Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/85a03d-87c3-4401-9a0d-ab2bafa1ae4d/1/7pz8GvyOzOumMSqtuAvii2wHVO8.roa
File: 7pz8GvyOzOumMSqtuAvii2wHVO8.roa (raw, json)
Hash identifier: 5FBUYK3fATmZGGlczqUrdpbb7Tjh2LWZP8s2GTTcOmU=
Subject key identifier: EE:9C:FC:1A:FC:8E:CC:EB:A6:31:2A:AD:B8:0B:E2:8B:6C:07:54:EF
Certificate issuer: /CN=37f4b91a3ffce9f97505a73cfd5e4ad4e35e042d
Certificate serial: 0189BA13302BFBAF4232CD9F85EA0A494524
Authority key identifier: 37:F4:B9:1A:3F:FC:E9:F9:75:05:A7:3C:FD:5E:4A:D4:E3:5E:04:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_S5Gj_86fl1Bac8_V5K1ONeBC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/85a03d-87c3-4401-9a0d-ab2bafa1ae4d/1/7pz8GvyOzOumMSqtuAvii2wHVO8.roa
Signing time: Thu 03 Aug 2023 06:26:06 +0000
ROA not before: Thu 03 Aug 2023 06:26:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212059
IP address blocks: 91.235.182.0/24 maxlen: 24
2a10:c280::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:13:30:2b:fb:af:42:32:cd:9f:85:ea:0a:49:45:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37f4b91a3ffce9f97505a73cfd5e4ad4e35e042d
Validity
Not Before: Aug 3 06:26:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee9cfc1afc8ecceba6312aadb80be28b6c0754ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:7d:c1:d8:10:d1:e6:d1:46:c6:09:9c:bd:0e:
09:af:3b:12:ea:98:27:a1:a4:63:8a:58:b7:aa:15:
75:78:8d:d6:c0:c3:2c:5f:9d:29:33:78:0c:32:82:
a5:50:79:8f:59:af:fb:46:81:57:84:86:7a:ca:8a:
b4:95:84:6a:8c:20:09:03:5c:7d:f4:fe:77:b2:2e:
e2:b7:2d:39:29:c4:ff:0c:12:7b:cc:f0:fe:e0:3b:
e1:32:64:c2:b6:f8:0f:6f:3f:3e:b6:07:ec:db:63:
46:57:59:a0:e0:85:b1:4c:dc:d5:9e:ba:08:e7:42:
2b:cd:7d:fe:59:f4:a4:3a:26:83:23:75:bd:1b:1b:
fd:81:92:fe:a2:f7:f5:df:4b:02:17:4a:98:32:77:
d6:80:c6:b0:a3:2e:11:f7:e9:a0:e9:de:1d:8d:6a:
a1:8e:95:54:9c:bd:a7:a1:f8:c0:6c:85:9d:09:03:
79:f2:b2:4d:e6:ce:aa:d8:c5:8d:7a:a5:6b:fd:c1:
3b:b3:48:a7:f0:ba:17:3e:ec:85:bd:93:92:19:99:
b4:b8:5a:08:83:a5:d8:18:72:36:b6:28:04:c2:35:
6c:12:5c:6e:c9:51:e4:f2:b0:4f:4a:7b:b4:d8:88:
93:8d:63:0b:fb:5a:1e:2a:cd:d8:ba:79:53:df:43:
8b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:9C:FC:1A:FC:8E:CC:EB:A6:31:2A:AD:B8:0B:E2:8B:6C:07:54:EF
X509v3 Authority Key Identifier:
keyid:37:F4:B9:1A:3F:FC:E9:F9:75:05:A7:3C:FD:5E:4A:D4:E3:5E:04:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_S5Gj_86fl1Bac8_V5K1ONeBC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/85a03d-87c3-4401-9a0d-ab2bafa1ae4d/1/7pz8GvyOzOumMSqtuAvii2wHVO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/85a03d-87c3-4401-9a0d-ab2bafa1ae4d/1/N_S5Gj_86fl1Bac8_V5K1ONeBC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.182.0/24
IPv6:
2a10:c280::/32
Signature Algorithm: sha256WithRSAEncryption
89:2c:74:0e:44:ed:44:84:74:1b:84:26:ce:0c:fa:de:c4:55:
bc:ef:c5:07:e5:c7:6a:de:f3:21:82:6a:47:e6:1b:40:64:15:
12:3e:df:c4:80:26:c0:5c:da:43:12:e6:e0:00:70:06:9a:07:
ac:b3:a1:53:e9:24:7b:7d:6f:2c:e4:16:12:2a:67:ab:85:e3:
c5:70:79:07:9a:8e:4e:f8:da:b8:c9:27:b8:72:15:56:2a:0b:
fa:61:17:1d:8a:ba:36:02:bb:d1:c4:45:b8:36:36:da:a6:5b:
fa:96:f3:f0:f8:8a:14:07:a4:54:b8:91:c7:4c:74:95:dd:01:
6f:92:3d:a1:2d:f5:d2:35:03:5f:4e:34:11:29:4c:ab:47:35:
1b:8f:0e:f2:6f:cd:20:3b:91:7f:2c:7a:6d:18:cf:09:62:1c:
cf:08:75:6a:f5:f4:f3:54:bd:79:e3:e8:87:6a:ce:c1:cb:e2:
0b:6f:3e:82:fd:5a:aa:f0:5c:19:49:d3:fd:af:f1:7e:b6:e4:
64:51:56:ba:9e:4a:b8:5f:00:7f:09:ef:b1:37:cb:3b:02:b3:
d9:31:dd:57:cc:c3:3b:54:36:8a:c8:ee:33:a8:0d:06:e3:97:
c8:43:e3:2f:89:d4:99:f6:02:cf:61:29:ee:a0:27:22:36:92:
89:41:9b:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:32 2024 by rpki-client on console-fra.rpki-client.org