Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/I5qdu4unYH1G_V_DNFJGyrchu7Y.roa
File: I5qdu4unYH1G_V_DNFJGyrchu7Y.roa (raw, json)
Hash identifier: YVqTx/wZEBdYEHndwPO7bAIVp/bvJTRNLa2Xjj7hxGg=
Subject key identifier: 23:9A:9D:BB:8B:A7:60:7D:46:FD:5F:C3:34:52:46:CA:B7:21:BB:B6
Certificate issuer: /CN=79bb370b0c9a06fd82cb7100d903859b09f50333
Certificate serial: 018571830DF60C7DF6CD867B90AED4F83382
Authority key identifier: 79:BB:37:0B:0C:9A:06:FD:82:CB:71:00:D9:03:85:9B:09:F5:03:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/I5qdu4unYH1G_V_DNFJGyrchu7Y.roa
Signing time: Mon 02 Jan 2023 08:04:52 +0000
ROA not before: Mon 02 Jan 2023 08:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62344
IP address blocks: 91.216.130.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:0d:f6:0c:7d:f6:cd:86:7b:90:ae:d4:f8:33:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79bb370b0c9a06fd82cb7100d903859b09f50333
Validity
Not Before: Jan 2 08:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=239a9dbb8ba7607d46fd5fc3345246cab721bbb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ac:cb:c6:4e:8d:cc:98:61:b4:6f:eb:81:f1:
9d:8d:34:88:4e:12:36:c7:bd:9f:c4:06:cb:d6:1b:
3c:9c:40:15:88:25:2d:0d:f5:ca:3c:90:f9:11:56:
eb:ab:a2:f4:f5:e0:9e:24:30:cd:8e:3a:87:12:b4:
e6:02:1f:cb:5b:2c:c4:83:96:0a:07:fe:05:a6:d7:
c5:54:d9:c4:74:22:2c:c8:72:7d:76:d8:b3:14:31:
c7:3d:c5:3f:65:d5:21:36:2c:37:30:bb:74:1f:8a:
1a:99:4f:e4:99:80:f0:10:fb:37:02:54:78:29:a3:
1a:08:f4:e4:df:90:d7:90:61:4b:57:73:93:69:72:
fb:35:cd:69:57:03:bc:ba:85:d8:f9:c8:d0:75:c9:
39:55:ee:e7:d0:1e:1d:17:35:f8:20:e1:3a:13:3a:
e6:00:44:19:81:b1:10:65:1d:93:93:3f:b7:35:3c:
d1:c2:2d:54:ec:09:ae:9b:cb:a9:ad:f2:8b:d2:90:
c7:ef:85:f1:3b:bd:16:55:66:d8:8a:ed:0a:0e:45:
e8:91:50:a9:be:00:cc:5f:9c:2b:70:25:64:ec:56:
7f:a8:47:5a:ff:fd:44:09:0d:25:78:f8:e4:04:24:
16:ff:26:08:ba:41:16:1d:f7:26:df:86:95:a4:1c:
fb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9A:9D:BB:8B:A7:60:7D:46:FD:5F:C3:34:52:46:CA:B7:21:BB:B6
X509v3 Authority Key Identifier:
keyid:79:BB:37:0B:0C:9A:06:FD:82:CB:71:00:D9:03:85:9B:09:F5:03:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/I5qdu4unYH1G_V_DNFJGyrchu7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.130.0/24
Signature Algorithm: sha256WithRSAEncryption
70:18:23:07:33:0f:78:0d:e0:5f:b3:cc:75:34:ab:8d:58:47:
a3:e8:3e:39:c1:50:fd:77:48:ce:d0:e9:d7:46:ca:0d:bb:09:
6a:5c:77:d7:ca:51:a2:19:c2:58:85:64:ed:ef:52:68:8e:96:
eb:32:0e:77:ef:b3:03:0d:e6:e0:b1:0e:20:43:e9:e0:a4:17:
b5:31:3c:db:b5:eb:75:33:e0:74:a0:87:43:23:44:9a:b8:d4:
ae:1e:31:50:0c:cc:dd:76:fa:80:19:ca:fb:03:f2:f9:ac:c8:
2a:b5:53:4e:dd:2c:19:ec:03:a7:ec:57:61:bd:84:46:fc:d0:
dd:93:27:ed:69:1b:41:75:5a:c5:0c:b7:7a:e6:6d:36:72:9a:
f8:a0:02:8e:87:6b:2f:ba:52:82:7e:43:18:17:e4:1d:c0:37:
e4:c0:ee:da:a1:d6:48:d4:c7:d8:5e:e6:b9:f2:91:75:e2:29:
de:36:dc:87:a4:4d:a1:a4:18:d8:60:1d:f0:82:bc:cd:38:e2:
55:ce:e1:12:c3:cb:03:ac:3c:3e:47:46:e0:75:f9:b6:07:ee:
d0:d8:85:94:5e:23:67:22:1d:4b:1f:f0:17:30:3f:22:b8:7e:
6c:19:ae:8e:97:4a:5f:4c:b2:d5:48:f4:d3:99:85:64:4c:37:
36:23:58:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:39 2024 by rpki-client on console-ams.rpki-client.org