Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/41FzJKhO8ciCuFwARZBD83tyAdI.roa
File: 41FzJKhO8ciCuFwARZBD83tyAdI.roa (raw, json)
Hash identifier: NzfsjPu+YckV57fl6YZ66tIFkfjiRA+LFSRQsDa3ePA=
Subject key identifier: E3:51:73:24:A8:4E:F1:C8:82:B8:5C:00:45:90:43:F3:7B:72:01:D2
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018EE816B65CEB8A0743CD1DAFA2F50C8F67
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/41FzJKhO8ciCuFwARZBD83tyAdI.roa
Signing time: Tue 16 Apr 2024 18:06:26 +0000
ROA not before: Tue 16 Apr 2024 18:06:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205733
IP address blocks: 91.228.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 May 2024 13:48:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e8:16:b6:5c:eb:8a:07:43:cd:1d:af:a2:f5:0c:8f:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Apr 16 18:06:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3517324a84ef1c882b85c00459043f37b7201d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:49:fc:a9:22:ff:26:6a:78:6b:ef:7c:c1:f0:
26:68:0c:bf:98:04:a3:d7:91:04:c8:be:4d:31:dc:
b5:5b:ff:eb:8a:49:66:29:0a:db:2d:0a:e4:9f:fc:
5e:09:be:58:88:f1:c0:5d:0b:ae:a9:b6:f1:ac:8d:
54:61:db:b0:03:cc:ee:69:62:33:da:84:fd:4b:1c:
73:af:c5:86:b2:e8:68:d9:7f:7c:42:cc:07:6e:86:
ef:19:33:0b:c6:ef:0b:f0:40:a4:56:b4:0a:7c:2d:
a8:87:4a:42:1a:e6:73:a5:b6:c3:2a:16:84:1a:c3:
1c:e3:b1:02:9d:4c:e0:a2:32:c9:34:64:18:ca:4d:
c1:6a:b4:b4:78:6f:9e:18:5a:d1:9e:f5:bd:79:0f:
ec:4b:8e:1d:4a:d6:67:f2:cc:91:8a:2b:2e:ff:c6:
a5:09:6c:d5:8b:00:35:3e:9e:c8:ba:1a:fa:5f:48:
17:5f:bf:6c:46:5c:61:be:84:7c:66:70:92:d9:e4:
12:36:89:2c:9f:0f:e0:b8:2a:97:f5:9c:60:24:93:
c2:40:00:02:49:c5:55:9f:69:10:70:60:04:55:e2:
a7:e8:fb:c0:d8:8b:95:0e:67:2b:23:f7:c9:a9:e1:
f4:09:90:e9:b3:a5:39:0c:c3:a3:be:27:a7:a9:ef:
b6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:51:73:24:A8:4E:F1:C8:82:B8:5C:00:45:90:43:F3:7B:72:01:D2
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/41FzJKhO8ciCuFwARZBD83tyAdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.13.0/24
Signature Algorithm: sha256WithRSAEncryption
17:df:e4:c8:e2:14:f7:30:55:c0:68:4f:f5:97:8d:d2:de:30:
95:b8:be:07:c7:b9:e4:3d:b4:83:b4:00:77:ec:de:d2:57:df:
16:44:94:0d:eb:bc:ba:ed:cc:83:d7:1b:e8:4f:e9:af:fe:19:
19:a7:65:6b:5b:9e:f2:cc:99:be:b0:a4:5f:16:d2:9f:bc:39:
de:5f:50:5d:a4:57:2a:b6:fb:4f:0f:c6:e2:2c:de:3e:9f:97:
7b:8c:b8:40:59:a8:a1:5c:30:c0:08:b4:af:f5:be:73:6f:ea:
1b:fe:90:ba:97:64:39:66:48:e3:53:a2:77:02:82:00:1f:01:
2e:53:a9:87:2e:25:37:6d:5c:63:d4:5b:79:24:18:df:aa:17:
7d:3c:08:c0:b2:80:94:89:ad:1c:52:75:30:4f:ee:6d:58:bd:
de:9f:3b:04:da:e1:1d:73:b0:d0:86:9b:a5:7c:61:39:72:a9:
9e:23:87:7f:6a:78:45:a8:21:56:8a:aa:05:26:6a:ff:af:bd:
6e:4d:08:a6:f4:bf:60:79:81:d7:bc:87:ee:5f:3b:85:b2:2a:
cc:95:8a:79:bb:49:87:44:47:c2:5c:43:26:bd:ec:be:21:a6:
0f:b9:93:2e:c7:41:aa:be:21:eb:73:d0:80:d8:dc:3c:32:16:
60:ee:93:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 17:49:03 2024 by rpki-client on console-fra.rpki-client.org