Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/prVlfdgXPgbZLazk6i95BbxP0mI.roa
File: prVlfdgXPgbZLazk6i95BbxP0mI.roa (raw, json)
Hash identifier: ZrZzAf8uaC+RR/Znm9s888ZH8xpvgUMq4fOAhABgw9M=
Subject key identifier: A6:B5:65:7D:D8:17:3E:06:D9:2D:AC:E4:EA:2F:79:05:BC:4F:D2:62
Certificate issuer: /CN=ec65d31440bf75d25c606f7915c236ca614464a2
Certificate serial: 0185707069A8487B4B91B51A23AC8A582CD4
Authority key identifier: EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/prVlfdgXPgbZLazk6i95BbxP0mI.roa
Signing time: Mon 02 Jan 2023 03:04:53 +0000
ROA not before: Mon 02 Jan 2023 03:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206953
IP address blocks: 91.150.186.0/23 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:69:a8:48:7b:4b:91:b5:1a:23:ac:8a:58:2c:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec65d31440bf75d25c606f7915c236ca614464a2
Validity
Not Before: Jan 2 03:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6b5657dd8173e06d92dace4ea2f7905bc4fd262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a5:5b:c8:e5:e0:ad:f9:05:d8:c8:fe:19:99:
aa:d2:e1:41:6d:8f:35:c1:ff:94:3e:c5:2d:1b:f9:
b3:76:cd:fc:a3:8e:55:c0:1a:07:de:fb:f8:46:6f:
e1:b6:35:7a:d5:e5:61:2d:14:b2:b4:33:c3:dd:5c:
e8:9b:81:2c:0e:b8:d6:64:a7:5b:f5:9a:8a:af:6f:
5c:cf:81:c4:0f:75:e9:f3:0a:43:85:16:cb:e3:f7:
97:e2:50:e1:bb:42:5c:2e:30:14:28:4c:fd:57:9c:
52:33:d0:87:c6:60:f2:a2:44:8f:d0:7e:c4:01:c3:
22:d6:53:4e:2d:64:54:22:a2:a9:88:cc:39:4d:0e:
fd:d2:89:4a:1f:7d:43:42:b1:ba:e2:44:b0:66:7a:
b1:3c:42:0e:c3:c8:35:2d:3e:1e:e8:be:04:b8:c7:
95:10:42:90:f0:29:ea:7d:9f:fa:11:21:47:26:e5:
e6:91:2f:09:7d:3c:c2:2b:32:aa:4c:19:3c:25:d2:
b6:a7:da:ff:90:eb:98:b1:62:5c:e1:d4:23:d0:48:
01:45:36:a0:b3:37:06:11:05:85:de:e4:f3:cb:2b:
b0:c9:45:6e:1a:bf:6a:cf:6b:5d:b2:d5:29:44:2c:
55:27:de:c0:fb:f8:5f:fb:66:a9:84:c4:46:79:f3:
1e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B5:65:7D:D8:17:3E:06:D9:2D:AC:E4:EA:2F:79:05:BC:4F:D2:62
X509v3 Authority Key Identifier:
keyid:EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/prVlfdgXPgbZLazk6i95BbxP0mI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/7GXTFEC_ddJcYG95FcI2ymFEZKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.150.186.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:37:27:b9:06:c2:f4:cf:f0:13:13:3c:ff:09:b0:67:e9:dc:
22:f8:bc:e3:f2:b0:fc:a0:27:ed:91:ef:fe:d9:e2:ef:47:28:
cd:bf:48:ee:35:bb:44:de:77:47:14:9d:d8:26:da:01:41:0e:
2d:0b:84:c7:52:33:7c:c4:73:45:69:c0:ff:2a:6a:ee:4d:c3:
f7:c8:9e:82:52:ac:28:22:5b:84:95:89:96:36:6c:34:a2:6f:
43:c2:67:a8:59:b7:57:0e:7a:15:8b:d8:c2:74:87:f8:21:3e:
fe:1e:7c:1d:55:b9:2c:35:d3:14:d3:4b:d5:b3:76:89:6d:34:
f7:4f:57:83:35:26:d3:22:b0:7e:5c:09:74:0b:fe:a9:89:19:
96:56:31:b3:03:e6:14:49:0e:4f:d8:8e:67:e3:2b:89:08:5b:
8d:32:3b:53:8e:72:60:53:54:7c:12:80:9d:13:63:a5:47:27:
e0:95:08:dc:98:fc:c6:f7:7d:00:87:5b:86:51:1a:5b:01:a8:
e5:d9:ee:d7:7a:59:e7:26:c2:28:25:64:e5:35:9b:67:9d:78:
05:3b:bf:51:e8:f5:d1:04:9c:e8:cc:65:5d:6b:58:1b:8c:cb:
07:ca:6a:59:1d:3f:8f:88:d7:3c:6b:57:b0:46:7b:b0:17:73:
4d:23:a7:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:28 2024 by rpki-client on console-fra.rpki-client.org