Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a3a708-c669-477f-9d3b-e5fa350f8fa8/1/3EFELOc1sxboiOiaxVLpAWO7B_U.roa
File: 3EFELOc1sxboiOiaxVLpAWO7B_U.roa (raw, json)
Hash identifier: Y4UAU3JvTasDm0zAZ3G5wVZMVDQqjlO/xuTXlzzo/ew=
Subject key identifier: DC:41:44:2C:E7:35:B3:16:E8:88:E8:9A:C5:52:E9:01:63:BB:07:F5
Certificate issuer: /CN=f60707f287a2309beecbb852ee40aa831b9e7866
Certificate serial: 01856EAFBCCA44A6A43F4099FC56D3DB76B1
Authority key identifier: F6:07:07:F2:87:A2:30:9B:EE:CB:B8:52:EE:40:AA:83:1B:9E:78:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9gcH8oeiMJvuy7hS7kCqgxueeGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a3a708-c669-477f-9d3b-e5fa350f8fa8/1/3EFELOc1sxboiOiaxVLpAWO7B_U.roa
Signing time: Sun 01 Jan 2023 18:54:48 +0000
ROA not before: Sun 01 Jan 2023 18:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43736
IP address blocks: 91.195.144.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:bc:ca:44:a6:a4:3f:40:99:fc:56:d3:db:76:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f60707f287a2309beecbb852ee40aa831b9e7866
Validity
Not Before: Jan 1 18:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc41442ce735b316e888e89ac552e90163bb07f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:55:ad:ba:3e:84:9c:14:0c:aa:2f:ca:f0:4d:
78:2e:be:09:d9:95:2b:36:62:48:50:cd:18:78:43:
66:07:ac:21:16:21:0f:c4:e9:2e:da:48:3e:fa:11:
76:1d:a6:67:6d:10:86:bf:78:8b:c0:3d:38:d3:d6:
ab:eb:fd:8b:c0:ed:a0:7d:65:46:5f:ea:e8:52:96:
88:73:3f:8f:88:a8:41:f2:5f:49:c9:ca:ea:06:ad:
89:0b:f6:19:30:31:1d:dc:59:08:f5:c6:c4:d9:53:
f4:7a:77:9b:e5:a5:83:cd:ab:a2:10:06:84:0d:6f:
ad:cc:3a:a1:9d:cd:6e:2a:af:77:14:8e:87:74:7e:
b7:8a:a8:8a:c4:00:e6:77:d6:c7:84:4c:2a:86:11:
fc:fe:6b:58:b7:03:8b:e9:89:03:ed:b3:82:93:f3:
d4:60:3b:8b:37:f1:fd:26:90:8c:a3:a0:b5:39:03:
70:7b:15:19:ff:f5:15:74:0a:4a:27:7b:ce:1e:c9:
e0:37:a1:0b:99:28:ea:86:e1:9a:b9:a8:44:20:79:
4f:65:de:b9:9c:90:5b:c9:b8:a5:48:18:d1:0d:d7:
bc:1e:88:30:6c:3e:5d:ec:10:be:0c:c2:65:2b:b4:
b1:b7:dc:d4:f5:74:b2:9a:ac:84:ca:e6:68:20:00:
e3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:41:44:2C:E7:35:B3:16:E8:88:E8:9A:C5:52:E9:01:63:BB:07:F5
X509v3 Authority Key Identifier:
keyid:F6:07:07:F2:87:A2:30:9B:EE:CB:B8:52:EE:40:AA:83:1B:9E:78:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9gcH8oeiMJvuy7hS7kCqgxueeGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a3a708-c669-477f-9d3b-e5fa350f8fa8/1/3EFELOc1sxboiOiaxVLpAWO7B_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a3a708-c669-477f-9d3b-e5fa350f8fa8/1/9gcH8oeiMJvuy7hS7kCqgxueeGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.144.0/23
Signature Algorithm: sha256WithRSAEncryption
94:69:33:0f:84:2e:e6:26:02:cc:73:54:86:bd:55:cb:6f:25:
b7:2f:b3:7c:5e:a0:05:90:d0:42:21:9f:c1:9a:40:de:31:87:
60:99:fe:07:6e:a4:8d:7a:52:f4:b2:7d:e3:ea:ee:20:12:a9:
74:2e:ba:25:cd:9d:73:5d:d6:d6:b8:47:96:65:97:10:07:e1:
e0:5a:e2:f5:02:73:8a:af:43:fd:7e:3d:08:d5:5a:58:ef:b8:
c2:44:00:9f:7b:3e:2a:97:a7:3a:4b:36:e8:9a:60:a5:33:58:
ca:87:b7:1e:58:bc:09:ea:57:6f:f7:45:9c:4d:c5:38:0a:87:
4f:d1:df:1f:e4:2d:dd:85:e2:c6:a1:14:50:e1:00:1f:2b:89:
3d:81:e2:c1:3c:e6:46:72:51:04:72:c7:85:db:e7:a0:c8:d2:
6e:e0:b0:9e:de:f6:40:66:02:ea:06:dc:ee:2c:5f:89:96:bc:
75:3c:fe:cb:af:5a:74:09:3d:4a:47:4c:ed:10:2e:3d:2d:60:
c2:49:c4:8c:00:29:b0:a1:8a:3b:bd:96:b4:c5:e8:43:83:9a:
54:a5:27:8b:85:b6:1c:e2:7a:ea:79:a1:fc:1c:28:96:c7:1b:
f2:c4:8b:b3:b4:b4:fd:d7:5f:53:56:7d:29:af:bc:95:df:2a:
e7:02:e4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:11 2024 by rpki-client on console-ams.rpki-client.org