Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/JgjQy5O-GleVx53DO3nPubKK3BE.roa
File: JgjQy5O-GleVx53DO3nPubKK3BE.roa (raw, json)
Hash identifier: 9wy6VliegT+LvIopkD7oJiCQADz7scF0tWvdFTYtABg=
Subject key identifier: 26:08:D0:CB:93:BE:1A:57:95:C7:9D:C3:3B:79:CF:B9:B2:8A:DC:11
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018C734F4DF27182FA937C3862457B763A00
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/JgjQy5O-GleVx53DO3nPubKK3BE.roa
Signing time: Sat 16 Dec 2023 15:47:06 +0000
ROA not before: Sat 16 Dec 2023 15:47:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212744
IP address blocks: 91.228.14.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:73:4f:4d:f2:71:82:fa:93:7c:38:62:45:7b:76:3a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Dec 16 15:47:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2608d0cb93be1a5795c79dc33b79cfb9b28adc11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c0:37:2f:96:6f:41:a3:ab:25:41:56:b9:2e:
5e:63:0e:98:a9:eb:3d:ae:d8:60:61:3c:cd:f4:de:
50:e1:a0:d9:ac:45:e7:51:da:b5:d8:d0:10:93:13:
bf:76:e8:c3:94:e5:83:60:ac:f4:36:03:d3:49:2a:
ba:c3:2b:4d:c4:d5:dd:ea:4f:8b:dc:2f:9d:60:1a:
6a:dd:b3:4d:22:4a:56:22:ae:58:15:7e:ff:de:3e:
f5:ed:96:d6:36:f5:0b:e2:53:34:62:f7:5a:db:35:
9a:a5:e9:b9:50:28:60:8f:c1:93:82:6c:2c:ed:e7:
77:d6:cd:cf:b3:27:34:ec:64:8d:b7:f6:d2:c9:0b:
7b:1a:91:2d:76:f1:ce:68:82:ba:1b:00:93:28:10:
f2:5b:14:3b:19:e9:df:8a:2d:f0:b7:4a:5d:c1:92:
f4:97:f2:b1:26:55:44:56:9b:5e:85:85:ed:40:15:
ac:78:b1:69:75:8d:37:2a:48:f1:80:31:c0:45:5b:
c1:10:24:c5:5b:10:52:04:6d:6b:23:bb:f2:1c:26:
ee:87:54:f1:1c:99:06:b5:14:95:fb:37:44:33:fa:
b3:a5:8f:f6:c3:64:37:56:2d:06:19:fc:1d:bb:e8:
49:96:4a:26:fc:4f:6c:01:18:d8:65:81:32:77:13:
ea:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:08:D0:CB:93:BE:1A:57:95:C7:9D:C3:3B:79:CF:B9:B2:8A:DC:11
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/JgjQy5O-GleVx53DO3nPubKK3BE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:2f:67:b2:6a:3b:bd:92:1d:01:e0:ad:0b:2f:30:5d:8f:b3:
af:78:49:47:d8:f5:d2:69:c6:99:d6:45:7e:f4:6f:a1:be:05:
5b:8b:db:61:67:d7:fe:c5:8a:ea:fa:89:b1:c1:91:c7:27:64:
5f:6c:23:b1:29:96:92:e3:d3:e8:a2:f0:eb:c8:af:30:ba:c8:
74:cc:37:e0:f2:3b:48:98:00:23:b2:a6:89:82:0c:f0:eb:24:
70:c6:3a:a0:62:50:d0:93:ae:24:c3:7e:b8:fe:f2:1e:1a:24:
c5:54:4f:21:4a:48:48:c8:e1:bd:72:03:92:4b:90:4a:3b:c3:
10:af:a5:d5:28:16:f0:d0:90:87:75:81:0d:40:9b:c0:b4:f0:
40:48:a7:fe:88:d5:0a:1d:20:78:47:24:73:e4:0f:dc:2b:b5:
31:19:d5:d6:ba:08:35:db:7f:b6:b4:b5:63:ab:0e:0e:02:ea:
06:19:cd:d7:1d:c2:d8:d9:e4:3e:ec:df:ee:87:3d:4b:ed:8b:
e9:5a:bb:13:cb:72:09:40:7e:5a:52:d8:c6:75:b6:e5:b4:de:
31:5f:0b:f2:39:7a:13:b2:2b:3f:23:23:50:55:2f:10:03:3a:
8e:12:db:2e:76:3b:b9:48:3b:e7:77:00:ba:e8:97:f3:7e:ae:
af:42:83:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:28 2024 by rpki-client on console-ams.rpki-client.org