Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/At9aKo9Ym_fqWrywC3zPrHe8MoI.roa
File: At9aKo9Ym_fqWrywC3zPrHe8MoI.roa (raw, json)
Hash identifier: 1nfYO/T4Ui1Lu9B2ATm21QKZ60xquu5ArBxA43pXUpc=
Subject key identifier: 02:DF:5A:2A:8F:58:9B:F7:EA:5A:BC:B0:0B:7C:CF:AC:77:BC:32:82
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0188FDCB4692DBE949BFC330A272961E3613
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/At9aKo9Ym_fqWrywC3zPrHe8MoI.roa
Signing time: Tue 27 Jun 2023 16:58:57 +0000
ROA not before: Tue 27 Jun 2023 16:58:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204174
IP address blocks: 91.186.194.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fd:cb:46:92:db:e9:49:bf:c3:30:a2:72:96:1e:36:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jun 27 16:58:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02df5a2a8f589bf7ea5abcb00b7ccfac77bc3282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a2:0f:9a:ca:49:62:d3:cc:cf:02:27:e3:f9:
91:e1:91:8b:67:90:20:27:88:37:8e:cb:bf:58:91:
be:c7:5f:66:83:df:a8:73:f0:74:9c:67:23:63:c0:
2c:70:b4:8f:39:82:d3:0b:e9:46:9c:1f:59:0b:a6:
1c:ff:4c:a9:44:a7:7b:83:da:56:8e:cd:f2:15:38:
2b:2e:b2:07:90:e7:ee:9e:8a:fc:bf:fc:bb:77:fd:
58:a9:5a:67:9b:43:a0:fc:ee:56:0f:6b:2d:67:91:
9f:8f:51:6e:eb:d4:14:57:51:62:92:3f:9f:d1:24:
70:fe:46:df:53:9f:03:dd:16:18:b9:aa:b5:11:0d:
2c:96:2c:83:bb:ff:33:33:fb:a8:e1:b4:4b:dc:54:
82:ce:2f:7d:f9:69:7e:85:56:e8:94:e9:80:4d:15:
25:1c:a0:50:ef:23:ab:35:54:43:a8:25:b1:2f:5b:
1e:d3:fd:79:2a:48:2c:d3:11:97:14:eb:83:63:4f:
a3:83:15:43:8d:3d:0c:fa:c5:e8:83:3b:b8:7b:39:
1a:4b:16:48:65:81:7b:2b:1d:71:0e:3a:c7:b5:3e:
51:df:2a:e0:99:d4:28:22:d1:34:06:a8:10:09:4c:
06:1f:87:15:c9:26:4f:96:a2:ed:93:f9:8c:9d:44:
de:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DF:5A:2A:8F:58:9B:F7:EA:5A:BC:B0:0B:7C:CF:AC:77:BC:32:82
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/At9aKo9Ym_fqWrywC3zPrHe8MoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.194.0/23
Signature Algorithm: sha256WithRSAEncryption
52:e3:02:fd:07:0c:67:91:11:04:f7:d4:a9:be:e2:8a:f9:f2:
8a:43:81:7b:95:4d:60:74:74:ad:a6:5c:09:3a:c3:76:88:13:
72:ec:ad:87:c4:c5:f4:67:25:39:31:33:6a:04:ef:e7:3e:f3:
87:52:62:a8:55:4a:fa:52:4b:60:6f:ee:a8:83:11:58:24:e0:
10:d1:e7:ae:88:27:32:60:28:1c:c4:24:56:15:39:03:8e:07:
ab:2e:8f:7d:0f:10:6c:0f:79:14:7c:d3:be:31:65:7c:68:31:
31:2e:a1:56:9e:71:4c:29:c7:20:c3:05:c9:f1:46:75:df:ec:
27:d1:93:ef:96:73:f4:f3:82:ab:4f:84:1f:89:cd:a8:53:81:
4d:c1:cd:3c:8f:3f:4e:ef:00:d2:fc:cd:f3:ae:fd:ac:aa:d8:
5c:73:4b:75:9e:33:ea:18:f9:e8:a6:0c:41:a2:91:af:76:03:
eb:24:b2:d6:47:41:20:9a:07:53:94:31:ea:9c:3e:ba:5c:fa:
45:cc:5a:cf:be:3e:14:a5:64:7f:a3:e5:a0:c2:7c:df:96:95:
43:24:d4:4e:e1:1b:7c:d3:39:b3:55:94:82:42:dc:35:f4:02:
86:9f:8d:be:d8:c2:2f:40:d2:07:8c:52:8c:f2:c0:f4:39:07:
b6:da:fa:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:28 2024 by rpki-client on console-fra.rpki-client.org