Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Cfa5KbwzjKOfD9v_m5Uj2_eyC3g.roa
File: Cfa5KbwzjKOfD9v_m5Uj2_eyC3g.roa (raw, json)
Hash identifier: 5ZecWSGcv9P4X24m5JKp6HFI2LEgnp3vzsOAo6PhdN8=
Subject key identifier: 09:F6:B9:29:BC:33:8C:A3:9F:0F:DB:FF:9B:95:23:DB:F7:B2:0B:78
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185E80CD58D29B8E1B71330C1F0E355ACCB
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Cfa5KbwzjKOfD9v_m5Uj2_eyC3g.roa
Signing time: Wed 25 Jan 2023 08:30:33 +0000
ROA not before: Wed 25 Jan 2023 08:30:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211584
IP address blocks: 91.186.208.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Feb 2023 17:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:0c:d5:8d:29:b8:e1:b7:13:30:c1:f0:e3:55:ac:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 25 08:30:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09f6b929bc338ca39f0fdbff9b9523dbf7b20b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:de:d9:bf:1e:41:04:c2:4c:c7:c8:a4:1f:eb:
3d:8f:a8:fb:d8:fb:14:99:46:d0:5f:54:c5:ae:75:
b1:63:9f:51:da:f1:57:06:07:e0:7b:fa:6b:ee:62:
8f:41:05:36:02:b6:b4:26:8e:36:5c:20:e7:94:bb:
e6:04:04:a9:5e:84:60:6c:67:71:95:86:0c:2b:b8:
0f:11:cf:07:f2:8b:d1:93:b7:86:50:1c:df:af:41:
65:ed:77:63:26:d9:d0:a3:d5:e0:c7:19:dc:5b:53:
4a:b1:42:7d:ab:03:2f:b3:80:b7:31:67:ec:d5:ee:
74:4a:a4:83:53:aa:42:bd:fa:3f:3d:7c:0f:39:49:
eb:84:5d:21:b6:13:84:1e:12:6a:47:93:46:87:fa:
97:bb:76:cb:0b:1f:6b:95:f0:1a:11:ac:3d:a1:e9:
a1:a4:37:68:f1:36:6c:42:5e:32:89:3f:b3:b4:17:
8a:aa:85:b8:db:92:83:85:27:be:f8:4e:23:02:07:
c4:ee:b7:25:2b:6b:41:68:97:bd:d6:3e:1d:20:53:
15:e4:c3:87:63:4d:ae:d8:ab:ea:27:06:93:30:4d:
17:49:3c:59:55:c3:01:3d:b7:12:17:cd:30:2e:96:
54:7e:b3:75:c5:3a:46:03:10:49:fc:6b:3f:8a:c1:
32:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:F6:B9:29:BC:33:8C:A3:9F:0F:DB:FF:9B:95:23:DB:F7:B2:0B:78
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Cfa5KbwzjKOfD9v_m5Uj2_eyC3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.208.0/22
Signature Algorithm: sha256WithRSAEncryption
01:4a:81:7a:ce:41:31:e7:b5:7a:72:dc:94:e7:b3:c4:a6:27:
11:e5:a2:73:a8:a0:ef:3b:c8:21:25:3c:99:ba:5c:b9:30:a7:
33:4e:cb:7a:93:48:b9:8e:2f:25:cb:ac:39:9a:40:78:56:da:
5b:a8:0f:d1:3b:f6:4b:6e:7e:c4:b3:7d:4f:27:46:bc:dc:6d:
36:bf:2a:40:2d:9b:71:f1:16:cf:db:48:3e:b7:25:2d:98:72:
eb:d5:53:fa:68:50:a8:76:2e:38:70:bf:76:1e:62:9c:e2:2a:
ac:97:e0:4e:03:97:2e:00:c5:fe:f5:9f:99:f4:46:6a:6e:42:
65:fd:c3:e5:77:22:20:a8:4c:4f:91:07:a3:50:6d:11:85:40:
92:e3:cd:c9:bf:1c:f1:71:9a:21:30:d6:e7:f1:4e:5c:a7:da:
71:2f:62:a9:21:14:b6:7b:6f:87:53:be:e6:4b:b8:2c:e4:64:
19:cf:6b:33:c5:96:74:02:80:07:1d:88:a4:5c:0e:04:91:8d:
f2:e6:1d:40:e5:70:27:3b:73:08:25:71:10:99:b0:70:46:70:
14:4a:56:db:33:a6:0f:83:dd:94:56:6b:89:db:32:1c:25:92:
73:59:21:bd:59:bd:80:da:ad:46:aa:0a:dc:e6:e0:7d:3b:f2:
22:b2:6f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org