Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/a47574-57c9-4eba-a532-5ba6e5b07d9d/1/ibkqWEG7Sf8dy6YPj5TNKLVZ45E.roa
File: ibkqWEG7Sf8dy6YPj5TNKLVZ45E.roa (raw, json)
Hash identifier: oczmwXo1IIBPUbg/etKVCfMF4AnpHJ/9qEpDzIsa8XE=
Subject key identifier: 89:B9:2A:58:41:BB:49:FF:1D:CB:A6:0F:8F:94:CD:28:B5:59:E3:91
Certificate issuer: /CN=befea9e231f7ef6f15ba93e25649ee254cd5e8ea
Certificate serial: 01857255A009A82C9089AB31165E068CEF44
Authority key identifier: BE:FE:A9:E2:31:F7:EF:6F:15:BA:93:E2:56:49:EE:25:4C:D5:E8:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vv6p4jH3728VupPiVknuJUzV6Oo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/a47574-57c9-4eba-a532-5ba6e5b07d9d/1/ibkqWEG7Sf8dy6YPj5TNKLVZ45E.roa
Signing time: Mon 02 Jan 2023 11:54:52 +0000
ROA not before: Mon 02 Jan 2023 11:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39413
IP address blocks: 91.232.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:a0:09:a8:2c:90:89:ab:31:16:5e:06:8c:ef:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=befea9e231f7ef6f15ba93e25649ee254cd5e8ea
Validity
Not Before: Jan 2 11:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89b92a5841bb49ff1dcba60f8f94cd28b559e391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a7:f2:eb:ae:7c:0f:0d:78:21:40:99:06:33:
c4:cd:00:e1:b6:18:85:25:06:8a:73:7a:fe:55:fb:
48:fe:f8:56:9f:69:9e:34:96:6a:9a:7e:44:0f:64:
29:08:61:3c:25:90:77:87:b5:33:44:9e:03:da:fe:
cb:8e:52:de:b4:ee:43:4a:0f:3b:06:e9:ba:c1:0c:
47:21:95:a2:cd:5d:02:64:22:93:28:00:45:94:7c:
04:b9:bf:5e:d9:fc:d6:b4:58:a4:f6:9a:71:13:cb:
a7:a1:47:c3:63:fd:10:7d:d7:55:0c:ff:33:f0:7b:
de:36:1b:7b:e9:39:35:98:e9:b7:2f:ae:5e:9d:cd:
3b:96:5d:a6:93:6f:70:d1:60:e0:3a:64:7a:e1:f9:
e0:a7:3d:5c:ce:d4:6a:79:30:59:04:93:26:89:d2:
34:e1:38:3b:7d:b3:e8:5b:97:cf:b6:e5:f6:47:d8:
37:fd:5a:89:89:0e:e5:c2:1d:ed:b3:91:5d:e6:0d:
9c:36:e0:02:43:74:4e:83:e2:58:77:2b:cf:76:39:
5c:3a:47:db:55:70:7d:e4:1c:df:11:4c:d5:4b:5b:
a4:57:09:1a:e5:3a:6d:bf:f0:ef:6c:9f:60:5a:80:
d4:e5:d6:9a:d4:6c:3b:50:3a:87:c0:37:68:cc:6b:
0e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B9:2A:58:41:BB:49:FF:1D:CB:A6:0F:8F:94:CD:28:B5:59:E3:91
X509v3 Authority Key Identifier:
keyid:BE:FE:A9:E2:31:F7:EF:6F:15:BA:93:E2:56:49:EE:25:4C:D5:E8:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vv6p4jH3728VupPiVknuJUzV6Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a47574-57c9-4eba-a532-5ba6e5b07d9d/1/ibkqWEG7Sf8dy6YPj5TNKLVZ45E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a47574-57c9-4eba-a532-5ba6e5b07d9d/1/vv6p4jH3728VupPiVknuJUzV6Oo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.157.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ad:f1:85:53:24:22:07:cb:b5:8c:71:79:63:81:56:2a:35:
a1:80:74:87:e1:db:a4:ec:d1:b2:c8:ea:e0:0e:ed:a0:fc:7e:
53:c5:2c:87:79:7f:56:ef:b1:02:2d:85:2f:82:c8:4d:65:fb:
49:b4:cb:33:ce:41:34:a4:34:52:f5:a2:d1:75:35:36:61:14:
f2:68:3a:61:9e:58:ba:f3:59:41:9e:69:55:fe:cb:c1:f6:bc:
bd:4b:47:d8:ab:6d:23:ff:8a:d0:24:5f:48:48:bc:82:f2:40:
49:3e:9e:4e:e9:3d:64:05:15:05:b7:b3:00:20:e2:0b:9e:31:
11:61:82:30:de:01:c6:17:a5:8f:e7:fc:86:cd:0c:06:c2:20:
68:c7:8d:b0:4d:26:73:1a:b3:44:d2:70:d6:51:04:d2:49:f8:
d9:59:08:cd:40:73:30:fb:17:e4:c5:27:25:4e:b7:0a:23:94:
f8:04:61:c8:f5:f5:22:0e:59:80:cb:aa:4c:1b:0c:b6:99:39:
b8:e8:7a:53:05:11:3d:ba:56:65:54:12:28:1b:da:40:9a:40:
e9:94:e1:ad:4b:c2:a9:d5:4f:93:3a:c5:90:6f:d2:b4:73:de:
02:d2:4f:16:79:8f:19:ae:21:53:a8:e0:1e:26:68:f1:d2:c6:
73:73:e2:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org