Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/STZapxQtfIx5c_Jq4lhwZyH_Vsk.roa
File: STZapxQtfIx5c_Jq4lhwZyH_Vsk.roa (raw, json)
Hash identifier: NrQMzbGwsLch/wbns6Qbh62CTgSESvm8cr2qAd4c44Q=
Subject key identifier: 49:36:5A:A7:14:2D:7C:8C:79:73:F2:6A:E2:58:70:67:21:FF:56:C9
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 018811F6D603F466832BAE8420098C532F84
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/STZapxQtfIx5c_Jq4lhwZyH_Vsk.roa
Signing time: Fri 12 May 2023 21:56:09 +0000
ROA not before: Fri 12 May 2023 21:56:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13044
IP address blocks: 91.188.211.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:11:f6:d6:03:f4:66:83:2b:ae:84:20:09:8c:53:2f:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: May 12 21:56:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49365aa7142d7c8c7973f26ae258706721ff56c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e8:a7:43:e4:7b:15:39:90:bb:71:85:99:43:
f7:13:bd:42:92:3a:57:13:2d:39:ec:54:01:4c:a0:
91:67:3b:cd:20:05:f1:a1:a0:0a:45:80:74:fd:48:
a0:5a:ad:0f:6c:20:3a:dd:0a:33:0d:9a:3a:2e:a1:
a6:6e:91:33:ee:d2:0c:fc:9f:77:6a:d2:d0:bc:53:
3c:bd:fe:36:e7:7f:59:1e:8b:36:0e:09:07:53:0c:
09:14:f3:95:b4:74:ae:14:22:f7:60:18:e9:69:de:
0c:7e:bf:0c:06:35:de:08:93:5a:20:19:cc:ce:7c:
21:b0:f0:79:3a:aa:0d:b1:d6:29:1d:aa:56:0c:1d:
02:bc:92:d7:4b:04:64:10:2d:8e:c0:e1:c6:a5:df:
38:9f:70:62:9d:0a:4e:82:18:27:23:b9:56:3a:9f:
9d:31:b1:10:38:7f:2b:85:1a:88:be:2e:7c:77:db:
b5:79:44:d9:11:70:6f:84:89:0a:ae:94:4b:a4:be:
ea:e5:bd:34:d8:f8:d3:e5:9a:4f:d3:b0:ce:8c:8e:
19:e9:0f:b9:ea:a0:00:26:72:70:d6:4b:0d:05:3f:
b3:dc:11:61:5b:d7:4c:71:0b:f0:23:08:07:01:91:
1b:ed:35:58:de:9e:77:ef:b6:13:6a:8a:18:90:f0:
89:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:36:5A:A7:14:2D:7C:8C:79:73:F2:6A:E2:58:70:67:21:FF:56:C9
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/STZapxQtfIx5c_Jq4lhwZyH_Vsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.211.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:0b:2e:d1:32:dc:1f:ca:b9:cc:ea:8e:cb:42:bf:22:ff:50:
05:8b:a1:26:6b:d5:2f:5c:36:06:af:d8:1a:5c:92:e7:0b:b2:
44:39:2d:ec:15:c0:14:6f:0c:da:11:ff:fc:50:ac:22:e1:ac:
0c:f4:50:75:72:f0:38:98:b4:e6:cc:9b:02:5e:74:54:40:04:
0f:1f:21:61:44:de:a1:8e:80:2c:89:e4:85:db:18:71:7b:b9:
c0:fc:39:62:20:aa:a6:e6:f2:07:0a:d7:20:8e:a0:a2:33:d0:
be:1c:e7:98:3d:13:aa:76:87:00:c5:06:14:4d:2f:2f:e4:1c:
06:d3:89:0d:e3:1a:19:bd:f3:1d:ae:a4:01:d6:c5:1f:3c:d6:
af:e1:c8:6d:34:9f:fd:d5:f3:13:17:8e:4c:9a:c2:b5:a9:02:
9a:33:f0:d7:9e:9f:4b:cb:f7:f8:ed:67:a4:f2:00:f8:77:71:
fd:4a:ab:ba:6b:42:08:ec:7b:16:57:9c:a6:50:05:70:d1:2f:
72:db:f5:24:aa:68:4d:b2:ff:3e:28:1e:66:27:21:fc:56:4b:
d7:bd:05:84:95:b4:93:f1:b1:79:47:cd:fa:97:94:9a:22:b0:
8f:21:4b:1b:be:89:f6:9e:94:e8:81:16:0d:37:a2:7c:63:89:
6d:c2:a4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:16 2024 by rpki-client on console-fra.rpki-client.org