Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/B8UhbnxjZIKiLqRb6ygo4VPDKrs.roa
File: B8UhbnxjZIKiLqRb6ygo4VPDKrs.roa (raw, json)
Hash identifier: klaSnTPzQXWfyIpkOJdMb8cTAuB/uGHMoii+OzOHvto=
Subject key identifier: 07:C5:21:6E:7C:63:64:82:A2:2E:A4:5B:EB:28:28:E1:53:C3:2A:BB
Certificate issuer: /CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Certificate serial: 01866FD0C155836B95EEDE928D2D184A0FA8
Authority key identifier: 70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/B8UhbnxjZIKiLqRb6ygo4VPDKrs.roa
Signing time: Mon 20 Feb 2023 17:13:17 +0000
ROA not before: Mon 20 Feb 2023 17:13:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 91.227.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6f:d0:c1:55:83:6b:95:ee:de:92:8d:2d:18:4a:0f:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Validity
Not Before: Feb 20 17:13:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07c5216e7c636482a22ea45beb2828e153c32abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e6:86:11:66:45:64:c6:67:0c:6d:47:c6:07:
c4:fe:1f:f8:92:1e:63:06:b7:91:a3:76:2e:da:ac:
e1:be:6f:b2:4a:8e:01:9e:0e:22:b3:17:72:05:fe:
b1:b4:a5:7d:48:fb:00:bf:81:5b:c3:2f:d5:8c:c3:
06:50:82:06:2c:34:52:32:d6:8f:e8:24:94:07:e4:
d5:43:8f:e4:a4:b5:0c:82:b2:1f:49:77:e7:a6:69:
78:d6:55:0e:2d:e2:dc:4e:a4:db:52:32:98:11:c0:
0a:a1:e0:ad:18:d0:e1:e7:fb:66:71:da:ef:a9:63:
19:b1:d2:d8:74:fb:09:07:07:60:91:9e:3f:73:6d:
7b:f9:ca:cc:eb:b4:c6:9d:a7:45:db:dc:b8:ea:d2:
7c:e3:b0:fb:21:d8:72:03:c0:ec:08:f8:5c:73:f0:
f8:a2:54:23:db:ca:66:0e:44:8a:92:63:7a:88:72:
66:7a:67:f1:c3:c0:6a:e6:ec:95:5d:66:81:57:fe:
ac:18:05:db:48:65:8d:b1:9a:f8:83:57:68:53:74:
1d:fc:05:8e:4a:77:83:d2:3b:d6:ee:b3:91:25:79:
51:fe:1b:43:7e:65:fb:d9:5a:2a:ea:a2:28:e4:a6:
ca:47:f2:d1:fc:5f:13:c1:b3:ec:d9:27:ff:9b:a4:
60:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C5:21:6E:7C:63:64:82:A2:2E:A4:5B:EB:28:28:E1:53:C3:2A:BB
X509v3 Authority Key Identifier:
keyid:70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/B8UhbnxjZIKiLqRb6ygo4VPDKrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.253.0/24
Signature Algorithm: sha256WithRSAEncryption
88:26:c8:b1:f4:7f:69:dd:54:e6:f7:2d:c7:c9:c7:58:02:b9:
cf:7f:79:72:98:ec:16:a2:85:e0:aa:fa:41:2c:74:01:bc:7b:
a3:dd:58:8b:bb:e1:ec:cd:7e:c5:3a:02:53:5d:21:83:be:6d:
fb:c6:bc:9d:c1:09:ea:4a:32:33:d4:b1:9a:8a:de:74:f1:f6:
a1:c3:c6:e2:0e:31:b0:2e:05:b7:38:84:ac:d6:c0:cc:75:37:
fe:41:91:a2:3f:94:45:a4:c3:99:19:22:c8:90:e4:8e:eb:e2:
94:79:bd:3f:bc:a9:a6:1e:9d:e3:8e:3e:af:2a:58:90:6b:dc:
24:c5:55:4c:f7:46:13:12:9f:c2:14:68:15:35:e0:b3:bf:cd:
70:2a:de:3c:8a:70:af:17:e2:18:64:c1:e2:6d:0d:a0:11:09:
86:a4:11:95:01:14:97:bc:4a:99:c4:f8:1a:eb:6b:62:e2:2a:
6c:23:cd:53:5c:e2:15:60:ad:36:df:e4:5b:fb:9b:36:cc:bd:
56:0b:c9:c3:50:4c:5a:01:af:2d:6e:45:f5:dd:87:5a:2b:dc:
8e:ba:6e:6b:a7:37:a8:cf:c8:17:ad:5c:34:2c:a4:f2:22:b7:
47:a4:6f:4f:74:04:56:de:a8:c5:aa:2b:71:a4:a6:78:5d:a2:
35:db:3f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:45 2024 by rpki-client on console-fra.rpki-client.org