Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/jP-_vBOBPNokRVijPP8-USYUyUc.roa
File: jP-_vBOBPNokRVijPP8-USYUyUc.roa (raw, json)
Hash identifier: yItgJzTyryAhSMJxZ9Wt+gH5oZtMu/RylYFf6lRblQQ=
Subject key identifier: 8C:FF:BF:BC:13:81:3C:DA:24:45:58:A3:3C:FF:3E:51:26:14:C9:47
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 01896FF445BCDAD70445EF8D821A534982D7
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/jP-_vBOBPNokRVijPP8-USYUyUc.roa
Signing time: Wed 19 Jul 2023 21:00:26 +0000
ROA not before: Wed 19 Jul 2023 21:00:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 91.199.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6f:f4:45:bc:da:d7:04:45:ef:8d:82:1a:53:49:82:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Jul 19 21:00:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cffbfbc13813cda244558a33cff3e512614c947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:90:60:7f:d9:0a:fb:6e:1a:a8:90:a2:c6:1a:
b0:7c:60:06:fe:fa:d9:ef:21:50:1e:99:10:7c:60:
73:2e:6a:db:2f:65:64:5a:3c:0d:fd:32:d5:a4:61:
51:87:75:2d:f4:9d:4c:fc:c2:a4:31:69:fe:0b:8f:
2a:d9:82:e9:f3:23:c2:ad:43:89:c0:30:f9:73:77:
4f:78:05:b7:d9:4a:8b:5e:a5:73:36:e7:6d:13:cc:
c0:80:ec:18:91:a5:d1:31:bc:30:d2:4a:4d:3e:b6:
7c:1d:e1:f2:e9:c2:29:87:11:e5:62:d3:99:bf:3c:
6e:21:d4:77:c9:bd:04:90:64:39:cd:65:08:5c:5b:
cd:19:bc:03:0d:f6:97:1c:0c:06:64:c4:8e:95:e2:
42:b6:56:20:c4:fe:10:35:98:a1:90:81:34:f7:3a:
c3:0c:05:78:00:76:37:c4:ab:84:10:90:a6:17:dd:
29:dd:41:a7:1a:48:b0:0c:18:7e:7d:a7:ac:6d:2c:
15:9f:17:45:a7:5a:f1:58:93:cc:4e:27:38:a8:4e:
b2:b7:52:30:2e:cc:e9:f8:ba:9e:08:9f:d7:1f:1d:
fc:80:3a:94:0e:ac:e3:59:8e:97:2e:60:b3:38:83:
59:00:a1:2a:52:84:b7:3d:93:b0:bf:8b:78:19:20:
7e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:FF:BF:BC:13:81:3C:DA:24:45:58:A3:3C:FF:3E:51:26:14:C9:47
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/jP-_vBOBPNokRVijPP8-USYUyUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.32.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:77:26:26:d5:43:b7:4f:21:aa:b6:79:eb:4a:de:46:f7:41:
d4:fd:06:e1:a9:ee:e5:0a:71:98:76:23:13:2d:f0:69:03:76:
bc:06:94:d7:23:a9:55:b1:4d:33:7b:f9:8c:d9:82:ff:2d:b6:
5b:19:4a:78:42:d0:fe:41:a8:d0:ca:ee:15:9f:95:9c:53:f4:
7c:dd:8e:a4:d1:dd:43:fd:11:8b:cc:d0:f4:6c:0d:31:ed:59:
34:31:6d:1b:00:79:21:ee:63:26:db:c7:24:bc:70:b2:d4:bc:
3d:98:74:eb:48:f4:9e:4d:16:6c:04:78:47:13:1a:d1:e6:a6:
7b:ec:85:db:d9:0f:65:0c:08:2c:62:7b:3c:62:3c:00:15:7c:
a0:3e:51:ca:4b:c4:d6:4a:90:2d:c6:4d:c4:85:72:92:c2:d3:
94:4a:ba:bd:0f:bd:b5:9d:df:a7:ba:89:7b:1e:77:f9:58:b8:
d7:b0:c2:07:9f:b9:58:32:56:0c:a5:4a:7c:41:3e:74:8a:23:
b5:c8:6f:51:05:41:2f:8e:55:7e:c4:79:8e:58:85:97:6e:d3:
b8:ee:9f:0e:ec:ea:26:00:07:f7:b7:7d:78:81:18:1c:f1:9f:
f0:41:5d:33:ed:0e:8a:59:c5:36:81:10:f7:d5:78:64:21:14:
70:e9:02:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:40 2024 by rpki-client on console-fra.rpki-client.org