Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/b0mwBuEWiSD1xT17dIHoBy8xLWE.roa
File: b0mwBuEWiSD1xT17dIHoBy8xLWE.roa (raw, json)
Hash identifier: sxkEjtWCXRPNaNyG1VyJNIznhtEQLLOgXU0NrUgfUXU=
Subject key identifier: 6F:49:B0:06:E1:16:89:20:F5:C5:3D:7B:74:81:E8:07:2F:31:2D:61
Certificate issuer: /CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Certificate serial: 01878DA4D26334173B9410D4B2C43E4879D9
Authority key identifier: 04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/b0mwBuEWiSD1xT17dIHoBy8xLWE.roa
Signing time: Mon 17 Apr 2023 05:16:41 +0000
ROA not before: Mon 17 Apr 2023 05:16:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199088
IP address blocks: 91.197.6.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8d:a4:d2:63:34:17:3b:94:10:d4:b2:c4:3e:48:79:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0407d6c248444f6b5c378db0ffec0f899256eba3
Validity
Not Before: Apr 17 05:16:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f49b006e1168920f5c53d7b7481e8072f312d61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9c:2b:d1:04:e9:96:fe:08:1a:80:25:cf:6e:
8c:ee:15:6d:5d:d1:47:bc:87:61:4a:7a:15:ba:22:
96:23:86:eb:eb:ca:eb:04:cc:a0:02:54:d1:d4:9c:
a1:ea:2e:cb:44:e0:c3:a9:33:cd:94:ec:c3:5e:e4:
f3:8d:3a:b7:66:bd:54:81:97:2a:41:1b:cb:c6:73:
ba:7b:7a:bd:ea:7d:55:55:80:18:15:22:f8:fe:84:
71:63:63:30:bc:cd:4c:c7:dd:47:d6:b6:25:fa:bf:
ee:cd:3b:83:87:93:7d:84:3b:67:ad:75:03:ea:12:
a9:f1:ee:d1:a3:4e:78:61:d8:c7:76:73:c6:63:fc:
7d:b9:0f:75:a4:c3:f2:34:dd:ed:70:ba:92:62:5e:
84:3f:d1:2c:ad:8f:e3:eb:94:9c:22:1e:fa:02:75:
bf:e7:a6:22:be:21:9d:ce:9e:8e:7d:86:26:03:2a:
ce:04:ae:1f:1a:e7:da:20:a8:ab:29:77:e0:f1:b3:
7c:11:ec:35:1c:2b:72:35:ab:dd:13:43:68:d4:e3:
c4:84:01:cc:3f:d2:e3:1f:17:6d:0e:cb:9a:58:66:
53:b2:25:e1:a4:c6:2c:51:0e:70:f6:2e:1a:e1:d5:
92:47:58:f2:4e:43:cb:46:27:55:b7:99:f2:d8:e8:
b8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:49:B0:06:E1:16:89:20:F5:C5:3D:7B:74:81:E8:07:2F:31:2D:61
X509v3 Authority Key Identifier:
keyid:04:07:D6:C2:48:44:4F:6B:5C:37:8D:B0:FF:EC:0F:89:92:56:EB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BAfWwkhET2tcN42w_-wPiZJW66M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/b0mwBuEWiSD1xT17dIHoBy8xLWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5f9e1f-0971-4446-a611-fad19bdc792b/1/BAfWwkhET2tcN42w_-wPiZJW66M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.6.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b5:ad:0d:6f:19:aa:e6:66:dd:90:77:89:05:9e:82:be:bf:
2b:a9:0a:d0:27:4f:1a:c9:37:12:a1:bb:b1:2f:96:c5:05:95:
81:91:d9:4e:57:43:ba:ce:be:78:fa:a4:c3:c5:fc:44:b2:91:
31:14:97:d4:e2:82:27:bf:fa:da:b7:d1:e7:19:cb:08:17:ec:
0c:48:0c:6c:88:5c:95:64:13:00:e0:80:34:c2:70:70:46:02:
75:2e:84:29:bf:45:5e:95:0a:6f:ca:ec:32:16:f9:24:65:fd:
f5:9b:93:b6:69:db:4e:32:bd:64:5f:06:21:53:02:29:00:3b:
1d:b3:66:99:c3:17:b2:c5:a9:1d:0d:bc:1b:a2:66:18:f5:53:
31:7d:a8:06:f8:d9:a5:53:5c:f2:61:bb:64:71:d5:04:57:87:
36:18:40:17:33:80:06:52:f4:83:99:ac:59:3b:36:67:c6:cf:
a0:15:5c:05:fe:54:7e:db:bd:75:b1:ad:4f:0f:88:1a:c9:e5:
6f:c1:b3:82:7f:ab:d5:bc:c0:82:64:eb:84:d6:84:8d:27:6c:
ad:12:2c:60:a9:68:7d:39:22:34:56:0e:68:d7:93:3c:47:6a:
e1:57:c1:3b:6b:4e:95:da:22:c9:d5:56:25:64:7a:2c:6b:f5:
e2:4b:86:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:11 2023 by rpki-client on console-fra.rpki-client.org