Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/yAYxT-EZwLfMoVUhYewIGVWGkyM.roa
File: yAYxT-EZwLfMoVUhYewIGVWGkyM.roa (raw, json)
Hash identifier: 8qpUYc9hgO/As1xUysnvKOBconF0RrYqCuW3znBHMyg=
Subject key identifier: C8:06:31:4F:E1:19:C0:B7:CC:A1:55:21:61:EC:08:19:55:86:93:23
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 0185C5CBB481DE276E5778676A0349D6095E
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/yAYxT-EZwLfMoVUhYewIGVWGkyM.roa
Signing time: Wed 18 Jan 2023 16:52:19 +0000
ROA not before: Wed 18 Jan 2023 16:52:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25098
IP address blocks: 91.228.14.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c5:cb:b4:81:de:27:6e:57:78:67:6a:03:49:d6:09:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 18 16:52:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c806314fe119c0b7cca1552161ec081955869323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5a:fb:41:5b:54:2a:e0:e2:ec:4b:9a:20:b6:
ed:65:fe:8f:83:f9:dc:4d:9c:7e:7b:b3:71:5a:75:
6c:c2:8a:ac:5e:ac:03:34:ac:2b:e6:46:fe:8f:ea:
e5:dd:43:66:b9:43:bd:d1:39:43:24:3c:8a:09:38:
51:70:37:45:89:31:c7:36:96:07:4e:81:b7:f7:b3:
20:e1:48:56:f5:e5:e1:99:ad:d5:e2:c0:c5:77:88:
cb:53:a4:cc:66:97:e9:92:22:5a:e0:8d:91:43:d7:
8c:53:4b:d9:12:55:b0:58:d4:36:dd:a3:cd:64:58:
74:4e:2e:59:cc:b7:1c:a3:86:ab:9d:23:1e:e9:68:
a4:f5:80:c8:a2:a9:66:9e:0f:e4:f1:3f:56:a9:0c:
0d:69:1c:5c:87:77:a1:b8:d2:cd:a9:3b:12:19:db:
78:cd:00:b7:f3:35:98:1c:90:bf:3a:99:7a:d2:d0:
2b:a6:09:5e:27:2d:fe:9b:88:cf:0e:7e:9e:21:cb:
b4:de:b8:10:eb:17:9a:b5:ef:b0:bf:05:c2:20:e9:
09:93:03:f5:b6:9e:33:d2:49:03:eb:a4:2f:94:3c:
08:da:54:0b:fc:b3:31:64:56:33:e0:af:d1:e1:78:
c3:e4:2b:cd:1d:b5:ce:98:b6:e7:1b:58:b0:b0:a4:
3b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:06:31:4F:E1:19:C0:B7:CC:A1:55:21:61:EC:08:19:55:86:93:23
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/yAYxT-EZwLfMoVUhYewIGVWGkyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:f4:eb:02:d8:4d:e8:58:1f:68:d3:79:08:1a:0e:7b:f5:31:
b4:20:8c:bf:32:37:87:d9:c7:a2:f9:75:e3:24:b2:5c:80:04:
1c:bf:f5:8b:af:c3:3a:ef:8a:6e:57:e3:0c:8d:e6:30:b6:30:
a1:ad:bf:39:c5:0a:aa:bc:df:df:33:5f:2c:0b:00:19:08:7b:
fd:ee:7f:c6:c9:53:e0:ea:1e:c3:e2:ef:68:04:d1:d8:5c:5a:
eb:be:f0:08:10:13:4b:a6:ee:3a:91:6c:44:32:52:7c:2f:c5:
5c:a8:9b:98:fe:77:d9:8c:6a:3f:e2:5e:7b:99:e4:73:c4:24:
c3:80:4e:72:58:fa:46:23:5d:3a:57:d7:46:10:76:47:98:be:
a8:a6:fa:7d:6f:b5:d0:64:33:20:5c:2b:d2:fd:e8:05:d8:5d:
9e:9c:93:9b:fc:4c:9a:77:99:37:1a:aa:89:b5:28:41:39:ee:
22:32:0b:80:67:0d:40:fd:97:97:52:9f:b8:57:6e:4c:ca:29:
d0:c4:fc:7c:2a:7e:85:b7:c4:09:73:7e:28:a9:61:7a:f1:b3:
bc:ee:41:88:6c:3e:02:a9:63:64:33:f0:4a:08:03:94:f9:93:
88:d6:35:e7:b3:6a:cc:92:e3:d9:91:89:86:c9:5d:92:65:1d:
b7:49:4e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:52 2023 by rpki-client on console-ams.rpki-client.org