Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c8585a-cdf7-4aa3-bc21-212acc4351ff/1/7vTeNNQVsU1OB8261Z7wFz2mVRQ.roa
File: 7vTeNNQVsU1OB8261Z7wFz2mVRQ.roa (raw, json)
Hash identifier: TQ7smPEnmR3kjJl2Uyb+rGl7djge8Q+l7q+++QL+jmo=
Subject key identifier: EE:F4:DE:34:D4:15:B1:4D:4E:07:CD:BA:D5:9E:F0:17:3D:A6:55:14
Certificate issuer: /CN=1f31120fe225775eb53152d4920e9c573ff2b65e
Certificate serial: 018BA8E75B40AB856F0BB490DD807722D263
Authority key identifier: 1F:31:12:0F:E2:25:77:5E:B5:31:52:D4:92:0E:9C:57:3F:F2:B6:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzESD-Ild161MVLUkg6cVz_ytl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c8585a-cdf7-4aa3-bc21-212acc4351ff/1/7vTeNNQVsU1OB8261Z7wFz2mVRQ.roa
Signing time: Tue 07 Nov 2023 08:30:16 +0000
ROA not before: Tue 07 Nov 2023 08:30:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198716
IP address blocks: 91.236.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a8:e7:5b:40:ab:85:6f:0b:b4:90:dd:80:77:22:d2:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f31120fe225775eb53152d4920e9c573ff2b65e
Validity
Not Before: Nov 7 08:30:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eef4de34d415b14d4e07cdbad59ef0173da65514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:72:36:2d:cb:20:f0:07:7b:26:b7:2d:db:5a:
57:45:a9:d9:96:aa:f6:40:56:17:f8:64:94:27:10:
2d:f1:34:dd:19:49:46:31:1f:60:c8:0d:9a:f6:6e:
eb:ba:fc:b0:02:0b:ef:04:fb:8f:ae:a7:c4:50:31:
11:9a:f1:f6:4d:fd:46:af:85:10:a2:0c:f7:09:bc:
e9:6a:5e:35:12:5b:f8:3f:7d:db:39:c7:94:fe:38:
c2:da:f7:d4:80:81:1c:6e:0b:7f:69:eb:c6:2e:41:
f3:92:d8:45:ba:f5:6f:2c:9b:72:c8:95:4f:e1:ec:
f3:bf:cf:5d:0b:fd:0c:2c:8e:58:aa:ea:38:2c:fd:
f5:7c:20:ec:eb:54:0b:0c:b7:92:18:5e:95:dd:6d:
07:a3:3a:d6:b8:a7:40:97:c1:13:3c:25:b5:b2:c2:
4c:c9:88:2d:2b:1d:a8:9e:1b:1c:3f:a7:3f:7a:f9:
e4:f3:70:f4:4e:cb:d2:87:f4:52:2c:3e:3a:b7:53:
f9:dd:d2:4a:67:b3:08:1b:35:8a:fd:b0:a6:d5:1d:
e4:e7:d2:e9:94:13:18:32:41:9a:4b:e3:06:d9:f5:
fa:ec:f2:88:2f:ed:de:e9:cf:9a:e2:a4:7a:b7:c8:
0c:4e:fe:32:cd:bb:56:d3:7e:75:9c:e2:ae:e4:a3:
c0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F4:DE:34:D4:15:B1:4D:4E:07:CD:BA:D5:9E:F0:17:3D:A6:55:14
X509v3 Authority Key Identifier:
keyid:1F:31:12:0F:E2:25:77:5E:B5:31:52:D4:92:0E:9C:57:3F:F2:B6:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzESD-Ild161MVLUkg6cVz_ytl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c8585a-cdf7-4aa3-bc21-212acc4351ff/1/7vTeNNQVsU1OB8261Z7wFz2mVRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c8585a-cdf7-4aa3-bc21-212acc4351ff/1/HzESD-Ild161MVLUkg6cVz_ytl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.235.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f0:8f:44:f3:e9:fa:25:6a:c9:c9:a6:48:53:00:92:49:54:
0b:09:34:97:c7:1a:9f:ea:e4:2a:c6:03:3e:49:12:2e:2b:54:
c8:bf:9d:33:71:ae:be:41:1f:3e:79:81:1d:71:b2:a0:73:65:
61:76:20:af:c1:87:f0:e4:7c:43:6f:a3:a0:5d:15:21:3e:2b:
eb:d2:2f:1d:d8:5a:a0:f6:c1:4b:2b:e5:2f:d0:cd:3d:47:3c:
cb:13:45:a8:b1:3c:e0:3e:b3:81:de:f3:a7:4a:67:20:99:75:
6c:49:b1:9b:de:85:3c:1b:16:a6:0c:3e:d3:a7:13:35:39:28:
d0:79:15:f2:31:1d:03:62:3f:3e:ba:8e:7b:3f:a0:57:94:a0:
0f:a7:9d:b3:4a:88:d6:8d:e3:6c:71:c4:3e:01:80:b7:ae:77:
22:14:c8:83:f6:1a:ed:e8:ff:b0:f1:ea:70:28:a1:b4:38:e1:
6a:49:b1:de:08:df:6d:cf:81:ec:1c:88:86:c2:77:a6:6b:c9:
70:23:fe:9a:0c:e1:ae:08:ff:4e:b0:f2:d4:8a:a3:33:38:19:
51:5f:49:1a:ad:09:7a:8a:f7:c1:8d:fa:90:d9:54:13:fd:bb:
0d:a3:73:32:6e:a4:f3:50:dd:0f:03:e7:84:40:60:49:38:c2:
9d:4c:b3:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:29 2024 by rpki-client on console-ams.rpki-client.org