Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/Q93_sbBewmonitTrB0edwCIgc-Q.roa
File: Q93_sbBewmonitTrB0edwCIgc-Q.roa (raw, json)
Hash identifier: Ai33pSuY4tAIEtLJt9vQ8HvDDO4WfkaQT5cO2qXrvDs=
Subject key identifier: 43:DD:FF:B1:B0:5E:C2:6A:27:8A:D4:EB:07:47:9D:C0:22:20:73:E4
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 01856F547BFE0E8351CFA6F1C94430494990
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/Q93_sbBewmonitTrB0edwCIgc-Q.roa
Signing time: Sun 01 Jan 2023 21:54:45 +0000
ROA not before: Sun 01 Jan 2023 21:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47253
IP address blocks: 77.91.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:7b:fe:0e:83:51:cf:a6:f1:c9:44:30:49:49:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Jan 1 21:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43ddffb1b05ec26a278ad4eb07479dc0222073e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e6:93:45:e3:ef:52:3c:3a:cc:d2:bb:30:c0:
bc:75:f3:e8:9a:da:9d:d7:12:ce:63:0b:90:98:85:
96:f3:30:9d:e6:9d:ac:e8:3d:5e:3b:9f:3c:9e:82:
e9:67:88:23:a0:0c:ac:41:53:60:65:70:a7:02:ec:
13:19:37:ec:2e:76:22:9b:00:08:61:ed:a3:a1:1e:
25:73:dd:5e:8a:a7:92:08:47:23:15:2f:6c:f1:45:
fa:ec:cd:b0:fb:b1:01:2b:b9:c8:b1:26:28:fb:65:
76:ce:b7:01:13:5e:2f:7a:3e:93:a3:f0:ec:72:73:
ed:dc:03:c3:fa:62:07:f0:2a:55:1b:e6:4a:79:02:
9b:ba:24:42:0a:bb:94:37:11:c4:56:b2:29:21:32:
b3:6d:b1:1d:ea:f7:a8:3b:f3:d4:de:7b:46:e5:91:
0d:3d:6c:51:b9:89:79:5d:e8:41:78:2b:b2:da:fc:
d5:03:49:19:51:44:87:5d:f4:d7:15:38:7b:07:8e:
b3:5e:99:25:5f:06:ea:88:5f:cb:86:9f:46:28:7b:
4c:43:74:4d:b8:b0:c4:39:c8:72:f2:69:06:59:c2:
11:6e:7c:14:1e:63:d3:09:20:72:bc:9f:dc:e3:76:
34:86:e2:f8:95:d5:28:56:2f:03:ad:bb:c3:6f:d9:
d8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DD:FF:B1:B0:5E:C2:6A:27:8A:D4:EB:07:47:9D:C0:22:20:73:E4
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/Q93_sbBewmonitTrB0edwCIgc-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.148.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:62:b1:c3:1c:fd:ad:01:18:35:41:db:dc:36:f0:af:2f:b6:
89:c6:88:61:9b:bc:d6:4f:3c:54:ad:66:47:65:25:f2:3d:72:
0c:3b:f4:72:86:36:91:ca:a8:bb:b7:0b:46:10:7c:8e:14:87:
9c:67:dc:a5:1c:88:36:ca:a9:ab:c0:0f:da:49:8e:45:0e:22:
71:40:69:44:ae:ba:ef:9b:22:41:15:45:66:e8:fc:55:64:9c:
86:a5:8b:80:f6:99:0d:26:97:cd:60:77:7d:f3:e0:39:27:a5:
4e:be:d9:6e:c2:f3:d4:f1:64:5f:89:cb:fe:0f:3b:d4:a8:d7:
f3:39:07:25:50:58:8f:b8:7c:0f:21:39:54:b2:73:cd:81:32:
47:13:b8:8e:5f:6d:1d:18:a4:2f:3d:49:bf:fe:7d:87:81:4c:
bf:bb:b3:37:5b:1f:69:8e:07:7a:01:e5:3b:25:5b:2f:6a:82:
48:00:e7:75:99:7d:23:d8:c2:8d:2c:05:ac:54:b4:39:95:6f:
d3:15:7d:19:ed:15:70:29:93:1b:25:fb:68:1c:31:8b:87:42:
4a:be:e8:ac:30:28:0e:2b:b2:ba:5d:a9:ad:e8:e8:c7:84:04:
41:9f:6c:45:8a:d0:26:a4:3e:e4:b1:dd:91:27:6f:db:d1:0c:
64:2b:8d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:20 2024 by rpki-client on console-fra.rpki-client.org