Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/i7KFBhaPhLXEQhey2QV0iTRKM08.roa
File: i7KFBhaPhLXEQhey2QV0iTRKM08.roa (raw, json)
Hash identifier: G2EUdW5YnLfkVoL6PVVuiNO4PaEAklIey33Lt3lp2I4=
Subject key identifier: 8B:B2:85:06:16:8F:84:B5:C4:42:17:B2:D9:05:74:89:34:4A:33:4F
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 01890D61A3E20206D5185680C81586B8A5ED
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/i7KFBhaPhLXEQhey2QV0iTRKM08.roa
Signing time: Fri 30 Jun 2023 17:37:29 +0000
ROA not before: Fri 30 Jun 2023 17:37:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211440
IP address blocks: 91.147.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0d:61:a3:e2:02:06:d5:18:56:80:c8:15:86:b8:a5:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Jun 30 17:37:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bb28506168f84b5c44217b2d9057489344a334f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2b:72:e7:44:55:54:c5:59:fc:03:d9:c6:6a:
bd:77:05:4e:38:51:d0:e7:22:37:b6:72:6c:0e:5f:
dd:68:ca:3f:fe:8c:39:26:a2:a0:f6:17:a2:f4:dd:
b4:0b:41:35:b3:92:e8:b4:b5:5c:e2:3c:eb:1b:38:
03:e0:0a:ee:ec:6a:b2:26:e0:59:66:5d:ee:fc:3d:
93:47:a0:41:e6:4e:70:cb:f5:a7:94:61:97:32:ae:
6b:19:b0:d6:24:3c:7c:df:c3:4a:85:5b:c1:29:60:
d8:71:41:d6:bf:73:b6:5e:14:39:41:1e:85:5f:0e:
39:15:03:f6:e1:f5:10:70:b5:93:98:33:e3:a9:1e:
47:b2:ed:42:74:5a:cc:b3:10:23:48:eb:f5:1f:c5:
54:a8:a8:41:62:9c:14:ce:04:cd:63:c1:67:fe:2a:
d2:d1:10:bf:a0:de:cf:e0:ff:f9:30:10:9e:dc:b1:
fb:a9:07:6d:6c:69:6c:2c:f3:40:a6:9e:25:7b:2f:
2b:71:87:92:be:6e:11:23:09:e7:8d:04:79:20:fc:
b5:ea:d0:a3:2c:50:b0:61:ed:c5:c8:d0:62:37:13:
16:74:7d:ef:8a:a1:4b:fe:db:37:5b:71:ec:a4:b5:
27:84:09:95:29:be:51:b7:2d:55:d4:74:2a:b9:67:
6a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B2:85:06:16:8F:84:B5:C4:42:17:B2:D9:05:74:89:34:4A:33:4F
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/i7KFBhaPhLXEQhey2QV0iTRKM08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.120.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:66:9e:19:13:86:ba:3d:86:4f:76:12:9a:f6:2f:2e:19:63:
60:77:ff:e2:97:fc:40:54:95:2e:21:33:91:67:f8:69:fb:94:
4f:ab:a9:d5:3d:23:ca:ec:31:2e:e9:1e:b0:61:4f:91:f3:10:
ce:55:d6:2e:88:c5:b1:de:f8:c9:f6:4a:c0:a7:82:55:02:ac:
e6:91:0f:0b:e9:47:b5:de:e9:dd:7c:b1:a1:ef:5e:90:2f:cc:
81:2a:7d:9b:0f:b9:d1:1e:5e:83:8f:af:3a:e4:18:c9:d5:f4:
0c:d6:25:a5:cb:25:67:d7:f9:4c:7b:54:08:c8:f5:31:c6:a0:
bc:31:a4:b6:67:94:9a:1b:6a:cf:8f:d2:67:3f:53:53:21:7b:
b5:d8:d1:27:1c:7f:0c:f0:32:85:f7:63:58:a8:fd:f3:66:9f:
42:22:75:e2:68:53:b4:31:44:ed:73:b7:10:7e:fe:cc:91:03:
7c:18:48:31:75:f1:2b:b0:93:2f:06:e0:4c:f8:85:c6:da:6c:
3b:bf:8e:26:13:86:91:7b:d0:55:80:b8:01:e0:ce:d7:5e:44:
8a:b1:7d:93:31:f6:7a:f6:ce:ec:7a:51:41:20:ed:26:33:a1:
81:6f:48:be:00:73:0d:0e:02:70:2d:01:56:eb:48:8f:6d:df:
bb:78:ce:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:06 2024 by rpki-client on console-fra.rpki-client.org