Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/1pg0b_bZ4dQNr7ozEqGJlz3tFXs.roa
File: 1pg0b_bZ4dQNr7ozEqGJlz3tFXs.roa (raw, json)
Hash identifier: ZxhI/kmJLOZ13+ZyIYAiwcw902oRbP95u9P4l3jOy5Y=
Subject key identifier: D6:98:34:6F:F6:D9:E1:D4:0D:AF:BA:33:12:A1:89:97:3D:ED:15:7B
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 01890BA73FD199A46C00C211DFBF01A5440B
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/1pg0b_bZ4dQNr7ozEqGJlz3tFXs.roa
Signing time: Fri 30 Jun 2023 09:34:17 +0000
ROA not before: Fri 30 Jun 2023 09:34:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.232.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0b:a7:3f:d1:99:a4:6c:00:c2:11:df:bf:01:a5:44:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Jun 30 09:34:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d698346ff6d9e1d40dafba3312a189973ded157b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:29:b4:a9:d2:5e:96:36:a3:20:df:33:cd:96:
ed:a9:f4:60:6a:0b:6c:9e:13:63:40:c2:66:21:f6:
92:e0:76:50:f4:e6:e7:73:b4:73:e5:8a:87:56:00:
63:45:55:e1:c0:cb:63:65:11:b9:73:17:ac:57:18:
dd:48:8b:2c:9e:64:38:e4:39:6b:ea:4f:0d:05:4d:
54:cf:fa:df:df:11:37:21:32:1a:ea:ae:41:8e:cd:
e6:c8:57:a4:08:fa:91:98:8f:be:04:a4:46:b3:74:
dc:7f:f8:8e:b9:7d:b4:73:06:58:89:46:67:80:a2:
8d:ee:85:63:8b:c2:74:db:41:03:7b:2e:15:4f:d1:
33:44:2a:4a:19:95:9f:17:41:9f:2b:96:e0:bb:66:
a9:64:d3:17:65:62:0f:bc:03:39:67:b5:89:66:dc:
94:23:c4:cf:16:74:cf:18:0a:ff:ac:36:65:b9:68:
c3:90:36:3e:da:0f:37:da:d4:a3:4c:1a:af:0a:f0:
00:2c:48:26:0d:99:97:a1:ec:fe:9c:e6:5b:10:ca:
39:b6:57:0a:4b:98:93:e9:b2:2c:4c:c5:e2:f1:30:
f8:b7:8d:02:cb:af:bc:32:56:6f:0e:22:83:c4:dc:
b8:eb:d6:e8:de:77:ec:ca:49:0e:d3:d0:2b:d5:7b:
95:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:98:34:6F:F6:D9:E1:D4:0D:AF:BA:33:12:A1:89:97:3D:ED:15:7B
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/1pg0b_bZ4dQNr7ozEqGJlz3tFXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
23:ca:b3:20:7e:33:e6:0a:f4:8c:a6:87:45:be:82:9a:39:23:
3b:13:2d:1d:b7:84:b3:47:e0:90:4d:aa:b1:d0:8e:dc:9e:4b:
a2:ca:6f:b1:f1:43:e6:52:56:1d:6a:cf:26:e9:8d:8b:6c:12:
cb:7c:27:9a:c1:82:cb:31:3a:df:55:e4:76:ab:92:a6:00:1f:
25:43:b4:ff:a8:e5:86:1b:c0:df:dc:77:b4:4f:cf:54:79:f9:
da:61:00:79:7e:a7:6b:0c:84:4b:fd:14:68:ec:06:76:a0:87:
25:ef:65:98:65:f9:a4:92:7b:c9:22:30:ce:13:1e:54:0d:7e:
e3:b1:8d:9c:fb:db:bc:72:e0:c3:94:2c:c7:17:52:ad:54:b6:
e7:89:7f:ad:60:4e:68:35:8e:7f:e5:7b:c6:ed:12:c6:1d:bb:
27:8d:1e:5d:06:36:43:5a:f9:5b:42:40:20:42:72:03:8a:da:
79:5c:f6:8d:34:9e:4e:d6:b7:43:d3:25:82:0e:cc:f3:83:e3:
44:86:c8:68:39:4c:30:44:1f:d0:d6:4a:e5:d6:67:3a:d6:55:
6f:b2:b6:a2:a5:5b:b3:3b:fb:83:0f:10:cf:40:32:aa:b2:99:
a3:84:f5:f2:8f:57:7f:ea:b9:c6:9b:db:a3:f1:77:07:0e:2d:
52:01:3a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:35 2024 by rpki-client on console-ams.rpki-client.org