Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a16acc-1dfb-4b2f-b243-6f1c974e8637/1/fS9kvERz9oXM7i0ghIAj8cgfaCQ.roa
File: fS9kvERz9oXM7i0ghIAj8cgfaCQ.roa (raw, json)
Hash identifier: eTyypV10CtwcIIUkeKnQoexv0wcOd2NADgfELiDnXjE=
Subject key identifier: 7D:2F:64:BC:44:73:F6:85:CC:EE:2D:20:84:80:23:F1:C8:1F:68:24
Certificate issuer: /CN=ec8ff96eae2d448ec7849d173b552f15f0f704c1
Certificate serial: 018572C360D2F7ADFC51E8140AA6DA926C31
Authority key identifier: EC:8F:F9:6E:AE:2D:44:8E:C7:84:9D:17:3B:55:2F:15:F0:F7:04:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7I_5bq4tRI7HhJ0XO1UvFfD3BME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a16acc-1dfb-4b2f-b243-6f1c974e8637/1/fS9kvERz9oXM7i0ghIAj8cgfaCQ.roa
Signing time: Mon 02 Jan 2023 13:54:44 +0000
ROA not before: Mon 02 Jan 2023 13:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57586
IP address blocks: 91.233.62.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:60:d2:f7:ad:fc:51:e8:14:0a:a6:da:92:6c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec8ff96eae2d448ec7849d173b552f15f0f704c1
Validity
Not Before: Jan 2 13:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d2f64bc4473f685ccee2d20848023f1c81f6824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a8:38:a2:da:b3:bf:e3:24:e7:d7:13:13:ec:
1e:da:dd:8c:49:03:84:b3:46:5f:10:51:9c:d7:a7:
a5:03:3f:79:a9:87:13:68:99:be:1a:77:dc:a7:d7:
e1:3a:96:46:48:82:38:94:a5:5f:3d:83:69:36:9b:
16:65:68:b0:b2:af:29:01:97:d8:78:c9:5f:a1:75:
d0:ec:97:a1:17:f3:c1:71:92:cb:9b:f3:3d:6e:57:
3e:b5:46:14:a3:ab:0c:e7:3a:9b:ef:6f:72:0d:64:
10:39:0e:f2:d3:94:73:13:5b:c4:d7:35:1a:48:78:
bb:4c:62:e4:50:23:4d:5b:00:4c:b8:f1:ee:38:8f:
ec:50:18:7d:32:cc:47:29:d4:7f:1d:0c:05:29:11:
3e:1f:65:5b:27:cd:12:7c:d1:b4:c0:d0:d8:5b:3d:
c5:2c:f5:ad:3d:23:67:0d:31:b0:10:fa:2d:30:61:
31:a6:da:03:06:e5:18:03:55:0c:b7:4a:36:50:06:
8c:c9:cd:35:d5:2d:26:63:ac:23:f0:73:76:6b:aa:
c7:41:32:61:4d:33:46:91:98:7c:c3:30:d6:6c:91:
1a:59:a6:32:ad:f4:a3:6a:81:cf:34:63:8a:ff:38:
65:e2:65:16:92:3f:4f:d2:ed:b0:2c:b8:5e:0f:8d:
1a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2F:64:BC:44:73:F6:85:CC:EE:2D:20:84:80:23:F1:C8:1F:68:24
X509v3 Authority Key Identifier:
keyid:EC:8F:F9:6E:AE:2D:44:8E:C7:84:9D:17:3B:55:2F:15:F0:F7:04:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7I_5bq4tRI7HhJ0XO1UvFfD3BME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a16acc-1dfb-4b2f-b243-6f1c974e8637/1/fS9kvERz9oXM7i0ghIAj8cgfaCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a16acc-1dfb-4b2f-b243-6f1c974e8637/1/7I_5bq4tRI7HhJ0XO1UvFfD3BME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.62.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:a2:53:11:eb:b9:00:7e:5c:aa:f9:fc:b1:65:72:8a:f4:e9:
b6:9c:e4:08:7d:1e:a8:09:94:3e:80:57:3c:0e:77:0e:9a:24:
c5:c8:b7:79:63:aa:37:2f:14:fc:25:7a:40:e8:09:44:43:3c:
e5:4c:c0:e7:df:05:15:c2:40:1c:29:31:d0:f4:38:a1:20:ba:
c6:69:23:ad:46:a5:85:e8:96:09:e4:e0:1b:1a:bd:ab:91:95:
57:ca:3d:e3:26:27:81:9d:15:40:37:fd:91:df:f1:04:28:37:
21:2e:29:0e:40:6b:77:6a:6c:98:e5:db:95:20:70:81:da:40:
c1:b0:6f:3f:c7:96:2e:a7:85:11:ca:fe:4f:45:8f:ae:fe:bd:
17:40:e2:0a:6a:94:57:b9:3c:5e:ac:d3:34:80:ec:05:9c:d1:
48:74:5b:bd:d5:a2:00:82:61:a7:be:2a:b5:6a:35:ae:46:a1:
1e:a6:a9:39:0f:8b:85:4d:43:3b:5e:32:37:ab:38:73:e9:43:
14:1f:6b:11:4d:63:88:0b:4d:9a:bb:9d:c6:1d:76:2f:ca:97:
7d:e9:42:f2:e8:68:18:1b:e8:0f:05:5f:4e:5f:3f:86:9e:23:
05:36:13:5f:f2:6b:1d:09:63:ee:1e:55:50:f2:c0:de:5f:47:
19:83:25:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:46 2024 by rpki-client on console-ams.rpki-client.org