Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/sMDaedKzCu2-GpxBvc98RlELeOg.roa
File: sMDaedKzCu2-GpxBvc98RlELeOg.roa (raw, json)
Hash identifier: QK4szO8JfeWP6ZdS33nnyZq5NxUvE4cwKhs0fbTZxcQ=
Subject key identifier: B0:C0:DA:79:D2:B3:0A:ED:BE:1A:9C:41:BD:CF:7C:46:51:0B:78:E8
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 01867EE673236ED84BE9E25011FD6707D948
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/sMDaedKzCu2-GpxBvc98RlELeOg.roa
Signing time: Thu 23 Feb 2023 15:31:17 +0000
ROA not before: Thu 23 Feb 2023 15:31:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.231.156.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7e:e6:73:23:6e:d8:4b:e9:e2:50:11:fd:67:07:d9:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Feb 23 15:31:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0c0da79d2b30aedbe1a9c41bdcf7c46510b78e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:aa:77:70:ed:c8:6b:4b:ab:16:d8:af:be:8f:
4a:24:f4:59:6d:69:17:6e:7a:5e:42:b3:76:fb:a9:
3c:b7:a3:2c:17:e8:74:53:49:e2:85:a1:80:47:94:
f6:b3:c2:55:7c:42:7c:9f:e7:1f:53:0b:7b:8b:ed:
f9:f2:3d:5f:45:da:f8:f9:cd:44:ca:5e:16:88:b9:
02:d9:3e:2f:b2:0c:f1:b6:15:ed:67:45:54:c7:22:
8f:14:26:0e:ee:38:23:e1:41:0c:a4:7e:2b:51:4c:
09:b5:e0:d3:12:4b:6f:fe:a4:c0:27:4b:69:44:5b:
e9:1d:5b:ff:58:2b:06:39:d6:b3:a6:36:32:aa:1c:
b6:db:00:49:20:71:e8:ab:09:01:05:4e:77:a9:b2:
bb:5a:cc:65:90:3d:b2:c5:96:26:62:4c:8a:6c:d5:
68:43:ae:66:8b:e8:44:cf:f4:4a:d6:a8:0c:9c:8e:
c1:39:64:e7:30:d2:13:59:16:93:dd:2d:d9:dc:19:
d6:07:b7:18:60:5d:51:b2:f0:f4:54:35:ed:30:1a:
d1:e6:a0:b3:4d:63:ee:92:5c:c7:c0:e1:0a:a4:89:
85:20:1d:de:18:0c:9c:ae:54:da:00:b6:93:81:ed:
9c:eb:c1:ab:b8:9f:f9:a8:73:4d:06:3d:39:e8:bf:
52:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C0:DA:79:D2:B3:0A:ED:BE:1A:9C:41:BD:CF:7C:46:51:0B:78:E8
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/sMDaedKzCu2-GpxBvc98RlELeOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:0b:ac:bd:22:09:2c:a3:a3:d0:c5:fa:3e:12:b2:1b:ec:1d:
44:77:8d:c8:3c:65:7a:0c:c9:83:6e:e1:dd:bb:4d:2e:cf:67:
46:43:38:39:ea:fe:1d:6e:c3:0c:a6:02:d0:4b:81:99:77:2b:
9d:93:28:1e:5e:40:76:da:0a:a4:82:a4:e3:80:f2:20:5a:1b:
b0:e3:e3:59:73:0e:2d:6a:fe:bb:75:d3:1a:48:d5:c5:6c:a9:
04:1e:81:65:06:b6:de:da:a3:b8:e8:0f:ac:47:6e:88:0f:1a:
c2:04:48:4b:fc:9d:25:4b:91:d6:0f:7f:82:00:7f:fb:b9:b7:
9d:65:75:c9:46:55:df:81:41:76:ab:7b:c0:81:00:ff:90:09:
bb:6e:72:40:82:15:c4:98:ae:1f:a1:c6:67:15:0a:5b:a6:cb:
a0:10:de:82:04:6a:f5:e1:cb:c2:52:03:37:9f:47:49:15:63:
bf:34:5b:2f:33:68:1a:5d:e4:f0:63:45:79:d7:03:74:1e:39:
a9:be:71:0f:13:bc:08:be:1a:48:78:b3:f9:7e:55:0d:f6:b6:
6b:54:56:61:fa:92:cf:cd:38:de:b5:98:fb:b3:b7:63:97:26:
ee:7f:35:01:f7:1e:cd:e5:98:74:76:da:88:6a:83:dc:62:e0:
5a:6d:f1:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org