Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/0236d2-b00b-4640-93be-6bae3e9ea74b/1/V83Kl6MO4RJeV2B1qsU-1iPhH5c.roa
File: V83Kl6MO4RJeV2B1qsU-1iPhH5c.roa (raw, json)
Hash identifier: /sq+wJJYkQvokbQy9haazeIPzjlWTKe1q9dHMefXP7o=
Subject key identifier: 57:CD:CA:97:A3:0E:E1:12:5E:57:60:75:AA:C5:3E:D6:23:E1:1F:97
Certificate issuer: /CN=79bf086e2125068d99f5dc1fca4c60171759d1ba
Certificate serial: 018A2163BFF8EC7E6C230022C6974C724EB4
Authority key identifier: 79:BF:08:6E:21:25:06:8D:99:F5:DC:1F:CA:4C:60:17:17:59:D1:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eb8IbiElBo2Z9dwfykxgFxdZ0bo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/0236d2-b00b-4640-93be-6bae3e9ea74b/1/V83Kl6MO4RJeV2B1qsU-1iPhH5c.roa
Signing time: Wed 23 Aug 2023 07:54:59 +0000
ROA not before: Wed 23 Aug 2023 07:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2119
IP address blocks: 91.233.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:63:bf:f8:ec:7e:6c:23:00:22:c6:97:4c:72:4e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79bf086e2125068d99f5dc1fca4c60171759d1ba
Validity
Not Before: Aug 23 07:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57cdca97a30ee1125e576075aac53ed623e11f97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d7:f2:48:16:c3:97:4b:e6:c6:e0:91:eb:ff:
a8:81:55:68:46:96:c0:fc:ea:b1:03:31:e0:ef:65:
23:0c:6b:4f:90:f5:31:e6:bb:17:fc:0e:16:8a:aa:
8a:bb:0b:90:d4:79:fa:e8:aa:4e:c7:46:56:9c:21:
ce:b7:4e:e2:0a:2b:08:9f:99:7b:5b:09:16:e2:f6:
b4:08:6b:54:ec:db:cc:23:98:c4:9e:c3:9e:10:c6:
fc:ee:64:d2:01:cf:66:45:c7:26:f0:eb:15:85:3d:
58:f2:f8:8f:59:f5:ad:5f:16:20:24:07:ed:43:48:
87:dd:50:5d:48:31:af:c7:7c:24:41:1a:bc:1e:5d:
20:3d:d3:d8:1d:a9:52:13:ea:69:96:d1:84:b8:a2:
07:6c:53:11:38:70:18:2f:57:f9:a1:40:3c:64:3b:
b6:bd:b2:56:f0:42:7b:ac:ca:b6:94:ea:1d:eb:1a:
76:55:9d:13:8b:ee:6b:bc:cf:4d:e7:34:84:db:8f:
f0:1c:ce:d7:a7:05:60:4f:21:68:c6:bd:ba:9f:e3:
d8:12:e2:6d:75:90:69:d8:61:a8:07:b2:9d:d9:7c:
d5:bd:57:01:91:96:32:05:7d:a1:a4:b4:d3:7a:54:
7d:1e:db:9a:51:26:ea:9f:d0:b3:eb:5d:64:a6:b5:
f3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:CD:CA:97:A3:0E:E1:12:5E:57:60:75:AA:C5:3E:D6:23:E1:1F:97
X509v3 Authority Key Identifier:
keyid:79:BF:08:6E:21:25:06:8D:99:F5:DC:1F:CA:4C:60:17:17:59:D1:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb8IbiElBo2Z9dwfykxgFxdZ0bo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0236d2-b00b-4640-93be-6bae3e9ea74b/1/V83Kl6MO4RJeV2B1qsU-1iPhH5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0236d2-b00b-4640-93be-6bae3e9ea74b/1/eb8IbiElBo2Z9dwfykxgFxdZ0bo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.14.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:55:77:1a:8b:2c:65:da:ee:f3:14:50:1a:b8:92:73:f2:61:
db:d8:1b:b8:02:f6:f4:79:18:b8:c7:f6:62:4f:49:bd:9d:e8:
77:a9:b2:db:bb:bf:65:88:97:dc:10:e4:ca:a0:72:82:ab:4c:
aa:22:bd:30:9c:16:68:ff:b2:56:76:5f:b2:4a:3c:aa:ef:02:
59:d5:db:6c:bb:ca:c4:c9:9b:4f:e7:ad:b2:81:2c:fe:c9:6c:
1f:8f:7d:5c:93:f4:e7:16:bb:60:cf:57:db:8b:69:34:74:1d:
bd:55:0c:83:18:0c:b3:89:8f:90:4b:42:bd:41:6b:46:e4:b2:
50:50:47:bf:ef:07:3b:dd:15:23:dd:f7:dc:a8:fa:52:79:36:
25:e9:9d:15:1a:5c:0d:99:1f:e1:61:b1:e8:30:b5:f6:55:f7:
1d:5a:ad:14:5b:1b:17:f9:28:d2:9a:f1:d1:3a:b5:5f:c0:a3:
a8:2c:fb:d1:12:af:9f:f7:81:52:07:1c:8a:50:71:84:f3:2b:
6b:a7:3c:bc:29:ad:5f:ab:df:57:83:a7:15:2a:fa:a9:a6:ac:
08:77:81:ea:01:f4:72:c6:5a:7c:af:a7:33:14:be:6a:ee:34:
0c:71:63:36:f1:84:e0:73:d4:9b:b0:77:55:dd:a0:64:13:9b:
91:47:55:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:46 2024 by rpki-client on console-fra.rpki-client.org