Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/5594ed-7eb8-431e-930c-7f866daa5464/1/iGSfE60g-2Je4bMwFHOGQW05fes.roa
File: iGSfE60g-2Je4bMwFHOGQW05fes.roa (raw, json)
Hash identifier: 3DIc19KMrqLfzvLgOdXcvFGtjuaI1l0V2/PA5xWnogk=
Subject key identifier: 88:64:9F:13:AD:20:FB:62:5E:E1:B3:30:14:73:86:41:6D:39:7D:EB
Certificate issuer: /CN=1e40ab40e53860871250e9bac4e163339710595d
Certificate serial: 0185723A22F453B5152028AB15397F437187
Authority key identifier: 1E:40:AB:40:E5:38:60:87:12:50:E9:BA:C4:E1:63:33:97:10:59:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkCrQOU4YIcSUOm6xOFjM5cQWV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/5594ed-7eb8-431e-930c-7f866daa5464/1/iGSfE60g-2Je4bMwFHOGQW05fes.roa
Signing time: Mon 02 Jan 2023 11:24:50 +0000
ROA not before: Mon 02 Jan 2023 11:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200826
IP address blocks: 91.234.242.0/23 maxlen: 23
91.234.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:22:f4:53:b5:15:20:28:ab:15:39:7f:43:71:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e40ab40e53860871250e9bac4e163339710595d
Validity
Not Before: Jan 2 11:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88649f13ad20fb625ee1b330147386416d397deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:49:5f:6e:0c:76:94:f5:66:4f:98:18:23:98:
46:02:12:16:71:05:dc:20:7b:0e:46:79:a1:2f:00:
57:e5:d7:dd:d7:6b:fe:ea:ef:df:8f:cd:c7:69:3a:
77:ab:ae:cd:b7:36:90:ed:23:80:63:4f:f3:ff:7a:
71:56:91:6d:76:66:66:87:f5:24:a0:8e:41:3f:29:
dd:b0:10:57:2e:11:6d:95:30:1f:18:70:21:dd:06:
58:82:0a:a6:1e:ee:78:fd:18:81:39:ee:12:3f:c9:
22:72:73:67:ea:17:7a:48:c6:51:50:f4:ad:f0:52:
fd:f3:cd:c9:0d:8c:d4:6e:6d:4c:2d:76:d7:0c:27:
cf:51:79:5e:8e:31:d9:7e:b0:bb:f7:cc:4f:7e:fe:
ef:b2:9a:0b:6d:99:ad:f1:51:05:fd:d9:70:3f:d3:
bf:a2:c0:8a:a1:77:8c:8e:ce:53:65:b8:d7:70:3d:
87:3b:4e:b9:a2:2e:8d:b9:df:27:3a:d7:3b:fd:92:
ff:13:b7:5d:46:04:55:93:3d:6a:5e:41:3d:39:6c:
03:3f:8d:bf:7f:95:f8:33:10:24:78:86:75:4c:77:
cd:45:be:45:f0:17:97:21:eb:63:d1:ca:ee:c1:87:
bc:eb:16:5b:21:04:e2:64:81:50:a9:4f:82:f9:52:
d6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:64:9F:13:AD:20:FB:62:5E:E1:B3:30:14:73:86:41:6D:39:7D:EB
X509v3 Authority Key Identifier:
keyid:1E:40:AB:40:E5:38:60:87:12:50:E9:BA:C4:E1:63:33:97:10:59:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkCrQOU4YIcSUOm6xOFjM5cQWV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/5594ed-7eb8-431e-930c-7f866daa5464/1/iGSfE60g-2Je4bMwFHOGQW05fes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/5594ed-7eb8-431e-930c-7f866daa5464/1/HkCrQOU4YIcSUOm6xOFjM5cQWV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.241.0-91.234.243.255
Signature Algorithm: sha256WithRSAEncryption
ad:03:3b:ce:0f:49:71:ec:d0:1d:ef:03:38:d4:ad:53:38:2e:
77:b1:42:9a:39:af:a0:6d:4d:8c:db:f4:34:73:1e:7a:6f:d9:
7e:2d:01:1d:ce:07:d9:1e:01:33:eb:dc:f4:c6:bf:c5:20:2f:
aa:54:88:58:15:83:56:10:ed:4d:f0:e5:d2:f4:44:f4:3e:f7:
90:71:9b:0b:dd:59:22:5c:e1:3d:c7:f7:33:e9:a8:72:25:8d:
d8:06:7f:fa:1f:fb:ba:ff:d2:01:66:8b:5b:ea:14:0e:47:8f:
97:ef:2a:6e:f3:53:66:48:b0:5b:87:a9:3f:a1:6b:ab:00:b9:
c5:db:d7:05:84:73:04:7a:49:53:5f:b0:e2:2c:32:01:e9:03:
d7:b2:12:d0:24:87:ca:d1:58:b9:97:33:e1:83:64:94:d0:aa:
aa:1f:7b:32:2d:8e:59:49:d3:73:a2:0c:d8:05:6e:84:a5:24:
41:a9:fb:ae:ef:de:35:0b:ac:ae:e7:a7:9e:c4:17:54:f1:43:
12:58:ec:a6:45:3d:5e:4d:43:ca:99:15:f8:58:9a:89:a9:ed:
2c:44:25:f0:5f:8d:bb:8c:90:b2:b1:48:6f:e7:6a:4a:f1:9d:
a3:04:75:a4:33:de:6e:d9:68:a7:90:3e:fe:d7:09:f5:43:6e:
ed:4a:03:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:14 2024 by rpki-client on console-fra.rpki-client.org