Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d71c56-b8be-4d1a-bc22-037539631bb4/1/ErNr7HMaUfRUbCgG9fsCf-L3pEk.roa
File: ErNr7HMaUfRUbCgG9fsCf-L3pEk.roa (raw, json)
Hash identifier: sFMIr/0INwvtMpR1d0XBsO2MsPdLZ8mwmGlTsIkL9Po=
Subject key identifier: 12:B3:6B:EC:73:1A:51:F4:54:6C:28:06:F5:FB:02:7F:E2:F7:A4:49
Certificate issuer: /CN=711b4f3aa45dc4ec336d62e9a7e89d79b3efcab0
Certificate serial: 01856EAFA354882DCF0F18C1E9627179A05B
Authority key identifier: 71:1B:4F:3A:A4:5D:C4:EC:33:6D:62:E9:A7:E8:9D:79:B3:EF:CA:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRtPOqRdxOwzbWLpp-idebPvyrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d71c56-b8be-4d1a-bc22-037539631bb4/1/ErNr7HMaUfRUbCgG9fsCf-L3pEk.roa
Signing time: Sun 01 Jan 2023 18:54:42 +0000
ROA not before: Sun 01 Jan 2023 18:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 91.238.123.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:a3:54:88:2d:cf:0f:18:c1:e9:62:71:79:a0:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=711b4f3aa45dc4ec336d62e9a7e89d79b3efcab0
Validity
Not Before: Jan 1 18:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12b36bec731a51f4546c2806f5fb027fe2f7a449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:00:64:80:8e:81:4f:4a:a9:f4:ad:8b:64:f3:
68:7f:01:26:65:25:a7:00:39:ea:09:7b:85:d7:d7:
50:0e:79:73:b3:1d:88:0b:b8:db:72:2b:72:01:1c:
ad:27:bb:30:70:89:45:90:b7:6a:88:be:5e:1a:b7:
f2:91:c0:58:f5:17:2d:1c:53:4a:07:b4:e4:87:3a:
5d:37:c1:3a:a2:4e:3a:a0:69:f2:1c:eb:bd:b3:c3:
37:38:51:97:da:c5:0f:25:b8:9f:a4:ad:9a:79:2f:
3a:9d:e7:fa:e9:5b:2c:73:16:dd:11:5f:c8:d7:3e:
58:ea:c2:7c:fe:a2:a0:df:07:5e:3e:b6:6b:b7:65:
f3:84:a6:d7:89:0f:21:61:2c:a6:02:cc:d6:8c:e9:
23:26:fc:21:26:8e:1b:94:34:de:9a:c6:2c:a4:c1:
b5:86:35:6c:d9:dd:6f:b1:d7:63:e8:e1:5d:ca:c3:
60:bc:30:73:da:fb:bf:6a:61:45:cc:23:83:db:54:
a2:81:4e:86:0b:cf:01:14:e1:d9:b1:ed:42:06:12:
a8:0d:01:d8:53:75:8c:c6:0e:d3:1f:60:a9:02:50:
56:e7:c0:0f:b9:6d:7a:e6:7f:b6:67:58:3d:f3:2a:
06:ba:40:70:da:2b:85:d1:88:a0:05:ea:17:af:cc:
d8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B3:6B:EC:73:1A:51:F4:54:6C:28:06:F5:FB:02:7F:E2:F7:A4:49
X509v3 Authority Key Identifier:
keyid:71:1B:4F:3A:A4:5D:C4:EC:33:6D:62:E9:A7:E8:9D:79:B3:EF:CA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRtPOqRdxOwzbWLpp-idebPvyrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d71c56-b8be-4d1a-bc22-037539631bb4/1/ErNr7HMaUfRUbCgG9fsCf-L3pEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d71c56-b8be-4d1a-bc22-037539631bb4/1/cRtPOqRdxOwzbWLpp-idebPvyrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.123.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:56:43:7f:54:93:27:5b:02:94:6e:b2:66:86:e1:5a:52:cc:
be:bc:15:a3:d8:d6:1f:fa:ba:c4:36:b3:ce:76:8f:db:65:f4:
ac:9a:a0:23:ee:52:f5:b9:84:27:dc:01:8d:e0:18:b9:12:af:
fd:92:ac:b6:17:41:ea:2c:b3:1c:83:f6:8f:6a:e9:ce:cf:a7:
25:98:d6:89:26:37:f7:b3:e1:81:d6:7c:7a:81:0a:72:64:46:
cb:f6:26:dc:82:1c:85:8f:ba:be:7b:b2:df:9d:a5:d5:84:00:
83:95:ba:9e:6b:e3:a0:4b:95:f3:44:87:60:69:1d:21:b0:82:
e2:51:26:18:45:41:24:8f:54:2c:59:2e:89:f7:e2:a4:58:9a:
69:1c:a6:7f:b1:31:b5:76:d8:9b:52:5f:95:5b:5a:4c:cd:83:
29:e7:76:0a:2f:c4:67:e2:c8:5d:80:59:ff:e5:f6:01:31:09:
cf:ae:d7:b0:6d:b7:0e:fa:3b:04:13:dd:28:14:23:e0:90:a5:
0b:dd:56:65:37:df:04:02:7c:87:d8:ea:e8:9e:c5:26:91:04:
fa:79:52:a3:29:03:6d:6b:3a:93:c6:bd:0d:93:e3:ae:66:6b:
8f:1f:ec:8d:b6:ed:b9:da:49:b0:7d:89:c1:72:72:69:13:39:
4d:5c:f9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:10 2024 by rpki-client on console-ams.rpki-client.org