Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7e0ebb-4686-406e-b99f-21faf144cb62/1/ebE70QD6rjRiXry2_sjNFe8qzF8.roa
File: ebE70QD6rjRiXry2_sjNFe8qzF8.roa (raw, json)
Hash identifier: kcFR+CCfgO1uPveqRrg+V5x10jFsXPNJxj2p1z4Prjk=
Subject key identifier: 79:B1:3B:D1:00:FA:AE:34:62:5E:BC:B6:FE:C8:CD:15:EF:2A:CC:5F
Certificate issuer: /CN=9a7b9a8cd819f4a920334d7e72ec2340870d7749
Certificate serial: 018842EF637554EE970822D3D8671857AAA0
Authority key identifier: 9A:7B:9A:8C:D8:19:F4:A9:20:33:4D:7E:72:EC:23:40:87:0D:77:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnuajNgZ9KkgM01-cuwjQIcNd0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7e0ebb-4686-406e-b99f-21faf144cb62/1/ebE70QD6rjRiXry2_sjNFe8qzF8.roa
Signing time: Mon 22 May 2023 10:09:24 +0000
ROA not before: Mon 22 May 2023 10:09:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42481
IP address blocks: 91.192.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:42:ef:63:75:54:ee:97:08:22:d3:d8:67:18:57:aa:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a7b9a8cd819f4a920334d7e72ec2340870d7749
Validity
Not Before: May 22 10:09:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79b13bd100faae34625ebcb6fec8cd15ef2acc5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:23:19:b7:71:01:2c:af:45:cd:59:5a:e9:7a:
c0:67:93:98:7d:85:db:82:d2:9d:ec:84:62:f6:8c:
1d:0a:06:bc:c7:58:0f:c4:76:f7:2d:a5:b7:c3:74:
e1:78:16:92:69:92:f8:ca:2f:96:2f:ff:4e:4d:c6:
1d:5b:b5:44:4c:e4:ff:96:41:15:e8:be:92:f5:f4:
c0:eb:f3:24:e4:74:b5:30:de:4d:98:42:2d:0e:d1:
8d:76:3e:e6:4e:0c:fd:69:70:45:53:bf:9b:9a:bf:
ff:66:a7:e0:00:6c:c2:d8:04:c9:2a:87:f1:d8:b3:
4f:2f:e9:ca:01:d5:67:8e:7c:e6:e8:42:87:fd:9f:
4d:29:65:54:ff:e8:1a:b9:1b:22:d8:31:63:fd:35:
4f:c3:c9:d1:10:bb:2c:f2:44:99:69:62:d8:42:63:
b9:e5:7b:c4:ea:fa:b1:ba:61:1a:f4:fd:2d:6e:69:
da:ad:02:da:7c:1e:d2:df:77:57:74:9a:66:1b:ea:
6f:2f:ef:68:4b:a0:42:af:25:65:17:ba:d2:75:29:
02:07:bc:6c:78:ee:07:5c:e1:17:50:a1:a5:7f:b8:
92:18:12:d4:b9:d7:41:79:6e:2a:7a:0b:dc:d7:47:
eb:2f:13:dd:5c:b2:4f:6e:47:ed:fd:32:bd:c3:3b:
14:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B1:3B:D1:00:FA:AE:34:62:5E:BC:B6:FE:C8:CD:15:EF:2A:CC:5F
X509v3 Authority Key Identifier:
keyid:9A:7B:9A:8C:D8:19:F4:A9:20:33:4D:7E:72:EC:23:40:87:0D:77:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnuajNgZ9KkgM01-cuwjQIcNd0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7e0ebb-4686-406e-b99f-21faf144cb62/1/ebE70QD6rjRiXry2_sjNFe8qzF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7e0ebb-4686-406e-b99f-21faf144cb62/1/mnuajNgZ9KkgM01-cuwjQIcNd0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.148.0/22
Signature Algorithm: sha256WithRSAEncryption
89:35:c1:66:f3:c6:28:fa:55:b0:e9:ce:34:d6:de:51:eb:1a:
0e:53:a2:b0:63:35:ae:8d:88:bf:ee:6b:08:59:27:97:41:08:
70:19:89:9e:c1:02:90:dc:df:e1:69:2f:75:b0:88:e3:94:ed:
a1:6e:94:04:99:f9:11:ae:d3:37:d4:e4:cf:32:10:16:a5:c7:
7e:56:21:e3:20:aa:d6:aa:00:8c:1c:f5:3b:02:d2:b9:ba:53:
7a:5d:5d:45:3f:68:f0:20:4b:fd:64:f9:cf:61:f9:b3:84:d7:
ff:2f:33:73:76:85:3e:90:13:5d:18:16:a9:9b:0a:5f:c6:39:
3f:47:64:34:41:46:3f:c5:e0:06:fe:56:eb:be:42:6e:cd:67:
b0:ab:71:ba:c0:94:0d:5d:cf:d5:b4:e2:7e:6d:9b:ba:29:25:
7a:7b:1d:08:1b:e6:0f:0e:81:43:01:6e:ca:67:9c:79:ba:55:
68:ce:9f:1a:5d:75:a6:7c:af:7f:e5:dd:07:29:34:71:09:15:
5d:3e:37:69:72:30:87:73:7c:f0:24:e4:ad:07:e6:36:79:71:
89:64:45:eb:04:45:a9:4e:a2:7e:bf:09:59:fd:3b:23:da:79:
d5:3d:ac:0e:0c:90:eb:a1:1f:28:09:9d:ae:d7:8e:4e:19:39:
ec:e4:2c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:10 2024 by rpki-client on console-ams.rpki-client.org