Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/FXDu2tOtZaeyLoYwo0MpvjCuu5s.roa
File: FXDu2tOtZaeyLoYwo0MpvjCuu5s.roa (raw, json)
Hash identifier: JgGN7i9+ht9GDfdjJxegf7Se7+7nRuUNnbP+cSecwoU=
Subject key identifier: 15:70:EE:DA:D3:AD:65:A7:B2:2E:86:30:A3:43:29:BE:30:AE:BB:9B
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 01857C5D85582CBBF346BB9DDD963C5D4792
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/FXDu2tOtZaeyLoYwo0MpvjCuu5s.roa
Signing time: Wed 04 Jan 2023 10:39:41 +0000
ROA not before: Wed 04 Jan 2023 10:39:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 91.228.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 10:51:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:5d:85:58:2c:bb:f3:46:bb:9d:dd:96:3c:5d:47:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 4 10:39:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1570eedad3ad65a7b22e8630a34329be30aebb9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:98:e9:86:92:24:34:f0:af:aa:9d:f7:a8:87:
4d:07:f9:15:66:b1:41:57:de:e5:a1:a3:c1:b5:67:
42:fa:d0:f0:6c:4b:44:a5:80:99:82:89:4a:1a:93:
f7:8a:ac:f0:fc:0a:e9:7a:ed:da:d8:fd:53:a3:b8:
34:e9:36:5d:da:bb:ae:8e:33:dc:0f:39:b6:ca:a4:
f3:38:d1:9b:e0:dd:f4:b4:d6:d5:de:d5:e6:bf:8c:
5a:3b:92:d8:79:1c:68:ce:b9:45:05:f9:1b:e7:de:
a9:ea:3a:f5:50:b7:9a:f0:e7:7e:64:9b:ae:1a:77:
f6:40:78:82:c2:d7:3b:ba:03:10:38:bb:25:36:d1:
47:ec:d2:9e:80:2e:56:27:b1:a9:a3:b8:e5:59:a8:
e4:cc:36:88:c1:8d:5c:53:48:7d:3d:ac:1d:46:10:
7d:70:1f:03:1a:af:9b:41:68:03:27:38:af:ef:43:
10:b0:23:1b:ce:36:04:90:0e:a8:f9:5e:f4:01:60:
3c:8b:57:93:de:e9:62:da:2d:03:82:47:0b:f1:79:
aa:ae:e7:88:ce:18:50:e6:42:07:65:8c:03:88:f2:
aa:8d:06:c6:1f:03:ae:6a:18:84:70:59:2e:86:c7:
69:83:46:e7:c0:1c:59:bf:82:eb:f6:d5:47:77:72:
8a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:70:EE:DA:D3:AD:65:A7:B2:2E:86:30:A3:43:29:BE:30:AE:BB:9B
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/FXDu2tOtZaeyLoYwo0MpvjCuu5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:db:ed:9b:32:75:3c:4d:67:86:d5:bc:34:a1:e1:28:d6:56:
d9:76:64:77:31:f7:94:33:6e:1a:44:4c:cf:d1:35:50:a4:69:
76:35:75:01:99:76:f1:b4:f5:a4:0a:c2:7d:18:6d:4b:99:3d:
71:7e:ca:0e:59:d7:4d:05:8d:d2:c9:48:72:fa:e4:8d:f7:04:
76:a1:d4:c7:bd:84:82:92:e8:66:1c:f8:3b:26:7b:d0:9c:a1:
55:fb:86:67:cf:dd:23:6a:1c:13:d1:c2:e2:d3:2e:b6:74:89:
94:78:1e:7b:26:eb:73:fe:09:44:b3:59:8f:b3:aa:2b:76:a9:
23:77:2a:be:2a:89:90:23:ef:7e:f5:9d:03:7f:d9:4c:ee:f5:
7b:b1:da:f2:4e:d8:96:0f:65:7d:1a:8c:59:55:ff:c6:09:98:
db:bf:8b:c8:76:a3:a3:7c:d2:c5:2e:a9:2c:f2:91:0d:b3:4c:
1f:b2:5e:f6:3e:9f:d0:68:52:bb:1f:ec:a7:9b:8d:46:b9:8c:
4d:3b:ea:9a:23:02:aa:9e:8b:58:bd:e1:0d:08:9a:b2:ef:0c:
f5:4b:10:aa:67:45:b9:81:05:ed:84:ca:cc:c0:d9:fd:16:43:
b6:31:05:ab:9a:04:28:93:07:74:37:7b:9c:99:f9:dc:2c:a1:
ce:21:1d:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:25 2024 by rpki-client on console-fra.rpki-client.org