Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/nkI9MSiq5wWpA6DlgVXfG7B5dnM.roa
File: nkI9MSiq5wWpA6DlgVXfG7B5dnM.roa (raw, json)
Hash identifier: ndllLn+UdcIG5PKaRIcNLyU0p/fgXxwmUFqsbijshsg=
Subject key identifier: 9E:42:3D:31:28:AA:E7:05:A9:03:A0:E5:81:55:DF:1B:B0:79:76:73
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 0188B8E3E71BBBF8A942288D3745C3F7B531
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/nkI9MSiq5wWpA6DlgVXfG7B5dnM.roa
Signing time: Wed 14 Jun 2023 07:52:03 +0000
ROA not before: Wed 14 Jun 2023 07:52:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 91.199.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 08:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b8:e3:e7:1b:bb:f8:a9:42:28:8d:37:45:c3:f7:b5:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Jun 14 07:52:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e423d3128aae705a903a0e58155df1bb0797673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:49:98:77:fb:a3:73:63:89:d0:ff:99:8d:fa:
7a:f3:3c:c8:1f:73:0d:84:09:f7:2f:fe:2c:d3:dd:
32:e2:73:f6:de:0a:41:56:1d:0b:22:0e:2d:e9:e0:
dd:fe:9e:07:79:5e:c8:a9:29:2c:f4:4c:13:43:45:
4a:78:04:b5:c8:a1:f3:2d:01:d3:ef:3b:b9:de:3e:
1d:10:01:77:90:a8:dc:6f:6c:91:62:9d:d6:0c:1a:
5a:60:46:be:e7:55:9f:dd:4d:fa:41:ba:d9:e2:f2:
07:e1:78:6f:da:a0:e3:d0:e9:d2:a4:35:a0:b8:87:
e9:f6:cd:84:cd:e5:6d:5b:99:7e:98:bf:8d:66:eb:
9a:7c:aa:cc:af:aa:4a:8e:2f:b1:82:89:7e:4c:c2:
71:df:8d:49:c5:64:79:03:ea:b1:63:2d:ea:83:67:
45:81:89:59:e5:06:5d:2d:8e:8e:2e:ce:1d:44:05:
2b:2d:f7:31:e1:bd:60:46:66:bf:f8:35:37:c3:0e:
2a:7c:15:7e:cf:28:35:7d:51:58:dd:f3:9f:b7:44:
c1:e9:84:6d:7e:88:a5:ca:d8:c5:96:77:5d:14:84:
3a:f6:da:79:ac:e2:67:33:b2:19:67:98:cf:75:d1:
a0:d5:ff:7a:74:15:04:43:03:37:86:b5:dc:0b:04:
dd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:42:3D:31:28:AA:E7:05:A9:03:A0:E5:81:55:DF:1B:B0:79:76:73
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/nkI9MSiq5wWpA6DlgVXfG7B5dnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.42.0/24
Signature Algorithm: sha256WithRSAEncryption
af:f4:8a:b5:93:d8:cd:98:47:d4:65:3b:b5:c8:9d:e7:7b:cd:
70:e3:fd:c9:bc:1b:5d:98:94:f9:b7:a5:e5:b2:d5:8d:8b:61:
71:5b:12:d3:f8:9f:c8:06:20:68:7f:03:2e:50:00:a5:73:af:
e7:e9:28:e8:20:98:e8:fe:45:8b:b0:fd:3d:4f:f0:af:65:bc:
ca:49:92:3e:81:59:1c:82:8e:ca:68:e1:06:d0:fb:d8:50:c7:
1d:7a:cf:b8:ce:e7:ab:a2:a6:f5:8a:d7:45:41:98:70:22:55:
83:7b:dd:6e:cf:06:63:c0:21:f0:4d:0c:20:0e:af:98:28:34:
53:9c:dc:2f:27:58:92:23:28:e9:f1:6b:74:62:3e:1f:6a:cf:
3e:6c:b2:4c:74:da:46:e4:a6:c2:9e:f6:59:82:cd:83:ba:ad:
41:74:f4:e7:d4:bd:0e:6e:39:46:8c:56:99:2f:87:a9:7d:37:
db:d3:bc:2b:1d:b4:53:21:6e:33:2d:ef:f9:e0:74:15:d0:22:
1e:9c:09:e8:b7:93:91:eb:f3:3b:29:af:a6:87:c1:35:45:0d:
7d:59:72:bc:a8:73:eb:9f:df:6a:fe:09:41:aa:5c:0f:08:16:
34:b2:2d:ed:92:01:89:d6:a6:52:47:ef:ef:76:ba:90:99:f9:
fa:63:8d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:58 2024 by rpki-client on console-fra.rpki-client.org