Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/97e057-0f60-4aaf-9a48-83a44310a964/1/hDt0UBqPqVr_SHxaBwEvFcQitXs.roa
File: hDt0UBqPqVr_SHxaBwEvFcQitXs.roa (raw, json)
Hash identifier: smpICS+1kU0uifBPgXI10JY1A6vbu5tVeuuSyd3WOvo=
Subject key identifier: 84:3B:74:50:1A:8F:A9:5A:FF:48:7C:5A:07:01:2F:15:C4:22:B5:7B
Certificate issuer: /CN=8c96c66af331c985b859d403b36974c0632e1ef2
Certificate serial: 018C258F350DA3A56D20FD05CDE239751571
Authority key identifier: 8C:96:C6:6A:F3:31:C9:85:B8:59:D4:03:B3:69:74:C0:63:2E:1E:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jJbGavMxyYW4WdQDs2l0wGMuHvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/97e057-0f60-4aaf-9a48-83a44310a964/1/hDt0UBqPqVr_SHxaBwEvFcQitXs.roa
Signing time: Fri 01 Dec 2023 13:26:31 +0000
ROA not before: Fri 01 Dec 2023 13:26:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 91.233.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:25:8f:35:0d:a3:a5:6d:20:fd:05:cd:e2:39:75:15:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c96c66af331c985b859d403b36974c0632e1ef2
Validity
Not Before: Dec 1 13:26:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=843b74501a8fa95aff487c5a07012f15c422b57b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:72:c3:54:a1:ae:71:d6:2a:88:cd:b8:95:cf:
aa:0e:fd:e3:cb:1e:67:e6:5e:0a:0e:66:16:e8:11:
81:66:70:99:45:aa:fb:18:d9:49:2a:0f:74:3c:0f:
14:f0:1e:2c:07:14:97:4c:a3:ab:56:ef:65:a8:5e:
2c:b7:09:70:c6:56:b5:eb:42:4a:38:8c:1d:43:1b:
66:8a:c2:aa:46:93:24:c6:60:64:a5:be:db:b4:70:
bc:4f:5f:dd:76:1e:03:6e:76:2a:0a:2f:98:d5:3e:
76:d9:86:68:0b:45:07:73:63:a8:53:b8:74:88:a6:
c2:97:d1:d0:a3:f0:56:9b:85:bd:e6:87:7f:46:48:
90:56:73:13:bc:8e:34:17:4a:0b:c6:df:91:61:b1:
77:e6:2e:6f:ba:61:fa:61:50:76:54:b7:c4:b6:c6:
72:e6:2a:fc:0b:8d:6e:0b:75:1a:53:04:f3:5b:91:
3c:05:c4:26:e1:2d:f1:f7:07:8e:c6:1e:fb:03:50:
84:b4:3f:45:19:18:a5:91:c4:e9:c0:83:19:02:43:
3e:a0:fc:79:2e:b4:22:c5:60:02:0e:54:95:32:f4:
83:38:0d:2b:6d:ae:38:e8:7f:7f:43:be:94:41:6d:
f6:9b:f5:dd:06:5e:cd:b2:d9:7f:ad:b8:87:a0:f3:
42:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:3B:74:50:1A:8F:A9:5A:FF:48:7C:5A:07:01:2F:15:C4:22:B5:7B
X509v3 Authority Key Identifier:
keyid:8C:96:C6:6A:F3:31:C9:85:B8:59:D4:03:B3:69:74:C0:63:2E:1E:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jJbGavMxyYW4WdQDs2l0wGMuHvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/97e057-0f60-4aaf-9a48-83a44310a964/1/hDt0UBqPqVr_SHxaBwEvFcQitXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/97e057-0f60-4aaf-9a48-83a44310a964/1/jJbGavMxyYW4WdQDs2l0wGMuHvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.67.0/24
Signature Algorithm: sha256WithRSAEncryption
76:0d:30:9b:8c:79:93:cf:5f:be:9c:fa:2e:a6:17:4b:7f:58:
13:f3:66:fd:87:82:16:3d:11:9d:3f:5a:22:84:11:5b:c3:f6:
dc:f7:d2:19:e7:1f:6a:c7:2a:5d:7b:94:ed:75:af:eb:b0:a2:
aa:91:ef:aa:73:2d:18:a6:34:c5:53:05:cb:f3:7d:00:a7:f3:
7e:73:c7:e8:d8:15:84:fd:29:ab:86:65:86:e6:a3:b8:47:67:
f9:16:fc:b5:c6:e3:ed:0c:02:24:73:fe:9e:f3:0a:07:bd:83:
82:7b:a2:f3:a7:13:dc:e6:73:4b:36:00:6a:cd:d3:1e:c5:50:
92:14:30:13:6b:f8:e8:05:21:56:0d:6b:74:85:76:9c:75:49:
c3:b8:04:c0:1b:9e:c6:73:31:d2:0f:d5:ba:f9:80:ce:c6:58:
d4:9d:f9:1b:fb:18:55:a9:45:61:14:0e:dd:42:ac:a0:bd:3e:
6e:cb:7d:8a:9a:6d:ba:87:41:ef:85:2a:77:6a:c6:4d:62:0d:
6a:fd:3f:c3:cf:3e:51:3a:f4:70:d5:5f:e2:ca:f2:a3:00:06:
da:98:b5:7a:9c:72:2d:63:c7:37:3b:43:c3:eb:28:cb:c5:92:
e3:40:c1:96:4b:f9:a8:16:ff:89:e0:1a:f5:41:85:6a:98:9b:
80:28:fa:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:30 2024 by rpki-client on console-fra.rpki-client.org