Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/IRfOOLwvuwiw88rgLCx7iPs-LL0.roa
File: IRfOOLwvuwiw88rgLCx7iPs-LL0.roa (raw, json)
Hash identifier: oIiPx2XAz6M+s6pD23AgYDJCdYAtGPUzIME8sjs1Ph8=
Subject key identifier: 21:17:CE:38:BC:2F:BB:08:B0:F3:CA:E0:2C:2C:7B:88:FB:3E:2C:BD
Certificate issuer: /CN=798e0da4f91007b224768acb4d131f12517d2b7a
Certificate serial: 0188D87D84B64EED9BA16739E7694CA1E3CC
Authority key identifier: 79:8E:0D:A4:F9:10:07:B2:24:76:8A:CB:4D:13:1F:12:51:7D:2B:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY4NpPkQB7IkdorLTRMfElF9K3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/IRfOOLwvuwiw88rgLCx7iPs-LL0.roa
Signing time: Tue 20 Jun 2023 11:08:04 +0000
ROA not before: Tue 20 Jun 2023 11:08:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200909
IP address blocks: 91.202.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:7d:84:b6:4e:ed:9b:a1:67:39:e7:69:4c:a1:e3:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798e0da4f91007b224768acb4d131f12517d2b7a
Validity
Not Before: Jun 20 11:08:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2117ce38bc2fbb08b0f3cae02c2c7b88fb3e2cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ea:a6:c8:8b:0c:fb:1a:77:5f:4c:29:e5:af:
7b:d4:34:92:ad:a5:5d:e9:2c:c8:57:a9:82:ab:7a:
bf:9e:4a:a0:2f:98:ad:9d:e7:b3:1d:ef:f7:2c:e5:
25:73:48:60:ea:99:4a:39:8c:bf:4d:8f:de:7c:1c:
b9:28:b2:79:1e:76:40:9a:87:14:ec:5a:76:ea:41:
e0:d7:18:6a:8f:9a:ba:18:fd:6a:f2:f3:05:66:62:
6e:7c:49:55:7f:5c:93:a5:0f:dc:60:be:ad:e2:b7:
34:8f:01:3c:7c:37:57:8d:49:23:a8:e7:ee:46:29:
90:ca:04:df:19:f2:80:86:a6:ed:ec:1f:80:72:fb:
03:e0:fb:eb:56:62:28:8a:98:5f:9b:5d:aa:5c:4a:
5f:90:2a:b3:29:52:61:1a:5e:2a:ea:52:0d:ea:3e:
8e:50:f7:27:68:83:30:86:5e:68:f9:bd:98:38:19:
38:ab:17:73:eb:1c:20:3f:1a:e0:07:41:87:06:6b:
53:f0:e8:4a:d0:6b:01:4d:00:b3:99:1c:4b:3c:00:
84:6d:54:7d:71:0a:02:48:fc:91:e6:2f:c2:f1:27:
82:54:2b:10:6f:37:54:c9:24:4a:0d:58:d9:ce:24:
bf:98:36:2e:23:0f:d3:c3:dd:44:07:03:ce:de:21:
86:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:17:CE:38:BC:2F:BB:08:B0:F3:CA:E0:2C:2C:7B:88:FB:3E:2C:BD
X509v3 Authority Key Identifier:
keyid:79:8E:0D:A4:F9:10:07:B2:24:76:8A:CB:4D:13:1F:12:51:7D:2B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY4NpPkQB7IkdorLTRMfElF9K3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/IRfOOLwvuwiw88rgLCx7iPs-LL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/404e64-f981-45b5-9cae-4fb4ef91a82f/1/eY4NpPkQB7IkdorLTRMfElF9K3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.100.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:bd:3b:21:6a:66:b3:99:24:1e:f3:34:14:fc:f6:94:94:e0:
38:c7:c3:fe:5d:d4:04:64:db:50:3c:e8:2a:41:27:b3:a3:d1:
95:34:0a:c5:fd:6b:f2:4e:1f:c9:22:84:b4:52:ae:7d:b4:5e:
c6:28:27:62:ea:3e:e1:ca:c1:e8:9f:7e:2e:14:17:84:24:b1:
fa:4c:5c:14:47:4d:37:0a:d1:9e:ca:80:62:fc:55:fc:c5:07:
94:7c:63:6f:0f:87:af:e9:92:a6:34:b9:40:5c:f9:46:21:ba:
53:53:30:6a:57:b5:32:24:3e:a0:a4:35:a0:80:d3:12:aa:df:
ab:d2:d2:78:3b:58:5b:6b:d9:df:a7:a0:1a:24:2c:9d:06:4a:
84:7a:53:31:6f:26:f7:a4:e4:5f:75:15:ee:05:93:0c:42:84:
47:fc:ea:eb:0a:05:06:77:6d:f8:21:67:6f:85:ba:c7:4c:80:
a1:cb:4a:de:b7:9d:c8:93:e4:f9:7b:ce:40:48:1a:e4:e8:13:
e6:87:fc:27:c9:6d:93:3b:5b:00:2a:d6:15:b3:16:ad:8f:4f:
1a:1f:b9:cc:cf:f0:ed:5d:67:a0:10:7f:f2:19:36:25:87:1c:
11:db:e7:20:37:0d:2e:eb:91:7c:ce:75:d8:97:f8:fb:8e:86:
49:7c:09:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org