Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/EUiIXEMxYonClqN53R2eiYJG04U.roa
File: EUiIXEMxYonClqN53R2eiYJG04U.roa (raw, json)
Hash identifier: ZR8P2INgQGszOwNtyfdRtVQKriK29CQklXH8yI7KZzs=
Subject key identifier: 11:48:88:5C:43:31:62:89:C2:96:A3:79:DD:1D:9E:89:82:46:D3:85
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 01862BAFD59FCEA445C5FACA6958F67CF6E4
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/EUiIXEMxYonClqN53R2eiYJG04U.roa
Signing time: Tue 07 Feb 2023 11:43:09 +0000
ROA not before: Tue 07 Feb 2023 11:43:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210283
IP address blocks: 91.228.200.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:af:d5:9f:ce:a4:45:c5:fa:ca:69:58:f6:7c:f6:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Feb 7 11:43:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1148885c43316289c296a379dd1d9e898246d385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:49:2f:d9:cb:37:6b:a5:2e:50:a9:db:97:d3:
74:1d:d8:54:9f:a6:f0:fa:7c:27:b0:e2:9b:bd:de:
7b:cc:7d:20:01:97:8e:41:36:c2:11:0f:b8:4d:6a:
74:f0:0b:63:5a:82:60:e4:71:d7:0e:dd:05:9c:31:
05:cc:f9:34:6a:64:f8:eb:12:2b:93:a1:ef:2a:c7:
09:24:e9:f6:c8:21:15:1c:da:8f:9e:a4:d1:ed:94:
7d:24:69:41:0b:8d:3d:da:ad:91:54:38:53:b0:69:
67:24:4d:e2:40:ad:fe:cf:68:91:3d:f6:88:cb:94:
7e:8f:45:0c:ac:1a:3f:93:53:00:c0:a1:78:da:9d:
57:60:22:d6:89:18:46:7c:e4:17:24:45:e3:23:07:
f5:29:57:69:19:da:af:cc:2f:c6:c4:e2:26:1d:ed:
b1:b6:c6:d3:3b:89:76:d7:e8:d6:91:f1:87:3f:7d:
8b:a7:08:c6:c6:de:b6:0b:4a:df:dd:38:d3:7f:0d:
cd:15:29:42:12:83:31:57:92:d3:cb:b5:3c:53:23:
3c:25:d2:93:d2:18:71:4f:86:67:22:9e:90:56:84:
66:c9:66:b8:47:ee:c5:f5:46:e0:3f:a9:d2:7c:32:
a3:9e:b7:ff:89:0a:a6:21:11:c1:9d:b5:08:7c:e5:
15:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:48:88:5C:43:31:62:89:C2:96:A3:79:DD:1D:9E:89:82:46:D3:85
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/EUiIXEMxYonClqN53R2eiYJG04U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.200.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:2b:70:d9:1d:0d:1d:aa:9d:ff:1a:a7:c0:ce:8d:ef:3d:15:
fb:2f:b4:46:60:3c:5e:43:50:43:ff:27:2f:5e:97:5c:da:ab:
ba:92:83:32:54:45:02:18:e7:8d:fa:44:b6:93:02:c8:f6:5c:
8f:cf:83:00:d0:68:58:66:da:aa:70:fc:ba:13:7c:0d:df:4e:
2e:fb:d8:3b:13:eb:fe:2d:fc:6f:51:99:48:64:67:09:65:64:
7c:fc:b6:35:94:67:1d:e5:a4:b5:42:cd:89:0c:55:84:34:c7:
6a:a7:ec:03:51:cf:17:c0:e1:1a:3f:67:09:cb:c0:b9:c8:a9:
77:93:74:bf:ae:3e:a2:2b:21:31:0d:3d:ca:64:fe:15:f4:a1:
b9:3b:56:c7:d7:e2:5a:b9:b1:7f:8b:0e:20:47:0e:13:59:e2:
dc:b5:e1:c9:fd:a9:46:f5:0d:eb:55:6d:31:00:54:98:15:91:
06:4d:76:89:fc:7c:b5:c7:0e:64:f0:07:2e:ef:cb:b5:c1:3d:
5c:8b:5d:72:30:db:0a:55:e2:1a:5f:5d:19:4a:fa:47:be:a6:
3f:83:d7:9d:83:01:a6:97:35:25:41:c9:a8:be:70:8e:41:1d:
f2:97:7f:af:b9:52:2d:a8:ff:49:e9:d9:8a:1e:ce:06:0c:5c:
c5:7f:a3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:09 2024 by rpki-client on console-fra.rpki-client.org