Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/9MTYGf8FT30w9m8x659f2CXKky8.roa
File: 9MTYGf8FT30w9m8x659f2CXKky8.roa (raw, json)
Hash identifier: ohKlUbmS04Z4Cx1XuGfh0nHrPYnBp0lWEO/X9mfLVRw=
Subject key identifier: F4:C4:D8:19:FF:05:4F:7D:30:F6:6F:31:EB:9F:5F:D8:25:CA:93:2F
Certificate issuer: /CN=a5ae8a3d8bdaabf4765fda79d55eca8c69c8bf2c
Certificate serial: 01856C5CAE2071C98B5336E808050998DEAA
Authority key identifier: A5:AE:8A:3D:8B:DA:AB:F4:76:5F:DA:79:D5:5E:CA:8C:69:C8:BF:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pa6KPYvaq_R2X9p51V7KjGnIvyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/9MTYGf8FT30w9m8x659f2CXKky8.roa
Signing time: Sun 01 Jan 2023 08:04:51 +0000
ROA not before: Sun 01 Jan 2023 08:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 91.237.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 00:44:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:5c:ae:20:71:c9:8b:53:36:e8:08:05:09:98:de:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5ae8a3d8bdaabf4765fda79d55eca8c69c8bf2c
Validity
Not Before: Jan 1 08:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4c4d819ff054f7d30f66f31eb9f5fd825ca932f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:82:6b:11:90:b3:8c:be:c7:43:7c:f4:41:4a:
dd:21:5c:f6:da:d5:dd:df:1c:0d:11:90:48:26:7b:
12:32:e4:24:10:5e:bd:45:1c:8b:24:87:a0:11:1c:
1b:7a:41:4f:37:8b:fd:aa:9c:04:31:34:ce:30:54:
7a:bc:80:ab:51:9c:4e:5d:8e:7f:5f:de:78:49:fe:
d2:cb:0c:32:76:2a:3a:b2:48:d3:d1:d4:fd:15:a1:
98:d6:94:58:66:34:13:71:1c:17:5b:7f:a4:64:e7:
14:98:ea:c8:18:ac:30:67:4b:43:62:3d:7c:1b:c9:
93:ad:7a:48:b3:7e:6a:5c:9b:a6:b4:92:e5:80:76:
0b:62:9b:42:11:61:1e:63:f7:f4:ed:47:7c:4f:34:
eb:1f:14:5d:48:2a:10:8a:69:98:ea:f3:3c:b9:76:
7d:4a:b6:04:db:e3:17:ec:ca:bd:ae:ca:07:bb:fe:
c8:32:0e:ef:01:39:09:37:7c:eb:bd:8f:ee:86:1b:
19:40:da:9b:3d:95:39:7f:64:0d:c7:47:80:cb:91:
33:66:28:e0:f5:3c:20:e5:17:cd:18:e7:d1:de:3e:
8a:43:1d:45:4a:9e:df:0b:af:06:02:b5:7c:20:d3:
7e:ef:8d:77:7e:62:45:6e:4c:9a:15:7d:1e:b3:7a:
f4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:C4:D8:19:FF:05:4F:7D:30:F6:6F:31:EB:9F:5F:D8:25:CA:93:2F
X509v3 Authority Key Identifier:
keyid:A5:AE:8A:3D:8B:DA:AB:F4:76:5F:DA:79:D5:5E:CA:8C:69:C8:BF:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pa6KPYvaq_R2X9p51V7KjGnIvyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/9MTYGf8FT30w9m8x659f2CXKky8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/pa6KPYvaq_R2X9p51V7KjGnIvyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.175.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:12:39:39:68:e9:4b:2c:c8:7f:b2:37:bc:56:c7:5e:a9:0d:
dd:6a:e2:88:96:09:82:4a:f7:1f:21:40:58:35:55:fa:d3:f6:
2b:e2:b1:f7:f3:97:1a:cb:0e:83:d9:80:e9:97:bf:3b:08:db:
5d:28:eb:ad:eb:1b:2b:13:10:b6:fe:54:a4:34:92:8b:f2:46:
25:3e:30:ac:2e:f4:d4:05:33:18:2d:1a:74:77:52:9c:2c:d9:
dd:a0:2a:61:a9:29:52:72:94:e0:5a:a0:dd:54:a3:fd:d3:f2:
99:ef:b9:e9:35:5b:c8:02:ce:06:6a:4e:ca:bc:a8:f1:d1:0d:
34:c2:8a:b5:8a:26:06:b1:0c:ac:21:03:1c:9d:1c:51:3d:df:
1f:3d:2f:9f:ca:49:2a:6a:6d:e2:00:de:fe:bb:3e:79:05:19:
04:5c:e0:57:da:7b:fd:ac:08:d3:18:a0:84:f9:41:38:8b:d1:
96:47:e7:f7:6c:58:19:51:4d:ed:cb:c4:be:6a:80:ed:6d:94:
22:61:f9:bb:79:65:a7:88:b3:34:90:dc:ea:41:41:ac:21:1b:
26:f2:1f:37:88:4e:35:94:90:89:c2:58:cb:50:cb:05:7f:59:
03:f5:5a:16:df:40:be:de:16:97:34:23:39:84:01:09:38:f2:
d8:9f:3b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:24 2024 by rpki-client on console-fra.rpki-client.org