Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/i-XBrVh2_a_WPS36nOv-J86VNlY.roa
File: i-XBrVh2_a_WPS36nOv-J86VNlY.roa (raw, json)
Hash identifier: HtLqDe9APCyXcLsMJ9mybVnvDEB4y5Ufv5mZWecprpo=
Subject key identifier: 8B:E5:C1:AD:58:76:FD:AF:D6:3D:2D:FA:9C:EB:FE:27:CE:95:36:56
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018B24A41A07DD4E22372862AF0FD115F9B5
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/i-XBrVh2_a_WPS36nOv-J86VNlY.roa
Signing time: Thu 12 Oct 2023 16:06:56 +0000
ROA not before: Thu 12 Oct 2023 16:06:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209371
IP address blocks: 91.228.14.0/24 maxlen: 24
91.228.15.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:24:a4:1a:07:dd:4e:22:37:28:62:af:0f:d1:15:f9:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Oct 12 16:06:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8be5c1ad5876fdafd63d2dfa9cebfe27ce953656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e4:17:ea:7b:a7:6a:3f:8a:20:86:52:9d:a9:
30:a5:17:ca:b5:1f:b8:de:76:af:57:d2:1c:37:46:
4d:bf:5a:7a:09:52:08:9e:bb:10:67:ff:3d:7e:df:
87:ce:2e:62:08:f1:7c:ca:48:cd:d1:9c:1e:63:b2:
83:8d:27:11:ed:a0:09:1c:5e:af:93:3b:66:2f:17:
bf:b5:1a:bc:33:38:70:26:9a:b8:5d:bf:54:1f:bd:
b7:20:6e:49:d6:12:a2:c9:00:65:23:88:94:79:e9:
46:b4:e7:60:b3:03:7e:64:a5:9d:40:48:c2:1c:02:
71:34:9a:08:59:ad:92:3a:f8:c1:3a:50:eb:49:9e:
5e:ab:cc:db:8e:9e:c2:42:7a:a0:3e:a7:b3:10:5a:
0e:af:bb:08:bc:44:2d:05:63:6f:09:a1:81:68:ad:
4e:e4:25:df:23:82:16:2d:4c:fb:01:1e:7e:57:2f:
4f:57:9a:9e:e6:de:27:c8:10:5c:18:d1:6c:47:03:
5a:0e:af:3c:5a:9b:16:b3:8a:22:ce:2d:37:73:2b:
08:e6:37:30:d6:d3:e7:a2:5c:26:79:3d:78:f7:d1:
f4:2c:ec:b6:0e:a3:33:5f:62:63:ef:ab:7b:b3:36:
47:95:08:56:40:04:5d:42:b8:cf:a1:aa:ba:70:94:
ea:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E5:C1:AD:58:76:FD:AF:D6:3D:2D:FA:9C:EB:FE:27:CE:95:36:56
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/i-XBrVh2_a_WPS36nOv-J86VNlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:5d:88:c7:c8:5e:c0:f2:b1:87:5a:00:6b:15:cb:91:45:8e:
4f:ab:37:ba:8c:52:16:09:d7:82:c0:de:c4:a2:26:1d:f0:f3:
c8:14:06:06:6d:23:e0:70:90:22:5a:5a:4c:04:2b:7a:c5:32:
8d:7b:3f:eb:e7:57:fd:3f:6b:4e:91:6c:b0:0d:d7:71:67:6e:
ea:08:23:71:8d:ad:f9:1a:41:67:8a:bd:80:71:22:7a:c8:2a:
2d:e7:ce:9c:88:c0:5a:61:7a:d6:80:f5:a0:a9:4c:19:30:e4:
01:d7:78:9e:bc:6c:6b:7a:60:9d:77:15:a2:32:5a:0a:ea:b2:
67:8d:ef:c2:05:36:07:b3:54:da:a4:f8:f9:7f:84:c0:5e:c1:
6e:75:e5:04:78:cb:dc:89:10:cc:e2:8c:b8:05:67:ae:9a:e3:
1f:64:e1:37:a3:df:6c:eb:98:74:93:57:f8:e7:5f:45:f1:fb:
87:86:01:24:ee:1c:5f:68:07:16:08:26:87:9a:b4:6f:0a:d8:
f9:2b:df:e9:f4:ba:8f:1f:cd:7b:dd:fb:59:c3:02:a6:b1:06:
bc:70:61:08:45:22:32:d7:76:29:79:39:f1:ba:5b:aa:2e:9d:
f9:02:93:84:ab:26:b6:84:8d:26:08:cb:07:2f:a0:7b:2d:44:
ae:8d:75:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 5 15:38:34 2023 by rpki-client on console-fra.rpki-client.org