Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/utir2HPRfhGtYFjlEz_b2DFwB_Y.roa
File: utir2HPRfhGtYFjlEz_b2DFwB_Y.roa (raw, json)
Hash identifier: yCMTR64ZfriWxJ4GYHTmJd+6khltSokXpKkO+YZzbBo=
Subject key identifier: BA:D8:AB:D8:73:D1:7E:11:AD:60:58:E5:13:3F:DB:D8:31:70:07:F6
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 01856C011284C2C17DA0B28070A3BCF2B6A5
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/utir2HPRfhGtYFjlEz_b2DFwB_Y.roa
Signing time: Sun 01 Jan 2023 06:24:47 +0000
ROA not before: Sun 01 Jan 2023 06:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48498
IP address blocks: 91.211.36.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:12:84:c2:c1:7d:a0:b2:80:70:a3:bc:f2:b6:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Jan 1 06:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bad8abd873d17e11ad6058e5133fdbd8317007f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ac:8f:4e:c4:78:57:48:ef:b6:a0:de:ff:0f:
cb:38:2b:14:df:c8:5b:5e:ca:7d:e6:e1:4c:3c:05:
d0:1d:65:9b:22:32:ae:a6:63:f9:a6:39:1f:75:d4:
9d:72:87:8f:e2:8c:ef:4b:fe:4f:ad:7c:3b:1c:69:
c2:c0:7d:04:31:f7:b3:8d:84:b6:e9:43:46:50:a2:
77:53:58:a2:d2:0f:78:6f:15:2b:4e:2d:8e:12:0f:
19:b5:ac:65:eb:47:25:be:21:db:63:54:ad:d2:f4:
2f:2e:aa:40:49:4a:13:33:41:ae:ea:1d:14:63:79:
19:74:a7:27:a3:51:6b:63:57:b4:37:c9:c4:7d:6b:
c3:8e:99:d0:69:82:32:ad:b5:35:ff:78:36:b2:d7:
33:a7:eb:dc:8d:40:2a:89:de:53:ed:74:ba:cf:66:
83:3e:c1:f0:45:5e:7f:77:b1:2d:7c:16:02:82:3c:
9e:55:34:d0:76:c3:e2:31:81:6f:df:d8:ea:4c:9b:
56:73:ae:16:bb:56:9f:4f:91:f4:50:ab:c5:d8:0e:
f7:aa:d5:09:37:37:b4:9b:bd:3c:8d:4d:63:e3:fb:
0f:5f:8b:e7:73:b3:bb:03:02:f0:14:53:96:b6:5a:
a3:fb:30:7a:7e:bd:a2:f6:b6:65:52:30:ff:fd:ad:
97:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D8:AB:D8:73:D1:7E:11:AD:60:58:E5:13:3F:DB:D8:31:70:07:F6
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/utir2HPRfhGtYFjlEz_b2DFwB_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.36.0/22
Signature Algorithm: sha256WithRSAEncryption
91:3c:be:5a:bc:54:76:3a:b1:1e:96:1a:1b:7f:f6:ac:ad:92:
f2:e2:94:85:e3:4f:e7:99:73:0b:d5:63:24:de:25:7d:a9:23:
a6:a3:f7:21:a4:10:0a:73:73:c9:d5:5a:07:9a:a1:17:94:c4:
82:44:39:76:d2:44:67:7d:11:64:1e:b0:57:31:62:12:71:88:
32:de:47:b2:69:9a:53:97:b9:af:65:1c:7f:1c:4a:ad:dc:7b:
bb:94:6c:91:e6:9e:7f:85:02:36:ff:48:47:77:bf:08:fa:1d:
c5:53:82:a9:34:cf:5d:0e:62:bb:80:b3:a2:44:7b:e1:68:4a:
47:c8:3b:8e:76:d6:3c:45:bc:b1:58:34:e9:b9:0b:39:26:94:
23:52:df:d0:68:8e:4e:6a:9b:07:30:a5:23:19:c6:1d:f8:79:
3b:87:15:a9:81:cd:14:7f:2c:05:4f:a9:45:3f:c0:37:6a:25:
10:76:cb:15:52:97:b9:e1:df:d0:c9:e9:16:3e:76:53:a3:af:
17:cf:5d:b9:73:83:56:d6:63:76:24:e0:99:bc:0f:8f:89:9e:
23:cc:f5:bf:c7:f1:03:a7:43:04:2e:97:3e:76:34:eb:77:93:
0c:93:8d:00:00:85:a4:ea:9a:a1:32:4c:59:51:19:c2:7f:a9:
9c:02:37:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:28 2024 by rpki-client on console-fra.rpki-client.org