Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/KFj71Qxl2JBdi_xvuU0i9ZK9fMs.roa
File: KFj71Qxl2JBdi_xvuU0i9ZK9fMs.roa (raw, json)
Hash identifier: FoQUhxHtpuyxWdwhzfKyZHoHq5GYCT3mOzXX1IMQdUE=
Subject key identifier: 28:58:FB:D5:0C:65:D8:90:5D:8B:FC:6F:B9:4D:22:F5:92:BD:7C:CB
Certificate issuer: /CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Certificate serial: 01856F022B7626B996A525732F6301509A32
Authority key identifier: D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/KFj71Qxl2JBdi_xvuU0i9ZK9fMs.roa
Signing time: Sun 01 Jan 2023 20:24:51 +0000
ROA not before: Sun 01 Jan 2023 20:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57445
IP address blocks: 91.232.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:2b:76:26:b9:96:a5:25:73:2f:63:01:50:9a:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2dce870e473c354273e89c5e4e2ed3e0c069356
Validity
Not Before: Jan 1 20:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2858fbd50c65d8905d8bfc6fb94d22f592bd7ccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:93:9b:b5:0f:3e:2b:d1:29:57:21:8b:94:19:
f9:98:24:73:0c:d2:02:77:ea:ed:57:a7:7b:c0:80:
53:d2:c9:5a:a4:bd:c2:23:13:1c:ca:11:99:ae:6a:
60:a0:c3:eb:45:e6:00:c6:b7:ea:94:63:51:88:2c:
07:5b:68:79:c1:49:b1:90:2e:02:2c:9f:12:10:88:
d6:a9:03:2a:9b:a5:34:55:b7:1b:76:b7:fd:80:86:
34:15:73:41:29:d4:71:31:1f:01:bd:92:31:18:7b:
8b:57:ad:bf:40:64:5d:be:ae:27:6f:09:68:e6:4a:
0c:c5:b1:61:99:8b:8c:1d:be:77:73:e1:cc:05:85:
5a:28:5e:58:4a:2a:5c:4b:62:72:05:d4:de:4a:49:
49:45:a1:11:4f:7c:81:12:50:db:85:50:58:ba:35:
a5:8d:ae:23:f7:55:46:95:6a:e1:48:37:64:0b:d1:
59:fc:1a:a2:af:a7:fe:ab:6c:21:c7:92:81:f1:c3:
3d:bc:ef:9e:4a:9d:b2:39:b0:dc:cd:ba:02:e9:f0:
26:b8:7b:e3:26:ce:d6:78:2c:54:6f:08:26:b2:b9:
d2:82:6a:e3:89:ea:3c:1a:a0:a3:c3:b3:52:56:27:
76:88:b8:c7:c0:d6:64:88:9e:56:eb:d0:56:44:80:
aa:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:58:FB:D5:0C:65:D8:90:5D:8B:FC:6F:B9:4D:22:F5:92:BD:7C:CB
X509v3 Authority Key Identifier:
keyid:D2:DC:E8:70:E4:73:C3:54:27:3E:89:C5:E4:E2:ED:3E:0C:06:93:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tzocORzw1QnPonF5OLtPgwGk1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/KFj71Qxl2JBdi_xvuU0i9ZK9fMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/113f5f-be58-478c-9030-32d80d8d1615/1/0tzocORzw1QnPonF5OLtPgwGk1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.26.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:a4:68:c6:d5:8c:88:46:52:85:31:4b:20:4a:99:ba:59:eb:
9b:9c:a0:7c:49:4d:58:29:39:2c:5a:3c:c2:e3:71:dc:83:47:
7c:cf:b3:48:50:65:ab:12:5b:60:15:55:c3:f7:ec:fd:75:1b:
b2:ee:24:d6:bc:c5:c0:9d:75:ed:8d:3a:06:9d:fa:6b:2c:16:
f7:cd:9c:22:23:96:7a:e0:65:d0:b1:b6:49:5d:5a:28:ef:bf:
be:24:3e:2d:20:e3:17:f0:d9:14:88:dc:76:c5:2b:43:b5:0a:
7d:50:e5:52:37:a3:cc:13:5e:d1:c1:c0:16:c3:b1:41:f7:3b:
6b:e8:db:62:47:dc:f6:b9:db:67:99:a5:00:60:37:9c:7a:3a:
99:f1:1f:49:c2:ef:35:f9:36:86:36:30:cd:d6:55:26:ef:40:
18:6e:d8:ef:88:71:4d:21:ac:83:52:16:76:b3:39:d1:ad:b0:
ec:ef:1d:08:2b:d3:98:47:d6:ab:69:12:e0:30:63:59:11:72:
67:22:03:00:5e:1d:19:3e:6f:d2:ca:a2:54:b7:f4:92:94:13:
92:b4:2e:ce:26:ba:45:16:30:0d:fd:54:6b:45:a5:28:4a:9b:
8e:8c:6b:9f:37:cc:20:18:74:e1:2c:3b:9d:ea:11:b7:d4:9d:
7b:6e:34:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:18 2024 by rpki-client on console-fra.rpki-client.org