Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/EAP-k3HmhFR_51mUERIpWbexUGE.roa
File: EAP-k3HmhFR_51mUERIpWbexUGE.roa (raw, json)
Hash identifier: LID0Q8iUlLphfPcN4nSZx1WM5+wqepSgjCwktkA99qE=
Subject key identifier: 10:03:FE:93:71:E6:84:54:7F:E7:59:94:11:12:29:59:B7:B1:50:61
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 0186846AFD12123252B4E5886AD0BA6C9CB0
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/EAP-k3HmhFR_51mUERIpWbexUGE.roa
Signing time: Fri 24 Feb 2023 17:14:09 +0000
ROA not before: Fri 24 Feb 2023 17:14:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208757
IP address blocks: 91.239.220.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 27 Mar 2023 15:56:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:84:6a:fd:12:12:32:52:b4:e5:88:6a:d0:ba:6c:9c:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Feb 24 17:14:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1003fe9371e684547fe7599411122959b7b15061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f5:90:a9:0d:54:bb:b7:84:bb:cd:5d:c8:65:
03:cf:2a:3c:2f:3f:96:f5:dc:58:b1:ef:a5:44:85:
b1:88:18:ac:5f:08:11:75:c1:d3:c3:9f:20:97:d4:
27:b3:dd:81:72:64:6b:2c:b8:00:d7:8d:95:6e:1b:
59:e4:e4:c7:58:39:1e:3c:bd:0e:b0:0f:65:01:87:
9a:bb:5e:a0:d8:60:2a:b5:a2:c9:1f:e6:2f:aa:31:
52:58:93:42:ac:8c:94:ad:f3:e5:6b:4a:77:2c:c4:
40:af:e7:a4:d8:6c:95:b0:81:69:2f:e8:88:33:e1:
ee:18:00:e7:8a:04:85:9a:dd:c1:92:0c:b4:2b:ea:
60:de:e2:a6:c2:9a:a8:74:e8:84:d9:53:4a:fb:ae:
a8:5f:ce:51:03:7c:87:02:f8:60:2c:2a:51:bf:9a:
8d:3b:50:ef:ae:d9:e7:06:37:4d:fa:3b:57:9e:6f:
57:ab:46:36:53:8f:1f:c5:60:20:0c:f4:25:46:58:
91:f7:af:7e:17:71:fb:57:0b:0e:56:6d:be:fe:00:
92:9e:03:cc:3a:5f:75:62:25:be:a9:11:b6:cf:04:
98:36:33:d0:96:fb:fb:f0:99:37:d1:69:f2:ea:c9:
f7:53:c6:b9:e0:fc:64:e2:e1:88:64:bc:5c:24:8b:
03:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:03:FE:93:71:E6:84:54:7F:E7:59:94:11:12:29:59:B7:B1:50:61
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/EAP-k3HmhFR_51mUERIpWbexUGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.220.0/23
Signature Algorithm: sha256WithRSAEncryption
16:bf:0a:0b:04:7e:d3:e1:e1:0e:fb:00:f2:8e:1d:dc:14:4d:
0c:64:f8:70:40:52:4d:fa:9b:87:8c:41:ec:f9:42:6b:18:bb:
fc:b3:77:99:70:7a:1c:67:59:52:6d:bb:29:33:69:36:7f:ab:
60:76:3e:b3:d0:7e:a3:02:e8:eb:81:50:16:da:71:f0:e9:cb:
91:d7:9e:4c:b7:f4:c7:0e:9b:38:01:8d:6d:06:b6:6c:4c:9e:
26:98:b3:41:07:60:00:42:1a:4e:74:a9:50:ef:9e:9c:f4:b5:
02:fd:5b:d8:76:04:63:aa:8e:af:c7:bb:89:fe:0d:f4:26:de:
be:d7:d0:f6:1a:e1:64:b6:5f:6b:6f:8b:27:26:d9:20:5e:7a:
e2:44:ed:9d:d8:62:46:c9:fa:29:f2:fd:5c:68:82:72:1a:f0:
4c:26:69:55:4c:e9:f4:fe:43:f5:01:90:9e:dc:0f:71:a9:2d:
f6:5a:a4:b8:71:33:7d:82:5f:df:9a:78:6e:71:83:81:b9:4e:
8c:eb:0c:98:db:61:46:42:a1:14:18:f7:ce:45:ff:00:e4:ca:
4f:5f:db:8a:dd:aa:86:9e:95:68:c2:da:95:13:0d:87:e1:5f:
68:84:e2:f6:fc:ca:cd:4f:b1:44:c5:c9:5f:ba:1d:c3:3a:01:
41:f5:6d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org