Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/nI8Bcra3izA0AQJi7tTTiDLo3rg.roa
File: nI8Bcra3izA0AQJi7tTTiDLo3rg.roa (raw, json)
Hash identifier: QVwZZkUWufzAV5QGWgywdMhFm2Nmh9ekAZoQwfIegqI=
Subject key identifier: 9C:8F:01:72:B6:B7:8B:30:34:01:02:62:EE:D4:D3:88:32:E8:DE:B8
Certificate issuer: /CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Certificate serial: 0189392800E22A8C3180A3002D153D56156F
Authority key identifier: 5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/nI8Bcra3izA0AQJi7tTTiDLo3rg.roa
Signing time: Sun 09 Jul 2023 05:37:50 +0000
ROA not before: Sun 09 Jul 2023 05:37:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 91.211.90.0/24 maxlen: 24
91.211.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 13:32:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:39:28:00:e2:2a:8c:31:80:a3:00:2d:15:3d:56:15:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Validity
Not Before: Jul 9 05:37:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c8f0172b6b78b3034010262eed4d38832e8deb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:23:eb:f9:35:14:2e:a3:ef:56:86:ef:29:84:
df:a9:f2:13:e1:f3:83:11:75:59:bf:9f:9f:0d:bd:
5a:8d:10:4c:21:5b:ae:b9:a6:70:98:ec:8a:23:c7:
d9:6d:76:0b:93:76:5b:cd:27:ab:a8:b9:ff:49:87:
09:76:ab:6f:5e:41:61:49:eb:f4:49:71:51:a3:91:
00:d3:f5:ef:ab:3f:ab:6d:8e:d7:6c:45:5b:24:73:
52:71:85:0e:9a:09:73:9e:7c:3b:cc:a4:78:b6:a5:
39:d3:5b:8f:37:00:e3:a3:c8:1d:3c:86:fa:ac:3a:
05:a2:e1:ad:f8:8f:80:99:38:1b:b4:cd:c2:e7:0b:
50:c4:f5:30:ac:9d:b5:cb:fc:e8:f5:82:fd:3a:63:
0f:2b:19:4b:c1:16:d0:ec:32:bc:ea:2d:96:d9:81:
1c:bd:ab:05:0a:44:30:23:f5:d7:fb:77:9f:59:fd:
75:58:a1:43:82:31:dc:cb:64:cd:91:7b:de:52:88:
5f:15:0b:50:b6:21:08:1f:98:38:4c:3b:2a:51:58:
c0:9d:c1:cd:7a:dc:15:2d:c3:29:3a:b3:b5:6d:9d:
b8:69:56:56:6d:44:05:22:09:4b:1f:95:a9:d6:66:
67:09:a8:35:eb:e1:66:52:c6:88:1e:d2:38:ab:5b:
2f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:8F:01:72:B6:B7:8B:30:34:01:02:62:EE:D4:D3:88:32:E8:DE:B8
X509v3 Authority Key Identifier:
keyid:5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/nI8Bcra3izA0AQJi7tTTiDLo3rg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/XmFA8XMSeE72KuO-AwwMLMZhpwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.89.0-91.211.90.255
Signature Algorithm: sha256WithRSAEncryption
27:a3:7f:97:fd:49:bc:92:b9:0d:25:0f:1b:8f:2d:b5:0f:60:
85:3a:e1:80:eb:f2:90:e6:f3:36:c3:2b:e5:69:af:9c:71:cc:
ec:86:46:85:a1:e6:31:c6:aa:f1:0c:a0:b9:87:4f:26:01:ec:
58:c9:b2:dc:6b:ca:bb:56:92:a0:78:af:66:db:1f:29:e4:a8:
2d:f2:92:d2:cb:10:15:77:fe:1b:74:b4:f9:55:cb:59:82:19:
1c:85:03:20:6f:93:a4:03:83:5d:d0:6f:11:73:19:d3:fd:bf:
78:35:85:2c:95:5b:7b:fa:0c:30:9e:0b:6b:ca:e9:7b:7b:10:
3c:84:b0:9f:b7:bb:78:fa:ea:ff:b9:10:6b:e0:bf:b9:30:21:
9e:ff:03:5c:6c:fa:c6:76:c8:62:8d:48:fa:b9:67:b2:cb:be:
ff:82:ed:13:74:27:b2:ee:c1:b7:02:6b:2a:cf:c5:73:27:c2:
4d:2d:3e:b4:b7:46:0c:26:7d:97:35:99:f2:b0:04:a7:4b:14:
73:11:ca:6d:03:4e:11:84:31:16:49:49:a9:18:c8:57:4c:b0:
06:02:c4:20:b5:0f:50:7a:37:b8:ab:c8:1c:12:d9:62:7e:88:
17:97:12:ee:12:f8:dd:73:85:b6:27:df:f8:45:9b:53:ec:94:
ec:a7:21:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:11 2024 by rpki-client on console-fra.rpki-client.org