Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/194589-6c6e-47ce-9733-13952643f114/1/tGi7BhGbuGA1E1lCcrF75L9EUMI.roa
File: tGi7BhGbuGA1E1lCcrF75L9EUMI.roa (raw, json)
Hash identifier: YyXx+svhT/K3GVxNIOcrKjig8HpF3DCOSr36BIvNZEA=
Subject key identifier: B4:68:BB:06:11:9B:B8:60:35:13:59:42:72:B1:7B:E4:BF:44:50:C2
Certificate issuer: /CN=9a8f4b029e29eedf27d45cd4d390108326be26f0
Certificate serial: 018571B0BAF7CEBC04D31EAB8692899E0EF9
Authority key identifier: 9A:8F:4B:02:9E:29:EE:DF:27:D4:5C:D4:D3:90:10:83:26:BE:26:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mo9LAp4p7t8n1FzU05AQgya-JvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/194589-6c6e-47ce-9733-13952643f114/1/tGi7BhGbuGA1E1lCcrF75L9EUMI.roa
Signing time: Mon 02 Jan 2023 08:54:45 +0000
ROA not before: Mon 02 Jan 2023 08:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49636
IP address blocks: 91.213.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:ba:f7:ce:bc:04:d3:1e:ab:86:92:89:9e:0e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a8f4b029e29eedf27d45cd4d390108326be26f0
Validity
Not Before: Jan 2 08:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b468bb06119bb8603513594272b17be4bf4450c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5d:b8:54:3e:98:b8:bd:8a:eb:46:e8:7b:7e:
8d:7d:af:5f:eb:a9:de:3f:7d:59:71:1d:b3:0c:6f:
37:18:45:11:cb:15:c2:d2:84:77:56:c7:57:61:fa:
b6:10:58:ac:76:68:af:d7:16:13:a9:a7:a5:17:89:
96:07:0f:3a:dd:1e:70:b1:9d:ab:1e:26:5c:3a:ad:
58:34:f8:c4:90:47:ca:3e:05:12:59:12:d6:35:db:
9c:f9:a8:c6:59:4a:e2:02:a0:3e:39:67:d8:37:70:
ce:17:3e:41:eb:2e:97:27:d3:11:d2:ce:c6:4f:ae:
97:14:1d:83:40:20:ee:38:39:ad:57:80:4d:eb:1f:
a5:7f:e5:a8:65:99:4c:b0:20:73:d5:3e:2f:69:ae:
8b:68:f9:b3:70:12:96:38:51:da:4b:dc:3d:37:39:
ff:c2:8b:f6:38:67:b0:1f:9d:fb:c2:1f:94:08:83:
93:d8:d5:fd:f3:3c:80:ce:82:19:d0:65:3b:e3:d2:
c4:e0:a7:3e:57:7d:57:f0:42:93:73:98:01:39:1d:
49:a8:1d:e0:73:9f:8d:2d:fa:05:0c:20:c1:97:7d:
7f:8d:11:38:c3:00:46:0e:97:f9:d2:0d:ed:25:87:
08:b2:ae:17:da:46:51:6c:4f:a4:a1:9c:cd:c5:f7:
d6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:68:BB:06:11:9B:B8:60:35:13:59:42:72:B1:7B:E4:BF:44:50:C2
X509v3 Authority Key Identifier:
keyid:9A:8F:4B:02:9E:29:EE:DF:27:D4:5C:D4:D3:90:10:83:26:BE:26:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mo9LAp4p7t8n1FzU05AQgya-JvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/194589-6c6e-47ce-9733-13952643f114/1/tGi7BhGbuGA1E1lCcrF75L9EUMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/194589-6c6e-47ce-9733-13952643f114/1/mo9LAp4p7t8n1FzU05AQgya-JvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.80.0/24
Signature Algorithm: sha256WithRSAEncryption
24:24:3f:39:37:72:49:5a:13:55:e3:be:33:5b:cd:11:09:df:
82:6a:8f:9e:50:e8:fa:ec:27:f0:d9:fd:f7:e0:35:d2:9a:37:
fa:fb:6f:8c:df:fd:f6:c4:7e:76:03:ab:a2:7a:21:13:0a:6e:
2b:ac:bd:13:dd:e9:a4:32:ac:a2:13:ff:e4:59:35:b5:4c:af:
01:0e:d4:36:32:4d:79:c7:29:45:0e:9b:12:2c:59:7a:cd:b8:
57:4b:e1:db:dd:26:ac:48:ee:08:59:98:a4:79:81:51:ee:9d:
ab:4a:a4:78:7b:63:50:b2:bb:eb:84:26:2c:23:6b:ed:f8:05:
42:3b:bd:fe:b4:f7:c7:82:87:5e:27:b7:c5:bd:da:e0:71:77:
21:a3:a7:a5:2e:78:96:b2:8b:8d:bd:67:9e:c0:d1:cb:53:95:
18:c7:38:39:7b:5e:cd:d3:d3:d5:02:a7:00:5f:6c:d0:d4:20:
35:be:61:b7:2e:2b:0e:2c:96:ba:32:48:df:34:09:82:58:3c:
fa:be:a0:f6:48:fd:36:33:f1:46:8b:63:4e:02:34:6b:38:73:
8c:6f:28:ca:61:d3:55:f5:0c:33:86:3f:60:33:67:90:67:17:
40:22:5c:75:72:45:4b:52:52:c8:e3:3c:2f:c5:c8:78:9a:91:
06:02:e1:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:44 2024 by rpki-client on console-fra.rpki-client.org