Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/tIG8qzGc2_5acxFE5PWLh323fv0.roa
File: tIG8qzGc2_5acxFE5PWLh323fv0.roa (raw, json)
Hash identifier: YynwE7oyD8Lws9gTgM3iNgLNAoeJPRW7/z90njn4jCI=
Subject key identifier: B4:81:BC:AB:31:9C:DB:FE:5A:73:11:44:E4:F5:8B:87:7D:B7:7E:FD
Certificate issuer: /CN=a9807f6d50d97d971dcf2e2e5064e9b907adb3ec
Certificate serial: 01856EF4267684DF658A238EBA49A090C377
Authority key identifier: A9:80:7F:6D:50:D9:7D:97:1D:CF:2E:2E:50:64:E9:B9:07:AD:B3:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYB_bVDZfZcdzy4uUGTpuQets-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/tIG8qzGc2_5acxFE5PWLh323fv0.roa
Signing time: Sun 01 Jan 2023 20:09:32 +0000
ROA not before: Sun 01 Jan 2023 20:09:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203056
IP address blocks: 91.146.114.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:26:76:84:df:65:8a:23:8e:ba:49:a0:90:c3:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9807f6d50d97d971dcf2e2e5064e9b907adb3ec
Validity
Not Before: Jan 1 20:09:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b481bcab319cdbfe5a731144e4f58b877db77efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2c:38:b2:7e:66:e7:5f:c8:78:39:1d:b3:c9:
12:81:87:7e:7b:62:47:2b:2d:c7:a0:ad:01:d7:a2:
39:28:bc:fe:82:92:fc:c0:e9:27:a4:7c:c9:47:08:
49:52:88:8a:bc:12:b7:a2:a7:14:9a:3f:ff:45:41:
81:31:57:81:88:75:88:4a:65:0d:22:6d:99:f0:00:
ba:c5:54:c4:df:fd:48:b2:a0:e7:e9:62:12:da:95:
35:f0:a9:2a:77:40:74:a2:f9:fa:37:81:3b:f2:cb:
8d:b7:3c:ee:bd:59:ad:b7:1e:ce:dd:89:60:a3:d9:
c3:7d:54:30:33:b1:41:bf:74:12:eb:94:bd:7c:97:
a9:b5:20:f9:fb:ce:f0:ac:b5:6d:7e:ee:02:5d:b6:
e0:3a:b4:5e:d4:d1:3b:15:7d:44:4b:9a:f6:68:0e:
d9:54:cb:57:7c:fd:d4:a3:6b:14:3d:77:d2:dd:5b:
80:a5:60:81:58:49:69:12:96:6a:d4:4c:47:40:43:
64:6d:7e:96:af:14:10:15:57:d8:59:3a:b4:18:e4:
63:25:3b:6b:b2:03:82:64:c8:52:19:b5:d2:8c:a9:
34:e6:a4:33:00:c8:2f:34:18:35:49:1d:74:93:28:
8a:44:ba:8e:f6:96:d0:60:14:fc:78:99:b9:f0:6f:
00:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:81:BC:AB:31:9C:DB:FE:5A:73:11:44:E4:F5:8B:87:7D:B7:7E:FD
X509v3 Authority Key Identifier:
keyid:A9:80:7F:6D:50:D9:7D:97:1D:CF:2E:2E:50:64:E9:B9:07:AD:B3:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYB_bVDZfZcdzy4uUGTpuQets-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/tIG8qzGc2_5acxFE5PWLh323fv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ca9dbe-0095-40f3-b932-0d8f7dd8cce6/1/qYB_bVDZfZcdzy4uUGTpuQets-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.146.114.0/24
Signature Algorithm: sha256WithRSAEncryption
72:36:bc:2f:4a:35:ba:4f:c2:4e:1a:66:b5:4b:89:01:a5:94:
65:b4:d0:f8:9e:8e:c4:f9:9b:89:7a:cb:c1:1c:b5:07:cf:c6:
ec:49:6f:50:89:a4:82:92:75:7a:b0:9b:ac:aa:70:fc:ac:f7:
7a:d7:43:cd:bb:e5:c8:65:57:53:41:f4:bf:85:d5:29:eb:f7:
18:20:ea:58:5e:3b:5f:06:34:5d:ec:8d:e2:df:07:19:ab:d3:
9e:94:b7:90:10:a6:48:f8:6e:8d:80:da:57:e8:a4:e8:9b:95:
d9:f3:33:37:f5:76:77:b1:13:d6:b7:05:a1:4a:f7:c8:ed:85:
4b:a9:12:8f:fa:e7:a1:05:07:a9:7f:ee:37:34:3a:fd:73:c2:
0d:a9:90:6f:66:01:1a:52:3a:1a:64:03:78:36:0b:07:4f:2c:
dc:2c:ef:25:2c:08:74:07:ad:d5:a0:14:d3:b8:40:cf:fa:e1:
39:85:81:d4:51:6d:be:b7:64:7f:77:1c:8d:20:80:30:22:18:
cc:c3:fe:be:1f:b3:94:e2:bc:e1:f1:24:d9:4b:3d:89:bf:91:
9e:10:4a:7d:1e:10:1f:71:c8:e1:cc:8e:e8:9a:19:ef:37:87:
11:e2:25:66:d5:10:77:3b:56:9c:10:59:8b:40:b2:be:3d:36:
51:aa:cd:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:58 2024 by rpki-client on console-fra.rpki-client.org