Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/6cddca-fad7-4494-bc14-00abc471f9c1/1/uWrvL3-2FB2EgecgKFaoC5nTDcw.roa
File: uWrvL3-2FB2EgecgKFaoC5nTDcw.roa (raw, json)
Hash identifier: vtKqxEb9yZysllst85pLf7h5u785ebU6vUJqVJCNNvo=
Subject key identifier: B9:6A:EF:2F:7F:B6:14:1D:84:81:E7:20:28:56:A8:0B:99:D3:0D:CC
Certificate issuer: /CN=1143dd85fa01ebec01ee331a13179e8a33d9022f
Certificate serial: 01856D662B6C504BBD8FE971BE4923A645F9
Authority key identifier: 11:43:DD:85:FA:01:EB:EC:01:EE:33:1A:13:17:9E:8A:33:D9:02:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EUPdhfoB6-wB7jMaExeeijPZAi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/6cddca-fad7-4494-bc14-00abc471f9c1/1/uWrvL3-2FB2EgecgKFaoC5nTDcw.roa
Signing time: Sun 01 Jan 2023 12:54:50 +0000
ROA not before: Sun 01 Jan 2023 12:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9155
IP address blocks: 91.221.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:2b:6c:50:4b:bd:8f:e9:71:be:49:23:a6:45:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1143dd85fa01ebec01ee331a13179e8a33d9022f
Validity
Not Before: Jan 1 12:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b96aef2f7fb6141d8481e7202856a80b99d30dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a4:9a:6a:dc:a2:9c:5c:80:33:07:73:db:ce:
3c:18:95:5b:a8:42:ca:f9:20:da:a0:76:87:fc:b8:
29:70:76:96:7e:e3:6b:88:27:e7:6e:11:54:f5:68:
cb:6f:e0:2e:79:e2:16:a7:19:28:9b:c0:e2:67:f2:
e1:3d:b1:d3:65:03:dd:14:b9:16:29:33:8a:8f:5e:
04:4a:95:a5:85:3b:03:68:5f:71:f3:ce:5a:87:f9:
4c:b9:89:62:01:b5:d6:3b:d7:1c:b1:0d:90:e4:b2:
97:9d:24:e6:48:92:0c:35:78:fd:5d:92:09:09:48:
60:17:1b:26:7e:d9:d2:b4:ba:46:94:db:4a:6e:db:
dd:4e:57:15:5d:69:41:0b:56:a7:5b:bb:e8:34:5a:
7c:a3:71:98:8a:a1:35:16:a5:1d:5a:99:f2:fc:0c:
ea:96:90:7a:c0:1e:c0:a8:c3:b9:6b:96:ee:fc:29:
5c:4f:53:2a:81:36:db:f2:2c:0f:41:05:69:20:3c:
91:c4:74:c0:8f:fe:ac:2a:1e:7b:35:fe:ea:34:e1:
17:6c:32:8f:76:38:a2:2d:16:17:d8:78:fe:0e:c0:
e9:6e:b9:36:d6:40:ad:e7:a5:df:31:db:a4:01:62:
71:13:92:b7:d8:e4:e6:ba:9c:03:a7:2b:ad:b9:0d:
4f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6A:EF:2F:7F:B6:14:1D:84:81:E7:20:28:56:A8:0B:99:D3:0D:CC
X509v3 Authority Key Identifier:
keyid:11:43:DD:85:FA:01:EB:EC:01:EE:33:1A:13:17:9E:8A:33:D9:02:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EUPdhfoB6-wB7jMaExeeijPZAi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6cddca-fad7-4494-bc14-00abc471f9c1/1/uWrvL3-2FB2EgecgKFaoC5nTDcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6cddca-fad7-4494-bc14-00abc471f9c1/1/EUPdhfoB6-wB7jMaExeeijPZAi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.128.0/24
Signature Algorithm: sha256WithRSAEncryption
19:93:e2:5b:ba:b0:61:63:c8:14:68:3e:93:38:6b:61:13:b3:
b9:45:9d:b7:ef:b5:7c:6d:78:7b:f9:02:1e:3c:da:3a:9d:17:
9b:95:2f:70:51:45:9e:cc:ca:ae:df:ec:6e:f2:8a:bd:8f:9b:
50:16:29:2c:ca:36:72:7f:8f:41:6b:a6:9a:07:c9:6c:51:90:
32:91:a3:ba:47:b1:df:c2:76:96:66:ed:70:37:be:cb:16:95:
bb:d7:ce:d9:61:17:d4:7f:4b:67:76:32:27:eb:2a:e2:53:1c:
f9:5e:89:4d:f6:d3:12:b6:5a:8f:b8:49:2f:fc:27:e5:ee:fb:
01:a6:1b:a9:e0:75:eb:3c:b5:62:da:5f:f1:70:b7:1f:1b:8d:
63:32:26:85:a4:10:c7:8f:b4:c7:79:12:8f:89:26:e6:64:71:
18:a8:fb:8f:07:42:58:e1:20:57:94:10:74:f3:37:9f:9c:21:
5d:a6:bc:33:8b:7b:2b:b0:b0:e2:74:0d:08:f0:d3:70:f5:64:
6b:21:ab:17:b3:76:5b:19:73:d1:e9:e2:ad:77:4d:48:cf:9a:
90:4e:f1:89:6a:db:3f:fc:91:88:a0:0a:32:8e:f8:19:d5:9f:
56:19:cd:5c:98:70:8f:09:5a:3e:43:25:85:0a:cc:7a:fc:8a:
b3:f4:ec:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:05 2024 by rpki-client on console-fra.rpki-client.org