Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/bqRpoof3ka4sQJxmwTLI5UnjCjc.roa
File: bqRpoof3ka4sQJxmwTLI5UnjCjc.roa (raw, json)
Hash identifier: cg0WXnld3IdwnvvTGPUMWkMcuVlb61gBwHBb4cnzDpw=
Subject key identifier: 6E:A4:69:A2:87:F7:91:AE:2C:40:9C:66:C1:32:C8:E5:49:E3:0A:37
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0188959D4A713DDF4B5E825D9D2AC6A14EDD
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/bqRpoof3ka4sQJxmwTLI5UnjCjc.roa
Signing time: Wed 07 Jun 2023 11:28:13 +0000
ROA not before: Wed 07 Jun 2023 11:28:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 89.23.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Jul 2023 19:34:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:9d:4a:71:3d:df:4b:5e:82:5d:9d:2a:c6:a1:4e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jun 7 11:28:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ea469a287f791ae2c409c66c132c8e549e30a37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a2:90:73:94:04:c4:8c:c4:6b:7f:d8:5d:56:
c6:6f:e8:68:48:3e:39:21:c6:ef:18:88:e3:ca:2d:
3f:3c:8c:66:3d:1b:f6:72:02:2e:30:8b:bc:41:b1:
14:b1:ba:f6:48:c9:b4:bf:52:7e:4b:21:95:fe:c5:
45:d3:f0:e9:0d:48:75:b7:1a:17:fc:14:d8:18:15:
a8:c7:df:3a:d6:1b:e8:53:b6:7c:b0:bc:7f:c1:14:
92:2c:38:01:84:64:19:fa:9b:80:23:3a:d3:f7:09:
e9:bb:96:eb:4e:cc:0e:3a:a0:fc:1c:08:a9:d9:5d:
38:06:4b:27:34:f5:e6:22:0a:bc:2d:97:9a:e6:e8:
ce:d9:3c:ad:0f:1a:16:d7:6e:e6:af:6d:0d:ca:37:
d4:4a:23:18:f8:29:9b:52:9c:42:fc:4a:50:d9:f7:
63:4a:e7:2c:8f:d6:0e:9f:e2:26:8f:3d:1b:cc:65:
dc:01:d5:bc:2a:05:4a:4a:c6:2f:7e:94:b8:bc:02:
96:dc:1b:73:b1:58:8e:0e:92:59:61:db:10:88:97:
da:0a:8a:d9:78:43:52:a9:81:c7:03:2e:aa:26:72:
8a:db:65:f9:66:af:10:00:76:ff:b4:1b:40:f7:a8:
8d:df:e7:e8:af:da:0e:4f:1a:aa:1d:1a:be:12:b8:
ba:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:A4:69:A2:87:F7:91:AE:2C:40:9C:66:C1:32:C8:E5:49:E3:0A:37
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/bqRpoof3ka4sQJxmwTLI5UnjCjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.91.0/24
Signature Algorithm: sha256WithRSAEncryption
15:1c:ea:76:0d:01:3b:67:04:ba:c4:81:33:e3:be:f4:d3:ee:
7b:c0:86:98:93:a5:67:06:f6:7c:d1:78:d3:83:da:27:00:ad:
2d:27:0d:d0:b2:e5:30:d4:b3:f5:59:f9:19:13:9d:46:04:ff:
9a:90:3e:5b:7d:4e:6f:c9:ca:bd:4f:2e:52:a4:2e:4d:d1:75:
49:6a:53:95:c5:7d:a3:13:a4:60:ce:f6:15:45:9a:a0:12:43:
aa:6d:14:8f:c2:4a:b6:2c:2d:ee:75:4d:76:5b:cc:a7:84:15:
f0:4e:8f:6e:89:9a:40:1c:b9:0d:8e:73:62:7f:34:0e:1b:df:
89:de:7e:55:dd:57:80:36:90:65:2b:89:55:36:7d:56:2b:a9:
d3:8f:19:e1:68:ad:4e:ba:16:8e:f0:ac:f6:c8:fb:76:e3:63:
68:ae:1e:7b:2f:e1:54:89:40:7c:97:31:64:86:43:95:60:35:
fc:3b:31:7d:d7:40:40:ea:0a:17:f1:53:79:69:ba:95:79:99:
b4:85:6b:e4:29:5c:2c:0d:0b:23:00:6f:b2:56:5f:6b:4f:8c:
33:7f:94:5d:05:43:4a:0a:fe:fa:29:ef:77:e5:40:60:70:bf:
07:b9:86:c2:d2:15:d6:63:b6:5d:ab:28:88:14:a6:55:09:30:
51:be:d6:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org