Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/435Y-fJd1QkrRIrYg0EEJQXV7UQ.roa
File: 435Y-fJd1QkrRIrYg0EEJQXV7UQ.roa (raw, json)
Hash identifier: 1UpQOTOSKiUMIV+sRd8LRodQOFJa0/t+SoiGG1Qc5HM=
Subject key identifier: E3:7E:58:F9:F2:5D:D5:09:2B:44:8A:D8:83:41:04:25:05:D5:ED:44
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 0187BDBAFF2A67761F650A0521580147C657
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/435Y-fJd1QkrRIrYg0EEJQXV7UQ.roa
Signing time: Wed 26 Apr 2023 13:22:41 +0000
ROA not before: Wed 26 Apr 2023 13:22:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20900
IP address blocks: 91.240.78.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 08 May 2023 19:51:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:ba:ff:2a:67:76:1f:65:0a:05:21:58:01:47:c6:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: Apr 26 13:22:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e37e58f9f25dd5092b448ad88341042505d5ed44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3a:d5:4b:b8:72:b2:21:af:61:67:69:5d:9d:
94:a5:ce:89:55:2f:36:6a:85:63:47:23:db:78:91:
2e:0e:0f:7f:b3:b7:44:78:09:59:8b:37:f2:86:3b:
70:1e:5e:e9:1d:3a:f5:d3:59:bf:de:e5:99:a7:4e:
d0:9e:21:60:85:cd:2c:21:3a:9e:9d:46:7e:06:93:
78:68:bb:9a:67:9a:24:9a:5c:0c:6e:9d:68:ff:ef:
35:21:fd:c8:8e:a2:6b:40:82:f9:ec:41:18:72:8f:
16:8f:15:d3:75:46:4f:54:a9:6b:53:f6:7f:7e:08:
3d:1f:11:1b:35:c4:57:e1:0d:6f:9d:67:75:ce:07:
6a:7d:a6:8e:ec:fc:b9:6e:03:ac:79:84:7a:9e:d3:
a2:40:84:05:9d:6e:b9:02:34:68:30:a4:19:de:28:
d9:b0:1c:b6:21:b8:52:72:92:d2:40:bc:18:d4:0c:
e7:2d:e8:76:64:d8:ba:03:83:0c:18:c9:36:a4:6b:
ab:d5:1e:e2:00:b3:9d:9f:0b:1e:a6:34:39:68:27:
f1:54:f7:04:3f:96:7f:21:f8:ad:9b:af:c8:19:3e:
37:c0:50:ca:53:8f:4a:b1:bf:b3:0c:1d:ac:fe:75:
d0:4f:41:7c:07:c1:69:cf:e3:73:53:59:ec:d3:b8:
bc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:7E:58:F9:F2:5D:D5:09:2B:44:8A:D8:83:41:04:25:05:D5:ED:44
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/435Y-fJd1QkrRIrYg0EEJQXV7UQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.78.0/23
Signature Algorithm: sha256WithRSAEncryption
85:57:63:b5:84:88:82:cc:a8:13:15:28:31:14:b6:73:98:b6:
6f:4e:a1:f1:07:d6:22:9d:8b:ba:ad:aa:92:92:c8:38:be:c8:
3d:1c:76:68:8d:12:fd:14:30:a0:8f:18:5e:14:c4:c6:94:c9:
54:0d:e2:e9:fd:0d:4e:57:6c:9a:ff:c2:76:f4:ca:a6:97:bf:
6a:b7:5a:02:85:82:94:b2:61:15:01:1f:e4:51:55:15:1d:2d:
0e:3f:4a:6d:3c:a8:6a:b9:2e:7d:64:d8:75:0f:01:1b:e6:54:
51:9c:c9:77:df:f5:38:8c:d9:92:71:b4:0f:88:18:8a:38:e7:
b9:9d:ea:4d:a4:a7:0e:96:88:f8:ed:b1:6d:54:6d:56:e1:69:
bf:5b:a8:4b:e2:b7:c6:87:47:86:c6:67:11:7a:c0:68:0a:1c:
32:e1:7b:28:6e:7c:6d:4d:74:ac:96:63:f1:58:39:37:8f:07:
83:65:47:48:9b:d0:2a:b6:47:cc:c6:9b:42:73:7f:dd:53:b9:
a5:dd:33:e7:84:ae:13:e2:f6:ed:2d:31:d6:39:39:01:90:d4:
71:25:08:df:bc:51:1a:98:dd:1e:3e:27:9f:99:1a:a8:75:45:
97:c4:79:07:5a:84:af:e7:cf:a0:58:24:95:0f:c9:67:36:4a:
08:2c:0e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:56 2024 by rpki-client on console-ams.rpki-client.org