Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ErQxgjoWSz946WYiVlu0Gj1sfoI.roa
File: ErQxgjoWSz946WYiVlu0Gj1sfoI.roa (raw, json)
Hash identifier: 1xDKju9WhQzF2xxZbDaqI7c5jRbcnU27mHZPpzfJ7AI=
Subject key identifier: 12:B4:31:82:3A:16:4B:3F:78:E9:66:22:56:5B:B4:1A:3D:6C:7E:82
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0186CD052B696BC34A39B2D7FF5819635DC9
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ErQxgjoWSz946WYiVlu0Gj1sfoI.roa
Signing time: Fri 10 Mar 2023 19:35:13 +0000
ROA not before: Fri 10 Mar 2023 19:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 91.238.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 19:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cd:05:2b:69:6b:c3:4a:39:b2:d7:ff:58:19:63:5d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Mar 10 19:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12b431823a164b3f78e96622565bb41a3d6c7e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:82:07:67:e6:b9:b3:db:f1:3f:a2:47:6f:d9:
55:49:5d:02:d1:0f:87:9b:ee:fb:0f:2b:19:92:78:
bc:2d:a0:94:e8:6e:c9:7d:49:62:e0:59:bf:bf:3c:
eb:59:ec:4d:9e:71:fe:aa:90:33:d0:3f:91:6f:e2:
d2:9e:57:89:83:ac:bf:5b:2e:d2:cd:dd:8b:f0:7c:
68:f8:32:2e:67:3c:94:f0:8e:37:43:5a:0b:ee:41:
db:15:ff:ba:09:40:d2:0f:27:c8:e9:45:6e:26:85:
89:28:6c:62:be:ce:9b:93:be:59:db:c9:28:0b:62:
7b:23:6f:d9:17:9f:37:61:0f:ef:df:af:16:aa:a7:
cd:ed:51:65:67:c6:31:bc:3e:0b:a9:ce:d1:2d:63:
30:98:63:4f:58:a1:d4:bd:67:a7:46:89:01:86:0b:
de:d0:a0:89:bf:da:a7:6a:41:0a:be:95:d2:a8:da:
3a:9e:b8:75:e7:c6:cf:3c:55:c3:71:c6:b9:c0:e1:
ff:97:ef:3e:c1:aa:17:12:b4:16:8f:16:04:cc:96:
b3:49:a6:f2:f2:fe:e6:8c:92:ec:bb:6c:4d:a2:fe:
aa:8c:dd:a9:8d:d0:7c:7a:a5:41:dc:9a:cd:0c:ae:
82:38:64:49:5a:80:a4:66:1e:e9:df:05:c3:51:ae:
c8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B4:31:82:3A:16:4B:3F:78:E9:66:22:56:5B:B4:1A:3D:6C:7E:82
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ErQxgjoWSz946WYiVlu0Gj1sfoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.93.0/24
Signature Algorithm: sha256WithRSAEncryption
45:ef:66:26:26:30:b0:ef:43:34:eb:89:f4:0a:2a:46:04:dd:
31:03:f6:1a:0d:57:2b:75:b3:52:d4:5f:d0:c5:0a:2f:e5:57:
1d:6d:f0:b6:5e:a0:fc:16:98:14:04:e2:33:d7:ce:7c:a9:45:
5d:f9:99:d2:ed:43:fd:dc:77:08:b7:fa:17:24:ef:a6:bf:2d:
d4:ff:4b:7e:3f:2c:6c:ac:e4:0c:1d:db:c1:db:b9:f6:f1:0b:
b0:04:33:c2:d6:eb:8d:c3:97:a0:5d:86:a1:a8:fd:7b:c7:00:
fc:e1:ee:d3:e3:38:57:c4:2e:bd:55:5b:1f:77:08:d0:39:f3:
9f:cd:6b:39:2b:7e:c9:e7:76:9f:97:40:8d:f8:89:7a:02:e7:
53:e7:8e:06:99:3d:73:30:3c:c7:1c:1b:3d:35:8b:17:1e:24:
65:ca:c3:65:93:c2:02:28:d5:3a:2f:3e:94:a4:11:10:9b:39:
e6:87:6e:ad:d4:8b:ba:3c:6f:0b:19:cd:93:ae:b4:9e:48:35:
2d:76:bc:9b:f6:01:a2:42:36:f4:39:99:e0:09:b0:54:8e:7d:
b8:d8:9f:c9:f1:76:9d:21:db:f6:fd:35:17:23:46:21:f6:90:
90:8e:3d:82:32:f6:32:35:dc:b2:c8:af:ba:eb:6c:e2:03:4d:
c0:41:bb:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org