Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/exf9a2uTwAeOxOzJ4QWASuPDfEk.roa
File: exf9a2uTwAeOxOzJ4QWASuPDfEk.roa (raw, json)
Hash identifier: 9OpYQT7DUOQGmZEt3kD8f2ZnMXRY/5WQw1ATc40R1xo=
Subject key identifier: 7B:17:FD:6B:6B:93:C0:07:8E:C4:EC:C9:E1:05:80:4A:E3:C3:7C:49
Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Certificate serial: 018A3C9039C7D2253D250FE3860794631800
Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/exf9a2uTwAeOxOzJ4QWASuPDfEk.roa
Signing time: Mon 28 Aug 2023 14:33:19 +0000
ROA not before: Mon 28 Aug 2023 14:33:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6282
IP address blocks: 91.236.90.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3c:90:39:c7:d2:25:3d:25:0f:e3:86:07:94:63:18:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Validity
Not Before: Aug 28 14:33:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b17fd6b6b93c0078ec4ecc9e105804ae3c37c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:70:65:64:74:7a:35:b4:3b:b3:d9:bc:d9:c0:
03:d9:9b:d9:2d:75:b9:d1:41:9e:17:a5:d8:08:96:
97:94:7f:11:fb:78:99:d5:cb:a5:90:09:0c:9f:fc:
c6:35:5d:af:13:fd:4c:ae:66:10:9c:f5:4e:5d:3d:
d7:e5:45:0f:49:62:88:ae:71:37:d5:cc:f7:5e:b7:
9d:68:be:98:98:0d:2e:7c:15:04:4b:ee:ce:64:57:
5c:cd:16:9e:c9:d7:cf:67:f5:a7:61:ab:50:46:f2:
f1:9a:8d:85:0c:76:59:35:31:cc:ff:97:91:57:5b:
5a:ce:a4:15:34:40:53:b8:d5:86:a5:c8:18:f5:0a:
7c:d1:8a:76:e3:7f:ea:51:29:19:08:b1:bf:87:70:
b4:be:88:29:99:aa:21:62:f1:d7:9e:cf:bf:4f:b8:
42:54:0b:9e:bb:80:21:3b:4f:89:c0:64:05:c2:10:
40:f1:6b:e8:0c:53:93:f5:f8:04:a1:0b:9d:e1:5d:
c5:b2:8d:85:df:29:c0:da:ba:5d:80:ce:40:02:7b:
f6:ee:f2:3d:c9:8b:7d:32:db:46:1b:fa:d6:bd:75:
46:18:7e:53:75:cb:d6:98:8f:0b:9b:9f:6b:31:84:
6a:6e:f7:46:53:fa:3a:c1:3c:0c:3a:ca:30:6e:95:
7b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:17:FD:6B:6B:93:C0:07:8E:C4:EC:C9:E1:05:80:4A:E3:C3:7C:49
X509v3 Authority Key Identifier:
keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/exf9a2uTwAeOxOzJ4QWASuPDfEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.90.0/23
Signature Algorithm: sha256WithRSAEncryption
86:71:23:45:45:38:65:8a:51:39:ac:74:ce:06:98:70:0e:4e:
99:34:49:77:30:72:59:44:0a:cd:8d:7a:a7:3e:31:67:bd:d8:
d8:24:c4:7c:15:13:2a:7a:c7:67:47:ac:63:03:92:8f:6a:5f:
16:55:bf:63:d2:1e:92:db:15:8f:c3:d5:a7:af:ee:8d:df:c7:
ce:6a:f3:59:e0:f2:47:d7:c4:e3:a6:51:c6:e3:da:1c:93:ea:
49:d0:47:1e:12:ec:24:4c:ff:7f:68:01:59:1c:ed:85:18:88:
a0:2a:64:c9:32:b0:72:df:b8:25:a9:7d:d1:65:81:ad:f4:21:
55:fc:f2:05:57:af:16:df:99:8d:9e:6a:50:e3:9a:a3:5b:82:
8c:dd:0c:87:86:f5:eb:03:ce:08:53:14:48:a8:ff:78:25:c8:
43:6e:5e:f4:5d:91:04:38:8f:6b:6c:7e:5e:8b:12:7a:a9:17:
53:2f:22:79:6b:e1:c9:83:2b:49:42:73:e8:d0:26:9a:8c:0f:
f7:24:76:cf:97:1c:04:cc:2d:7a:98:38:9c:70:e0:14:10:3d:
52:0b:c7:e3:60:fc:ef:52:ea:74:70:d4:ed:0d:90:a1:77:59:
17:2d:cc:f8:00:e8:e1:71:8f:6e:ee:2f:25:79:b5:6f:a4:a2:
17:63:8f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:06 2024 by rpki-client on console-ams.rpki-client.org