Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/IZ7z_--O1pkdVxFzRzhIVkVEFHQ.roa
File: IZ7z_--O1pkdVxFzRzhIVkVEFHQ.roa (raw, json)
Hash identifier: qfQoMjwgpqCqahihmos+VQrWWw9Ol+NnGmKE+bKtkJk=
Subject key identifier: 21:9E:F3:FF:EF:8E:D6:99:1D:57:11:73:47:38:48:56:45:44:14:74
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 01856FF022FC7F58F1D187A1D922A6BF41F5
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/IZ7z_--O1pkdVxFzRzhIVkVEFHQ.roa
Signing time: Mon 02 Jan 2023 00:44:46 +0000
ROA not before: Mon 02 Jan 2023 00:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 91.228.13.0/24 maxlen: 24
94.154.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Jan 2023 13:13:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:22:fc:7f:58:f1:d1:87:a1:d9:22:a6:bf:41:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 2 00:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=219ef3ffef8ed6991d5711734738485645441474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5b:a4:0c:7a:29:f0:29:ba:54:e3:3e:bd:b8:
6c:3d:53:6b:45:0f:78:76:3f:1c:49:5f:d3:19:c0:
d1:23:19:c5:3e:b1:5a:10:d0:16:51:c5:3c:60:af:
76:df:08:7c:bf:e5:72:61:31:a2:55:3f:c0:75:3a:
d0:55:e0:34:ac:50:f2:53:ed:36:ba:23:38:a1:44:
67:39:1e:14:2a:f8:2b:25:0c:54:89:4d:30:69:67:
1e:a2:e0:b5:28:94:b3:dc:64:88:81:bb:64:4c:f7:
ea:58:bf:18:a2:d0:d3:06:ee:63:c5:a4:63:fc:75:
89:b3:b9:84:1b:fe:d1:d0:26:90:dd:38:1d:5c:7c:
7a:f7:1c:c0:07:87:15:85:0e:55:03:7c:89:06:cf:
88:98:8e:ae:80:bd:46:35:4a:61:ca:6e:6a:a4:35:
61:14:05:f1:79:88:92:90:90:f3:b5:50:87:cc:14:
7f:19:4c:67:35:fd:ce:70:fc:81:26:d4:c5:cf:07:
f4:97:86:60:31:d4:33:ca:8f:22:0e:9c:87:5c:92:
09:79:be:fd:9c:e7:da:7c:14:f1:12:9e:fa:7e:06:
3e:9d:3a:c0:93:fd:be:c8:24:6f:5a:9e:bb:96:72:
fe:f8:0d:0f:82:97:e9:fb:a8:15:1e:5d:5a:40:ea:
4c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9E:F3:FF:EF:8E:D6:99:1D:57:11:73:47:38:48:56:45:44:14:74
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/IZ7z_--O1pkdVxFzRzhIVkVEFHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.13.0/24
94.154.38.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:ca:6b:59:72:ab:eb:bd:99:c9:89:4c:ea:a2:2c:a7:ce:49:
6d:4c:7a:8f:6e:b6:70:b6:83:b7:3b:ec:83:ed:e1:72:e0:c2:
e0:71:82:4e:f0:22:96:1c:f4:d1:a4:d7:83:8a:7f:39:00:2f:
7b:50:9e:9a:98:62:33:70:10:e1:c3:6c:2c:af:d5:18:bf:6d:
8e:88:ff:6d:9d:b0:1c:e7:49:c2:be:26:6c:b2:85:c8:f8:eb:
9b:17:97:1f:da:8d:1d:fa:3a:e9:40:62:6d:35:7b:f3:94:3a:
a7:bf:29:a7:e1:26:f6:79:f1:ce:83:08:3e:a6:2f:81:cd:c6:
4a:ad:95:78:41:e8:cd:86:ff:eb:65:74:86:83:3c:d8:9d:55:
e4:f8:81:0b:5c:33:96:a0:1a:91:6a:5c:af:e7:21:90:8c:04:
d6:fe:21:ec:c2:f6:4c:90:ee:91:88:27:76:ab:48:c1:ce:08:
81:f9:ae:0d:d3:a4:2d:41:de:b1:c5:7a:f5:51:86:eb:61:a6:
e6:4a:18:ff:ef:56:4a:82:87:76:25:e1:a0:e4:e2:5a:c9:b2:
03:00:20:a3:fd:ba:63:44:dc:1e:a3:d9:a4:89:dc:11:b5:cc:
70:2c:e5:26:ac:f3:44:bc:30:44:50:8f:e1:45:a8:5b:f4:90:
e3:4e:06:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:25 2024 by rpki-client on console-fra.rpki-client.org