Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/uwGKihMPU-YNjK53zRPaaCAHYn8.roa
File: uwGKihMPU-YNjK53zRPaaCAHYn8.roa (raw, json)
Hash identifier: w1t4ZUIGczDisTMY9L373mB7MwEGDAeIc1WZbE5Ch9I=
Subject key identifier: BB:01:8A:8A:13:0F:53:E6:0D:8C:AE:77:CD:13:DA:68:20:07:62:7F
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018D17A8F91493B16CC753460450AA199E61
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/uwGKihMPU-YNjK53zRPaaCAHYn8.roa
Signing time: Wed 17 Jan 2024 13:42:46 +0000
ROA not before: Wed 17 Jan 2024 13:42:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 91.228.14.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jan 2024 12:23:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:a8:f9:14:93:b1:6c:c7:53:46:04:50:aa:19:9e:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 17 13:42:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb018a8a130f53e60d8cae77cd13da682007627f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bc:80:b4:e3:c3:51:a6:05:7c:5e:7b:fb:b5:
92:c9:cf:08:4e:4a:32:52:5b:a2:13:13:12:84:de:
e6:7c:a0:73:61:7b:95:6b:98:f6:ec:f5:18:d9:2e:
bd:0a:18:e9:ba:0c:9f:f7:95:fd:4f:b5:8b:50:63:
0b:07:fb:3f:39:c7:80:8d:08:9d:ef:69:e3:04:a5:
fc:4e:e5:3e:b5:b7:40:62:76:2a:3e:c6:fb:0a:40:
01:9e:2c:ec:e1:a0:eb:44:c8:92:62:19:ff:4f:82:
71:71:33:b0:7f:fb:b7:e9:cc:09:55:ab:aa:04:6d:
8d:92:53:26:6f:e2:d0:1f:be:55:80:2b:98:de:24:
ff:b9:d8:83:74:f5:f3:28:51:ba:22:0e:84:4d:3e:
17:09:02:9d:6c:0a:f9:d2:0e:8a:fc:2b:a6:fa:99:
f2:6b:ad:ad:18:ab:89:20:68:6f:89:5a:b6:19:a6:
03:f2:cf:1f:2c:94:60:7e:1e:a2:34:b3:df:70:b6:
32:f3:33:d2:ea:a0:4c:94:18:1a:ae:7b:57:a9:51:
46:c0:3e:06:ff:9d:f0:04:3a:24:1b:29:ef:87:88:
63:ac:a1:c9:16:ad:d2:52:0c:7b:5d:e3:2b:3b:24:
ea:ff:5b:1c:ea:30:69:08:e0:6d:06:df:92:09:bd:
e3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:01:8A:8A:13:0F:53:E6:0D:8C:AE:77:CD:13:DA:68:20:07:62:7F
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/uwGKihMPU-YNjK53zRPaaCAHYn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:47:57:b0:2e:cb:24:17:61:60:a0:a5:ec:eb:60:64:94:ca:
eb:7f:ac:7e:dd:81:ae:66:24:03:7c:6a:0f:a2:95:9d:c6:96:
c2:f3:1c:df:5b:63:67:7f:90:79:3a:e3:f5:94:4e:99:b3:af:
5b:da:32:2f:40:37:61:2e:2d:f6:dd:f9:c1:70:be:ba:e3:a2:
55:7f:14:a9:15:09:6d:c4:2b:36:a5:f5:6e:f4:ff:19:4f:3e:
b5:48:97:ce:d4:c0:27:1e:72:5b:ce:dc:6e:9a:ff:4e:6d:88:
16:8a:23:50:af:33:6c:53:97:9f:ad:90:ed:e8:2a:69:30:39:
8f:8c:74:af:a8:4b:64:26:a5:ab:40:2e:03:81:8d:72:4a:5d:
a2:a5:9c:26:0e:5c:25:40:7f:16:c9:9d:f6:34:cd:78:52:ed:
84:3c:26:15:0b:d0:34:04:e9:80:c9:9a:41:62:d7:d9:02:ad:
60:be:f5:30:81:88:fd:c6:3b:7f:b8:2d:1d:57:a8:ac:98:eb:
31:04:54:ba:96:f9:d8:93:f4:ba:51:8b:41:ce:63:59:73:f0:
09:e5:eb:c0:d6:ee:c3:b8:dc:2f:be:f8:e1:9b:cf:c1:6d:fb:
89:40:78:b1:08:a7:4b:20:68:54:41:80:10:ab:5e:f3:7e:cc:
62:5d:96:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 22 16:40:15 2024 by rpki-client on console-ams.rpki-client.org