Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/nFupiyC_xjCf7K6AA33Kkp2u1zw.roa
File: nFupiyC_xjCf7K6AA33Kkp2u1zw.roa (raw, json)
Hash identifier: UECV/RnTBNbS8HDiWYgOs0rAqxPquEKT0aMgYnfqAsk=
Subject key identifier: 9C:5B:A9:8B:20:BF:C6:30:9F:EC:AE:80:03:7D:CA:92:9D:AE:D7:3C
Certificate issuer: /CN=2fc20be6167890247303214197658ca7c9676150
Certificate serial: 018570FBA38B8C497BC66D6A5B71D8E2ADCB
Authority key identifier: 2F:C2:0B:E6:16:78:90:24:73:03:21:41:97:65:8C:A7:C9:67:61:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/nFupiyC_xjCf7K6AA33Kkp2u1zw.roa
Signing time: Mon 02 Jan 2023 05:36:57 +0000
ROA not before: Mon 02 Jan 2023 05:36:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31898
IP address blocks: 91.223.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:a3:8b:8c:49:7b:c6:6d:6a:5b:71:d8:e2:ad:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fc20be6167890247303214197658ca7c9676150
Validity
Not Before: Jan 2 05:36:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c5ba98b20bfc6309fecae80037dca929daed73c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:09:ce:35:37:8b:c5:8e:98:ca:0f:ef:b5:12:
6e:9d:d5:26:c5:79:9c:8d:b4:60:10:a5:95:f1:6e:
8f:12:77:af:83:ed:01:5c:d6:51:58:36:d4:f8:b3:
57:06:a5:23:b8:53:4e:17:7d:52:79:86:b9:f1:6e:
b0:aa:e7:64:ac:bd:1c:eb:f3:d7:c1:42:5c:be:6a:
83:da:9e:d2:95:86:04:bc:10:09:9b:3e:f8:6c:81:
c5:81:55:c6:d1:f6:a0:b9:04:13:ab:79:4b:8a:91:
69:03:2f:c2:4c:bd:31:7f:f9:44:12:b5:bd:76:7a:
82:d9:86:54:f3:c6:f5:09:70:f1:ec:09:3d:fa:08:
30:8c:7a:d1:f3:b7:e4:db:3a:a6:2d:44:d3:b4:6f:
20:17:d3:1c:94:6d:3a:da:8d:64:6c:51:6b:7a:87:
97:52:1e:2b:d0:f9:d1:ec:3e:64:38:43:21:7c:f9:
8a:77:db:6e:81:c0:2d:d3:f6:da:a4:21:af:b1:f4:
04:60:53:1e:8e:d0:43:0c:24:d3:14:74:ce:17:9d:
b6:e8:11:8e:55:f2:1b:31:40:ba:0f:7b:25:7e:90:
fd:24:61:64:7b:f1:72:81:5c:6e:61:fa:9e:4e:2b:
d2:c9:29:fe:90:3c:71:98:ba:b6:84:c6:b8:8d:17:
c1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:5B:A9:8B:20:BF:C6:30:9F:EC:AE:80:03:7D:CA:92:9D:AE:D7:3C
X509v3 Authority Key Identifier:
keyid:2F:C2:0B:E6:16:78:90:24:73:03:21:41:97:65:8C:A7:C9:67:61:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/nFupiyC_xjCf7K6AA33Kkp2u1zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.237.0/24
Signature Algorithm: sha256WithRSAEncryption
14:4a:7d:1b:84:be:ca:25:9a:f4:f1:7e:8a:35:20:d2:87:f3:
c6:da:42:c0:94:b0:55:68:69:22:33:f1:7d:17:f4:25:20:88:
29:28:0a:88:95:55:ce:c2:c4:31:c1:dc:a4:ce:83:3d:95:e5:
c7:c4:8e:84:bd:7e:c3:cf:3c:b4:db:af:4d:94:ee:05:75:cc:
3e:11:c7:fa:cd:58:a6:3f:d7:80:12:c3:17:e5:b1:3f:f3:87:
41:18:fb:d7:b8:87:94:29:1a:65:0f:87:1f:0a:95:33:a6:35:
17:98:49:c5:28:1e:ab:f8:59:1b:c0:c5:3e:84:a0:87:ae:bb:
03:47:d1:0b:be:6b:8d:38:02:ae:02:6a:5c:9d:12:79:77:22:
75:7f:72:8b:f2:41:81:d4:24:04:f8:29:ad:00:a6:f0:22:63:
34:b2:fa:3f:23:29:5e:04:fe:e9:44:44:47:68:6d:de:d6:07:
60:91:08:a0:ec:f2:20:4c:e6:57:46:06:73:1c:0d:e2:7a:57:
15:32:c6:4e:7b:1a:c6:99:28:2c:93:b2:d5:c6:c3:d1:99:04:
86:2a:3b:87:e5:dd:d7:d9:97:36:d0:02:e8:01:c5:a5:ec:3b:
5c:d2:e4:24:27:3e:d8:b8:ca:3b:80:1a:7b:6d:b8:57:45:6e:
0d:25:14:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:16 2024 by rpki-client on console-fra.rpki-client.org