Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/8pNCtK1JpVJin9YGiNlgGMe6kRA.roa
File: 8pNCtK1JpVJin9YGiNlgGMe6kRA.roa (raw, json)
Hash identifier: hWNpzwfObNNag6FA28v5JX6l8fF7xheLfHmSG1gcA5c=
Subject key identifier: F2:93:42:B4:AD:49:A5:52:62:9F:D6:06:88:D9:60:18:C7:BA:91:10
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 01862C26DE2B0D74B63763B06297B2D3E43A
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/8pNCtK1JpVJin9YGiNlgGMe6kRA.roa
Signing time: Tue 07 Feb 2023 13:53:09 +0000
ROA not before: Tue 07 Feb 2023 13:53:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202943
IP address blocks: 91.242.82.0/24 maxlen: 24
91.242.82.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 11 May 2023 08:09:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2c:26:de:2b:0d:74:b6:37:63:b0:62:97:b2:d3:e4:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Feb 7 13:53:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f29342b4ad49a552629fd60688d96018c7ba9110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5c:37:e3:95:a0:74:68:a9:5f:2e:d3:1f:26:
3c:f7:f7:e9:9a:f1:40:00:7d:94:80:e3:27:9f:80:
31:80:fc:ee:82:5a:fa:5d:be:33:30:2c:b3:f9:c0:
9d:35:c2:54:3b:e7:d6:45:b7:a7:a1:a9:b9:a7:4e:
57:81:71:c1:31:8c:f3:60:10:37:59:6c:f6:8c:e8:
92:63:37:eb:0e:f5:cb:b6:76:61:cb:b6:79:e9:40:
d6:cd:c5:0d:a7:42:57:5f:61:39:57:42:eb:88:59:
6a:64:d4:87:6a:e4:03:73:e3:83:b6:54:ee:89:7a:
03:47:a1:1e:84:6e:5d:63:ae:ac:46:b1:c1:5b:30:
3b:83:03:d4:28:c8:be:ae:0a:3b:c1:c7:9a:6e:71:
b9:36:45:08:e5:cf:1c:1c:94:0c:40:ce:bc:5b:47:
f3:b5:3f:27:2c:8b:91:0c:cc:d7:f8:a1:03:bb:ad:
a5:7b:f4:88:9c:d0:80:47:b1:4a:64:f0:09:d1:fe:
4d:08:32:34:f0:b2:cb:69:44:fc:a7:c0:2e:f9:68:
09:55:b8:a6:b3:c8:39:9c:45:04:c0:68:61:48:57:
51:60:08:31:4e:d6:57:2f:f4:57:b3:f2:80:bf:da:
52:11:63:6a:6c:4b:6f:b4:fc:a2:da:a6:0c:08:4d:
a0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:93:42:B4:AD:49:A5:52:62:9F:D6:06:88:D9:60:18:C7:BA:91:10
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/8pNCtK1JpVJin9YGiNlgGMe6kRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.82.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:a4:40:96:10:1c:29:ff:ff:53:af:74:4b:0b:a3:34:1b:44:
00:52:0e:10:1c:dd:90:20:b1:9c:56:d5:71:f3:66:0e:d5:d7:
49:5b:b9:af:62:da:46:28:9d:78:1d:32:80:14:3f:cd:cf:f8:
cd:4d:e6:e9:91:69:ab:6f:3d:9d:c0:55:d6:b4:a4:af:06:19:
5f:ea:d8:b4:47:93:15:db:1c:4a:75:57:73:bd:b2:30:ad:46:
64:64:7f:5d:62:e9:7c:8d:98:47:2b:c6:98:75:aa:84:6c:62:
c4:8a:68:1a:2b:ed:a6:22:91:d7:9d:76:8f:34:29:8e:da:27:
ce:55:13:80:35:be:dc:e5:d3:33:7e:e3:c5:03:d9:73:fe:12:
15:3f:8e:13:76:54:9c:fd:f8:19:84:b2:f3:05:17:ea:bc:fe:
1a:42:c3:d7:91:c7:e5:87:47:ac:dc:02:2b:d9:e6:75:58:e1:
db:2e:9b:ea:e6:4d:31:4b:f4:a4:ee:20:29:e0:ff:f5:ee:4b:
28:c6:73:f1:2e:00:78:13:a2:ec:e5:c9:63:27:90:17:35:d3:
37:bf:15:47:d6:7f:c8:04:a7:ec:73:38:0a:f1:e0:35:af:88:
fc:ca:1c:d7:7b:7c:b3:59:7c:ff:f8:c7:ec:0f:23:21:05:63:
91:37:a6:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:26 2024 by rpki-client on console-ams.rpki-client.org