Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/Ops8KRPKCbYwDIhMRK4lyg2Cwx4.roa
File: Ops8KRPKCbYwDIhMRK4lyg2Cwx4.roa (raw, json)
Hash identifier: S65sYW3mJ/T8Ab4zGNrWs8M/r5N8GTx1ne2/zg3mNWI=
Subject key identifier: 3A:9B:3C:29:13:CA:09:B6:30:0C:88:4C:44:AE:25:CA:0D:82:C3:1E
Certificate issuer: /CN=e92e146a1e9e83b3756f048b6c1b31e0fc7d207d
Certificate serial: 01857227DD37431D5A1F00D5BD3D7D1F0441
Authority key identifier: E9:2E:14:6A:1E:9E:83:B3:75:6F:04:8B:6C:1B:31:E0:FC:7D:20:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/Ops8KRPKCbYwDIhMRK4lyg2Cwx4.roa
Signing time: Mon 02 Jan 2023 11:04:53 +0000
ROA not before: Mon 02 Jan 2023 11:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51753
IP address blocks: 91.220.66.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:dd:37:43:1d:5a:1f:00:d5:bd:3d:7d:1f:04:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e92e146a1e9e83b3756f048b6c1b31e0fc7d207d
Validity
Not Before: Jan 2 11:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a9b3c2913ca09b6300c884c44ae25ca0d82c31e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1c:93:e2:91:99:43:a0:79:cd:dc:ad:a3:d1:
c7:93:f5:91:91:16:56:c1:17:79:e4:37:dc:77:06:
5a:4f:b2:b8:c0:04:5e:75:0a:a8:d1:d6:9d:89:09:
ae:1b:e9:e6:63:51:6c:b5:cc:45:a0:27:c4:32:d8:
90:f7:99:9b:d6:4e:52:fd:48:d0:a6:d2:29:e0:96:
bc:6b:1a:a8:83:37:ab:6a:33:28:19:51:8f:70:9b:
4d:a1:23:8d:5c:99:13:2c:f8:b9:ee:43:dc:54:86:
4d:0b:3c:1f:32:5a:18:4b:0c:b7:ee:84:08:97:8f:
f8:b9:d1:6e:68:36:59:ef:82:88:f0:19:9c:de:55:
fb:28:39:90:6e:1c:68:86:b1:ca:5f:ee:11:0b:5c:
0e:85:c0:98:6a:20:e1:d9:b4:91:e4:56:7b:34:80:
54:b1:be:1c:ef:e0:77:b9:16:d3:2a:24:4d:18:18:
b2:5a:48:55:03:1d:64:c9:55:9d:3a:ea:07:24:d7:
8a:1e:4d:1b:04:a7:78:29:6a:cd:fc:6f:70:18:39:
1d:66:d3:60:ff:5a:ac:b1:61:b2:65:ad:17:fe:cc:
70:ca:a4:06:df:4b:b7:ce:1f:23:84:22:04:d1:4d:
1b:b7:06:c3:fb:f5:4e:25:41:d8:cc:c5:60:6d:fc:
1b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:9B:3C:29:13:CA:09:B6:30:0C:88:4C:44:AE:25:CA:0D:82:C3:1E
X509v3 Authority Key Identifier:
keyid:E9:2E:14:6A:1E:9E:83:B3:75:6F:04:8B:6C:1B:31:E0:FC:7D:20:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/Ops8KRPKCbYwDIhMRK4lyg2Cwx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/6S4Uah6eg7N1bwSLbBsx4Px9IH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.66.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:e1:20:7c:00:50:32:e2:ba:5b:4a:bd:bb:70:ce:28:25:4a:
7f:bb:23:79:8e:7f:96:87:6f:b4:b9:43:fd:73:51:30:9f:74:
71:e5:06:55:1d:e5:b2:82:f3:f1:de:e0:2e:c4:43:e2:69:13:
24:e3:d1:48:35:f2:99:a5:90:35:e6:7a:bf:df:5c:ec:ae:54:
cc:4d:3d:0a:be:55:02:0e:ea:a3:a9:b5:6b:18:ea:b5:e1:ad:
d9:2f:db:4f:0b:75:a6:27:1d:61:e9:3a:6e:14:74:8a:16:29:
58:23:38:4e:7c:f2:26:4d:d0:e7:7f:d7:19:88:be:8b:c8:9b:
eb:9c:ba:76:fb:40:7a:12:69:7f:7c:79:0a:38:a6:f2:b8:92:
94:74:7a:26:f8:d5:75:00:c0:72:cc:82:40:68:22:4d:b9:9b:
5f:30:b3:6f:49:38:f6:9b:ed:35:d1:49:a2:e0:45:c4:ee:a8:
a3:f7:7c:16:4b:b3:65:ce:78:d5:ad:55:fa:22:cb:02:b6:26:
5c:28:19:ec:7a:77:78:59:3c:86:69:67:fb:d2:5b:71:b9:a5:
60:30:b7:03:66:ef:b1:72:b7:43:e0:d8:53:fb:db:fc:9e:a8:
19:8c:f6:ef:58:43:ec:d0:9a:5c:10:41:fa:30:5f:40:fe:74:
04:80:d8:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:16 2024 by rpki-client on console-fra.rpki-client.org