Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/kWeJtyIr7_nMm0-kBcoDovNMnNk.roa
File: kWeJtyIr7_nMm0-kBcoDovNMnNk.roa (raw, json)
Hash identifier: MPUAe2Yv2qw5hCNGihIw/sQf1Ju+LsgO6d8PzCkVzAI=
Subject key identifier: 91:67:89:B7:22:2B:EF:F9:CC:9B:4F:A4:05:CA:03:A2:F3:4C:9C:D9
Certificate issuer: /CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996
Certificate serial: 018B900C7063EEB26687C8EDA51862C20BB6
Authority key identifier: 84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/kWeJtyIr7_nMm0-kBcoDovNMnNk.roa
Signing time: Thu 02 Nov 2023 12:40:16 +0000
ROA not before: Thu 02 Nov 2023 12:40:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206238
IP address blocks: 188.213.88.0/21 maxlen: 24
91.132.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:90:0c:70:63:ee:b2:66:87:c8:ed:a5:18:62:c2:0b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84bfc451fc4f2411addd00a9fbb17346ad6e8996
Validity
Not Before: Nov 2 12:40:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=916789b7222beff9cc9b4fa405ca03a2f34c9cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0c:eb:1e:ea:9f:71:ab:5d:aa:a7:8e:e0:dd:
53:b5:de:07:5e:76:13:8a:b3:0a:da:fe:7e:bf:81:
24:72:03:85:8e:fa:14:16:ec:ba:ff:bb:cc:16:fa:
f5:9b:ae:12:be:c6:3e:5e:a0:17:2b:e9:66:be:99:
9b:55:7a:cc:c1:dc:ec:4c:56:2d:4d:16:4a:36:b7:
74:9f:7f:c0:f1:dc:11:4f:d4:21:88:4d:a3:3c:68:
c5:ec:a2:f2:7a:92:3a:9e:76:a7:7e:44:0c:70:6e:
65:46:f3:00:4d:fa:85:c9:9d:9b:ea:43:67:eb:08:
6b:0b:f7:d9:d2:71:69:21:73:2f:ed:c9:f2:6a:e6:
e9:6e:40:69:6b:75:75:fb:4f:59:8b:97:d0:78:e7:
1a:54:cc:e8:27:25:2e:a4:48:27:09:58:86:d2:c9:
a1:d9:a3:50:34:5e:3a:42:9b:7b:ce:7e:bb:86:3e:
7f:59:a5:aa:a3:36:47:d3:a9:94:5d:18:2a:52:c9:
a5:f5:6a:07:25:cb:f3:c2:40:05:18:34:f7:9e:29:
42:e1:8f:2c:f8:c4:d3:7e:d1:53:bb:1e:f0:c4:b2:
5e:c5:6c:6e:a6:50:61:cb:6a:24:7d:38:36:d2:53:
dd:7c:8a:48:d4:dc:41:5b:ca:d2:43:51:c8:33:0b:
7c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:67:89:B7:22:2B:EF:F9:CC:9B:4F:A4:05:CA:03:A2:F3:4C:9C:D9
X509v3 Authority Key Identifier:
keyid:84:BF:C4:51:FC:4F:24:11:AD:DD:00:A9:FB:B1:73:46:AD:6E:89:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hL_EUfxPJBGt3QCp-7FzRq1uiZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/kWeJtyIr7_nMm0-kBcoDovNMnNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b7be64-86d4-443b-9686-f66317977968/1/hL_EUfxPJBGt3QCp-7FzRq1uiZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.40.0/22
188.213.88.0/21
Signature Algorithm: sha256WithRSAEncryption
67:76:48:fb:c9:17:62:b0:30:bb:19:38:73:3d:de:df:f7:2e:
25:33:03:57:f6:9d:0f:2e:70:04:e7:1a:a8:f2:51:63:fe:c6:
ff:e3:cc:42:7c:cf:f8:12:cf:83:95:25:ed:d1:11:42:c4:c9:
18:5f:fa:20:c9:bb:6c:db:a1:20:6a:f9:2f:3b:03:c2:6b:8f:
3a:79:2a:ee:72:59:a4:61:a9:9b:39:12:ad:1c:96:87:90:06:
e2:48:16:17:30:c4:e7:35:cd:36:6b:68:3e:00:90:3c:83:a6:
e9:11:11:47:cf:16:23:1a:74:8f:4e:d6:1a:9e:b8:e9:9e:7d:
b7:e0:84:05:ee:09:f0:05:b5:db:97:e5:96:56:00:3c:95:ed:
cd:ce:50:93:36:00:d7:c1:22:20:90:01:5a:bc:56:08:1a:d5:
4a:d2:ee:b9:4a:e6:8e:c6:5c:52:f8:f0:5d:94:e9:16:aa:4e:
25:91:56:49:e4:20:4b:17:ba:fc:7c:78:ac:a9:12:b3:77:67:
2a:be:41:18:22:96:4a:5d:06:5c:10:17:3c:b2:e8:45:ab:f1:
46:d9:13:c7:d4:10:de:b0:f4:31:07:33:9a:ba:17:58:b6:47:
6e:68:28:ff:aa:10:02:cf:f4:da:c1:1d:92:99:f4:12:19:96:
df:1b:65:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:10 2024 by rpki-client on console-ams.rpki-client.org