Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/1-7Jzu-gtCP8Gklr2CWp-lvmHELk.roa
File: 1-7Jzu-gtCP8Gklr2CWp-lvmHELk.roa (raw, json)
Hash identifier: Ez25CgpOvBfDVPj0v/DhXtwNUq+t0Rn4NesseHCJ8lE=
Subject key identifier: FB:B2:73:BB:E8:2D:08:FF:06:92:5A:F6:09:6A:7E:96:F9:87:10:B9
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01890279185EE1C4F7CBA1414B9C4F80E06F
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/1-7Jzu-gtCP8Gklr2CWp-lvmHELk.roa
Signing time: Wed 28 Jun 2023 14:47:17 +0000
ROA not before: Wed 28 Jun 2023 14:47:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201011
IP address blocks: 91.238.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 11:28:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:79:18:5e:e1:c4:f7:cb:a1:41:4b:9c:4f:80:e0:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jun 28 14:47:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbb273bbe82d08ff06925af6096a7e96f98710b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b2:df:17:04:dd:e9:3b:f5:44:f8:a5:a5:99:
a0:be:31:7b:37:26:7f:1a:7b:1a:cf:f6:33:26:b0:
ac:de:10:7b:ac:67:d6:69:08:8a:96:c3:c7:80:b9:
47:49:3f:f1:b4:1e:64:65:7b:5d:79:4d:b3:ab:74:
d6:1c:a4:8a:a1:25:ee:68:59:60:8e:91:22:8c:f1:
ec:65:3f:7d:5b:58:50:f6:39:07:30:b8:a8:13:40:
12:24:12:01:3c:78:23:54:d4:81:8c:89:76:e2:04:
81:12:67:d5:3e:4c:41:38:24:5d:5f:1a:03:44:34:
82:07:a4:4f:9e:0d:8c:1e:c7:dd:ba:78:7a:d5:2f:
f3:90:2a:7f:61:09:67:79:9b:95:7f:24:3b:fb:0f:
00:5f:85:e0:e3:22:23:24:dd:29:bc:91:3d:b7:59:
c7:51:e3:90:67:66:19:bf:dc:b1:2e:24:5c:cc:81:
c7:38:c8:bb:70:55:91:c0:73:9b:c2:b7:cb:66:fa:
45:97:7d:9a:12:de:df:40:f6:ff:95:55:73:1c:81:
26:36:cb:3a:e1:e3:d2:32:0b:05:74:87:c4:22:aa:
9a:3a:33:f8:12:cc:1c:df:14:4e:b8:2c:f0:43:c4:
78:a6:9e:13:9c:3d:9f:90:66:d6:b2:32:2b:9f:69:
14:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B2:73:BB:E8:2D:08:FF:06:92:5A:F6:09:6A:7E:96:F9:87:10:B9
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/1-7Jzu-gtCP8Gklr2CWp-lvmHELk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.41.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:90:3a:2a:da:db:8f:65:bc:b8:33:11:68:f6:49:3f:a9:05:
b6:85:cd:3e:68:be:83:55:92:97:0f:cf:22:d5:99:4f:0c:06:
92:5b:97:ed:37:29:e5:c7:c0:57:ca:7d:b8:0c:36:51:bb:d8:
bf:9e:c4:f5:40:71:02:19:ca:30:ed:36:37:4d:f9:99:d0:25:
41:b7:a6:f1:d8:d3:71:4c:6a:e0:e3:a2:00:13:67:bc:c5:de:
b1:59:a3:a2:9e:d6:9c:d0:be:fe:a8:c1:9c:26:54:42:41:36:
ca:1c:8a:e6:38:6b:6d:5f:d7:19:6d:23:d5:1e:61:8c:4e:4a:
9d:0e:23:fc:6f:aa:f6:aa:46:ad:41:64:ee:e4:78:0b:c5:4e:
1a:11:b2:56:0d:4c:98:86:a6:00:ea:c6:cb:bc:db:16:a8:4e:
1b:0f:ea:a0:6b:11:a1:f7:6a:a8:2b:8f:56:50:9f:3f:66:20:
9c:cf:1f:d0:17:80:84:83:9a:b8:67:c7:55:62:ab:89:e7:47:
19:4a:54:bf:b1:f4:05:e7:a2:ef:95:99:eb:e3:43:a9:85:bc:
21:fe:57:9d:0d:b1:59:f9:72:07:5f:40:ec:23:c7:e0:b8:cc:
06:b4:2d:1a:3a:75:76:88:11:90:11:86:96:d1:a1:48:b9:5f:
03:54:fa:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:47 2024 by rpki-client on console-ams.rpki-client.org