Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/yHB74pb9xjLYHo7EsBJxrHDnC4c.roa
File: yHB74pb9xjLYHo7EsBJxrHDnC4c.roa (raw, json)
Hash identifier: gIuvtl1tcg1sv5GP3FaB7giD2e06kOQZGtpauRkdUPQ=
Subject key identifier: C8:70:7B:E2:96:FD:C6:32:D8:1E:8E:C4:B0:12:71:AC:70:E7:0B:87
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 018AFB579EDEA7A17D3EC8053026AE1DEDB4
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/yHB74pb9xjLYHo7EsBJxrHDnC4c.roa
Signing time: Wed 04 Oct 2023 15:38:58 +0000
ROA not before: Wed 04 Oct 2023 15:38:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211439
IP address blocks: 91.132.12.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fb:57:9e:de:a7:a1:7d:3e:c8:05:30:26:ae:1d:ed:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Oct 4 15:38:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8707be296fdc632d81e8ec4b01271ac70e70b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7d:ce:5f:d8:fd:59:d9:3e:1d:3f:d7:30:14:
6e:f6:dc:1f:d4:20:86:e2:b7:3f:23:ba:9c:43:98:
f5:d5:ae:ec:08:32:39:f6:7e:89:ea:9b:f1:2e:e1:
34:51:16:7a:1b:b5:f1:bd:30:f1:73:ec:a2:75:4e:
38:6a:da:f1:fd:50:90:2b:d2:ce:8d:9c:5b:1e:4c:
1f:48:c4:aa:e4:88:36:94:3b:85:9d:3e:b6:7d:29:
61:d4:54:a7:b4:8a:ca:50:ad:49:54:90:7c:e5:bc:
be:e8:cb:bd:16:2e:12:7e:df:a8:4f:da:19:ab:7f:
df:40:19:d0:db:ef:d9:e2:ae:ef:d1:5b:57:47:90:
0c:f4:3a:3c:a7:68:7f:e4:71:a1:8e:89:48:ed:a6:
a0:97:95:2f:0e:fd:54:a0:4c:2d:45:35:97:b4:c4:
ed:18:3e:d2:68:b0:85:57:a8:ef:27:b1:f6:31:7b:
0d:e0:c9:e1:eb:ee:fc:f0:b0:a3:7f:2a:3f:70:76:
74:c0:08:83:ae:46:6e:11:2e:8f:62:86:1c:c7:15:
12:43:7e:ff:8b:2b:5f:6f:ca:0f:c6:92:d4:eb:1b:
1e:b5:a1:08:fd:e3:6e:09:8a:37:c3:d5:5a:91:99:
96:8b:72:42:78:57:3a:ec:f0:3b:b4:fa:ee:0c:24:
e1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:70:7B:E2:96:FD:C6:32:D8:1E:8E:C4:B0:12:71:AC:70:E7:0B:87
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/yHB74pb9xjLYHo7EsBJxrHDnC4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.12.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:2f:e5:e2:f7:36:20:d1:1c:76:7a:7e:de:78:65:f5:95:84:
c0:dc:7c:1a:b7:9e:45:6d:f6:4c:95:e1:a9:5f:72:5d:54:24:
5f:85:71:f3:2d:2c:5d:9f:1d:bb:1c:0d:0a:41:eb:35:96:e3:
81:85:fe:4d:b9:7c:b2:23:20:4c:cb:48:7f:a2:e8:b7:51:65:
01:bd:6a:63:3c:52:d5:d1:4f:54:14:8f:e5:aa:7b:60:f9:79:
ca:fb:ca:66:10:13:d9:ee:75:43:48:bb:23:d1:47:0e:6f:38:
85:ab:b3:6b:20:f6:51:6b:5a:7a:7f:32:a2:c5:9b:ed:fc:a1:
25:3b:ab:40:13:e6:33:e2:57:ad:1a:24:9c:3b:e9:ef:68:7c:
31:30:dc:6c:c7:da:7e:74:58:19:7c:e6:5a:95:1e:c4:3a:ad:
b6:7c:23:25:ce:2b:64:7c:49:65:78:1e:3d:b1:c6:97:34:b3:
46:50:61:09:25:39:d3:cd:d5:a9:b5:15:49:04:92:fa:97:2a:
18:ec:40:79:5a:90:cb:c9:8c:da:72:ed:82:d6:14:26:a8:eb:
3b:de:9d:9c:c6:f0:e6:6b:b7:87:8a:65:1a:7a:18:09:e6:02:
5a:09:87:cd:9e:ee:cf:21:8d:9f:c1:52:b5:bc:11:9f:4e:07:
a7:e5:e5:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 14 16:32:41 2023 by rpki-client on console-fra.rpki-client.org