:82:b7:aa:77:16:53:ca:f3:4c:eb:93:c1:
23:19:5f:eb:ef:cb:d0:ba:d1:2d:08:fd:37:bf:a9:99:e5:f0:
a5:f9:4f:15:ac:68:ee:41:6b:aa:f4:34:de:73:d5:eb:e9:c9:
90:af:3d:bf:80:34:53:df:eb:be:61:5e:4a:14:a5:01:fd:4b:
fc:7b:c4:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:20 2024 by rpki-client on console-fra.rpki-client.org