Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/N6MniXN8luIcbhq-KpyifjQJBFw.roa
File: N6MniXN8luIcbhq-KpyifjQJBFw.roa (raw, json)
Hash identifier: JBd67FLth2YCQfDR4k1NEYcqcXkM3Pxq6rhT8LTT5fY=
Subject key identifier: 37:A3:27:89:73:7C:96:E2:1C:6E:1A:BE:2A:9C:A2:7E:34:09:04:5C
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01891AA7E5767AE63E8EDB8366E07061B9C2
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/N6MniXN8luIcbhq-KpyifjQJBFw.roa
Signing time: Mon 03 Jul 2023 07:29:18 +0000
ROA not before: Mon 03 Jul 2023 07:29:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147287
IP address blocks: 91.243.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1a:a7:e5:76:7a:e6:3e:8e:db:83:66:e0:70:61:b9:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Jul 3 07:29:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37a32789737c96e21c6e1abe2a9ca27e3409045c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5d:d1:dd:cd:20:11:b2:ad:67:8f:5e:94:ae:
0f:d2:32:08:f3:02:55:43:d0:af:26:9b:a0:ce:56:
dd:a8:a8:1c:23:f5:48:8f:6a:81:44:63:ee:e3:f3:
ef:2b:31:05:e2:24:b6:b7:c0:33:03:f7:f8:b0:f2:
16:31:8f:09:df:bf:19:39:13:b2:0e:79:28:e8:cd:
e7:6f:36:ba:67:c2:15:52:19:7b:b9:1c:50:60:dc:
0d:8c:03:77:1e:c5:c2:3b:4d:2a:6f:5e:46:aa:b3:
49:77:a6:a5:11:11:09:ac:ec:11:a6:52:b1:5c:63:
67:e0:26:a6:5a:17:25:71:84:e4:60:0f:ea:ee:71:
16:8e:bd:0b:69:6f:b5:90:e1:5c:cc:7e:2e:a7:d2:
b6:05:df:67:d3:21:4d:e3:10:4a:4c:9c:37:0e:f5:
e9:bc:11:9c:1d:30:2f:c0:9c:a5:88:7d:3e:39:fe:
04:4d:2a:25:77:e1:9d:40:2e:56:3f:b1:f4:52:8f:
1f:8b:c2:46:6d:e2:3a:98:de:ac:29:83:5f:a2:c9:
19:eb:87:36:8d:bc:e2:64:47:72:c3:8b:39:67:71:
a9:dc:8b:89:57:5f:28:bb:f4:7e:e5:5b:b3:57:2f:
92:98:a0:df:ea:32:cd:88:40:c9:67:68:42:d7:55:
00:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A3:27:89:73:7C:96:E2:1C:6E:1A:BE:2A:9C:A2:7E:34:09:04:5C
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/N6MniXN8luIcbhq-KpyifjQJBFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.176.0/24
Signature Algorithm: sha256WithRSAEncryption
72:99:23:85:3a:ef:26:72:08:51:5a:5d:2a:a0:e0:25:d5:f4:
9a:a9:6a:0a:a5:5d:d3:fd:fa:91:30:24:f1:c1:99:9d:e3:fc:
96:42:c2:ac:69:8d:9d:04:3c:74:7b:24:40:eb:2a:d1:6d:1f:
cb:ce:6b:c9:1a:bb:44:fa:67:33:65:92:a3:3b:38:4b:4a:67:
0a:16:e6:3b:9f:09:d8:7d:96:91:b0:c6:1b:52:5c:2e:d7:43:
3e:f4:95:6c:4d:27:9c:31:fe:ae:ec:11:2b:7c:5f:c9:0c:10:
8d:12:e2:bd:95:36:29:da:8f:55:a8:13:a8:42:17:b7:83:ed:
60:54:f0:04:93:d7:82:de:9a:79:cd:bf:2b:09:33:6e:9c:bc:
d4:49:01:08:a7:19:c8:c6:01:8b:ad:60:9a:bd:15:c1:d6:e2:
69:08:bb:c6:d7:36:f9:6f:44:c0:f6:de:c1:cf:50:f9:b0:95:
43:1b:05:e0:be:a0:69:e0:0c:6b:d1:98:12:0e:6a:65:7c:1e:
3b:6e:1b:e5:2d:ce:f2:50:59:0e:e9:11:4e:b5:ad:6d:e1:58:
d3:a9:11:28:dd:85:d7:08:46:5f:11:84:f5:37:4f:dd:37:4c:
18:a5:3e:75:4d:fb:28:18:96:97:26:cf:f2:a4:d2:9d:8e:ef:
c3:87:52:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 12:00:43 2023 by rpki-client on console-fra.rpki-client.org