Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/JXDxU6J5kk6vZLRvc-aA4j6dXGA.roa
File: JXDxU6J5kk6vZLRvc-aA4j6dXGA.roa (raw, json)
Hash identifier: nxQot6XbIsr7xBvkQ8fJzgx+0fk0CH7/DRXDCFHxES0=
Subject key identifier: 25:70:F1:53:A2:79:92:4E:AF:64:B4:6F:73:E6:80:E2:3E:9D:5C:60
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018B9FFCF2C50000F5D9B789C6DF13DAB9C6
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/JXDxU6J5kk6vZLRvc-aA4j6dXGA.roa
Signing time: Sun 05 Nov 2023 14:57:16 +0000
ROA not before: Sun 05 Nov 2023 14:57:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209371
IP address blocks: 91.228.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Nov 2023 10:53:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9f:fc:f2:c5:00:00:f5:d9:b7:89:c6:df:13:da:b9:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Nov 5 14:57:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2570f153a279924eaf64b46f73e680e23e9d5c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:df:84:4c:49:09:d4:6a:22:b7:cf:0f:55:a4:
75:00:fa:49:56:6c:9c:a7:b8:3a:53:13:ce:35:67:
39:3b:e0:93:c8:28:e7:02:bc:22:51:67:9b:3d:db:
41:b7:ae:89:d0:68:47:cc:ff:e3:23:fe:2f:82:50:
ed:95:1f:3a:fe:f5:33:22:7d:de:e4:34:7c:96:01:
54:7c:fe:0e:7f:55:e0:6d:c7:20:d7:d9:3f:4c:a2:
34:be:7f:2c:66:ec:d4:2e:b9:b9:56:c7:17:4d:c9:
76:89:31:73:cd:1e:7d:7f:0b:64:12:9c:25:18:28:
10:e9:4c:1b:71:a7:8a:e6:34:6e:f4:7e:88:d4:5c:
10:da:6c:63:4a:90:57:21:e3:e9:88:75:b5:1f:2c:
f2:be:2e:68:c6:bb:98:a7:0d:45:bf:47:60:c2:6b:
3e:79:03:34:54:37:75:ef:7e:44:3c:05:2f:a7:c1:
37:94:b6:c6:21:1b:56:2b:19:fb:25:85:58:61:e8:
46:b6:b7:d7:2b:c6:76:6c:27:df:14:17:1e:eb:83:
22:b1:07:46:0a:ef:4e:3e:25:09:cd:0b:cd:af:f3:
3c:8e:82:e2:33:27:71:19:73:1a:cd:7b:b7:1c:71:
1d:db:67:2f:12:fb:90:e5:0e:cb:74:2e:51:aa:60:
5b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:70:F1:53:A2:79:92:4E:AF:64:B4:6F:73:E6:80:E2:3E:9D:5C:60
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/JXDxU6J5kk6vZLRvc-aA4j6dXGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/24
Signature Algorithm: sha256WithRSAEncryption
09:34:b9:6f:32:0d:e1:71:97:f3:0c:dc:e7:3d:c3:07:e6:04:
6c:a5:de:52:d3:ad:2e:67:1f:37:aa:c0:97:dd:2c:9c:6c:46:
fd:1a:eb:2b:e7:ad:f6:fd:ac:dc:7c:c1:72:ef:22:4b:f1:ee:
89:ca:67:54:80:ff:d1:fc:a4:0b:8a:10:97:70:5a:44:02:ed:
f4:7c:f7:00:7d:2a:37:59:b0:1e:99:20:e0:32:85:09:1c:39:
5e:3f:ba:c8:0e:8a:76:46:ab:31:d1:78:0a:d1:5a:2c:17:d2:
08:55:ac:3e:f3:02:b5:c1:08:17:0a:9d:b1:bb:69:2c:51:f6:
a0:2c:80:eb:8c:1b:ef:3c:38:ff:e0:c0:12:b6:c8:d2:d4:01:
63:17:8c:a9:f0:c6:34:92:2f:6a:4c:12:af:29:97:19:83:5a:
71:74:cf:63:ca:6f:2c:fb:57:f1:da:61:f4:2b:e2:62:56:c4:
c5:b2:44:8b:9a:e7:84:c4:20:d4:1c:30:e6:30:27:b9:6b:08:
ac:ad:39:41:93:bb:31:7a:1a:b4:bc:00:19:01:63:95:d7:a1:
5f:85:9b:a8:15:12:3a:97:62:e6:1e:7f:1a:44:15:6f:29:37:
95:1b:2f:1c:49:30:43:5c:fe:f6:a0:c7:a9:f9:78:4f:49:97:
b8:c7:a1:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:26 2024 by rpki-client on console-ams.rpki-client.org