Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/Z7PyeQR7nRmT4wbGIx8uf0hbmzU.roa
File: Z7PyeQR7nRmT4wbGIx8uf0hbmzU.roa (raw, json)
Hash identifier: bqq+ZyhX8Xe6nfAYGfRaDYxop2QDPUw+z1+YQdOETu4=
Subject key identifier: 67:B3:F2:79:04:7B:9D:19:93:E3:06:C6:23:1F:2E:7F:48:5B:9B:35
Certificate issuer: /CN=5134d1320645644e2eaf3685879d693f72522c76
Certificate serial: 0186C5B5D47D0D38A050EBC1CA62FA981060
Authority key identifier: 51:34:D1:32:06:45:64:4E:2E:AF:36:85:87:9D:69:3F:72:52:2C:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTTRMgZFZE4urzaFh51pP3JSLHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/Z7PyeQR7nRmT4wbGIx8uf0hbmzU.roa
Signing time: Thu 09 Mar 2023 09:31:13 +0000
ROA not before: Thu 09 Mar 2023 09:31:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203036
IP address blocks: 91.194.104.0/23 maxlen: 23
91.194.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:b5:d4:7d:0d:38:a0:50:eb:c1:ca:62:fa:98:10:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5134d1320645644e2eaf3685879d693f72522c76
Validity
Not Before: Mar 9 09:31:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67b3f279047b9d1993e306c6231f2e7f485b9b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fe:42:ed:68:f9:99:4e:08:dd:e9:2b:9c:c5:
89:f0:4f:61:ae:6c:fb:4d:22:5d:1a:5a:80:64:b2:
67:97:46:49:ee:13:78:3d:94:d0:8c:f1:1e:08:b7:
7a:eb:7b:68:b5:71:53:38:0c:bc:32:01:cf:95:a8:
46:5d:65:e6:68:f3:97:7e:4a:b2:c2:a7:ea:78:61:
7f:a0:42:ba:a3:2e:55:28:ab:f5:28:76:30:24:e7:
bc:93:ab:b2:dc:b8:97:cd:98:78:a6:1a:93:a2:dd:
37:6a:5a:c1:e1:75:e2:2f:43:1f:69:8c:ad:3b:8d:
e0:16:a4:ba:1e:db:e4:75:51:f5:90:72:17:56:12:
0c:07:64:e0:1b:9d:66:2a:b8:7e:7c:c0:d9:e6:64:
cd:04:76:39:0c:f0:30:75:00:df:c6:99:e5:73:b8:
9b:6e:2c:c8:89:5d:a6:39:43:e9:55:bc:40:b1:24:
25:3a:8d:33:d8:a4:b5:30:f1:86:99:f1:0b:c3:23:
d6:ed:05:ae:3a:95:9d:c7:fe:c7:96:fd:5b:0b:0c:
98:c7:7f:5d:0d:61:d2:33:0f:1b:cb:ae:cb:08:1c:
a6:d6:a5:f3:b4:62:4a:06:c7:80:0d:00:79:e4:4f:
03:9d:e0:64:49:c8:95:01:fa:a4:6c:58:3e:f9:ad:
02:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B3:F2:79:04:7B:9D:19:93:E3:06:C6:23:1F:2E:7F:48:5B:9B:35
X509v3 Authority Key Identifier:
keyid:51:34:D1:32:06:45:64:4E:2E:AF:36:85:87:9D:69:3F:72:52:2C:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTTRMgZFZE4urzaFh51pP3JSLHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/Z7PyeQR7nRmT4wbGIx8uf0hbmzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/UTTRMgZFZE4urzaFh51pP3JSLHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.104.0/23
Signature Algorithm: sha256WithRSAEncryption
10:8f:ee:9d:47:c4:a8:62:80:20:f0:63:fe:24:b5:92:f0:cc:
2c:35:0e:e9:96:8d:d9:1a:63:ad:df:21:0c:b4:76:02:31:c5:
2d:d4:3b:31:2a:d4:4a:ce:10:69:f8:bf:34:ad:ca:59:33:9e:
cb:7a:3f:21:e6:58:f3:94:cd:2e:a0:a9:18:e5:a1:47:39:07:
50:82:d2:76:90:20:84:9d:46:d0:13:a7:cc:fd:e2:fe:0b:2b:
2b:a0:df:1f:37:ef:d8:98:4c:15:c4:83:98:50:49:90:83:c9:
33:7a:cd:17:58:5a:2b:55:57:f4:c6:aa:25:a1:72:2f:ba:b6:
40:76:72:ef:e0:e2:f4:8a:1e:98:03:60:c9:a1:9c:91:43:1f:
66:ed:c6:b8:21:1a:1a:79:50:59:4b:6f:60:5e:50:83:a4:cd:
43:af:ca:89:d1:ff:98:8b:4a:cc:ce:ba:e7:26:d6:32:2a:2b:
90:8f:d8:c9:46:4f:f7:11:97:bb:60:f6:a9:7a:da:0c:2d:36:
37:dc:d1:c5:23:27:30:a0:48:e7:81:57:01:30:b9:30:e5:ec:
0d:2c:9c:cd:84:22:69:44:85:43:7d:59:93:76:92:8e:7d:f9:
93:08:e8:47:b8:f8:e0:ee:b2:38:70:e5:2b:d3:be:91:db:58:
b7:61:3e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:01 2024 by rpki-client on console-fra.rpki-client.org