Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/IJQszal2ZuTCpfoEr-L6ogz9M4E.roa
File: IJQszal2ZuTCpfoEr-L6ogz9M4E.roa (raw, json)
Hash identifier: zwp92OU3QqkC8xFQV9AijLMWzatPYzYzI3YrKq3/Y98=
Subject key identifier: 20:94:2C:CD:A9:76:66:E4:C2:A5:FA:04:AF:E2:FA:A2:0C:FD:33:81
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018816D2208AEC55303F9F117E4E1A606F49
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/IJQszal2ZuTCpfoEr-L6ogz9M4E.roa
Signing time: Sat 13 May 2023 20:34:09 +0000
ROA not before: Sat 13 May 2023 20:34:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 91.186.194.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 16:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:16:d2:20:8a:ec:55:30:3f:9f:11:7e:4e:1a:60:6f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 13 20:34:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20942ccda97666e4c2a5fa04afe2faa20cfd3381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:3c:95:98:7d:b0:2d:43:98:3d:03:44:69:
4c:e7:b8:50:e8:0c:6b:bd:99:f5:d0:da:87:fa:35:
52:18:3b:1a:4f:45:2a:2f:8f:97:dd:ae:13:8e:85:
89:cb:99:2b:dc:fe:f0:a2:4e:ec:b3:0c:6d:ac:4f:
25:13:09:da:6f:a2:53:4e:65:5a:67:44:d4:54:a5:
c1:1f:48:ff:ca:a4:55:ae:67:02:3b:ed:d0:65:32:
04:97:95:22:42:9e:df:a3:27:0c:71:9d:9f:b1:de:
8a:e7:24:05:f0:5b:10:92:f2:ab:09:a8:7a:bf:ad:
8f:d1:70:c9:ee:92:ae:2f:b4:e5:8b:3b:3f:d1:b9:
89:6e:44:a5:15:26:de:48:1c:6c:ce:60:c1:43:97:
1d:b6:ae:a6:52:bd:95:88:1f:06:ec:d3:6b:ba:ba:
1d:12:e5:db:1f:6a:59:13:7f:e0:34:6e:a9:91:3f:
6f:dc:78:11:75:3d:09:b1:87:80:57:8b:82:3c:dc:
ad:0c:63:2b:9c:42:fa:6c:28:aa:4e:76:f2:16:29:
11:99:83:a1:61:55:1a:f3:3c:de:a5:49:01:dd:c0:
e1:2b:27:25:2c:ed:3f:6b:05:c1:f0:c2:1e:82:3c:
ca:b0:79:e5:85:b1:56:ee:4d:c2:b7:12:a7:3a:a4:
d4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:94:2C:CD:A9:76:66:E4:C2:A5:FA:04:AF:E2:FA:A2:0C:FD:33:81
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/IJQszal2ZuTCpfoEr-L6ogz9M4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.194.0/23
Signature Algorithm: sha256WithRSAEncryption
44:67:0c:66:c5:14:5b:a1:6f:bd:72:33:ac:4a:7f:7d:1b:1f:
22:6b:8c:ef:69:30:92:50:dc:5e:77:9e:dd:77:7d:25:04:05:
44:da:0b:f4:4f:48:16:e7:11:07:0c:6f:32:1a:02:eb:d0:a3:
cd:d7:c1:ca:ec:f1:72:d1:84:43:9b:84:3e:78:03:90:1c:5a:
e2:87:e0:9c:11:8d:e8:5e:d1:fb:21:73:8f:e5:e6:f6:a7:5a:
90:7a:af:cb:c9:6a:14:78:99:83:da:03:55:77:81:ac:f3:a2:
22:7e:82:0e:c5:db:f8:fe:d5:3a:a4:7a:b0:fd:b0:d7:2e:96:
f6:2a:c0:57:30:4a:a4:5d:69:e0:55:98:24:18:ac:47:05:d7:
58:1e:de:ca:3d:9f:f6:43:36:74:84:32:7a:97:c8:56:1e:50:
4c:fd:ba:49:48:e6:b2:0a:bf:ba:69:2e:61:b5:76:01:ea:49:
25:e8:81:8a:84:23:73:6c:15:4c:38:33:40:5c:fb:8d:be:dd:
ec:21:df:49:e9:f4:8f:e1:09:72:32:0b:37:68:14:c3:15:0f:
cb:99:06:ed:32:5b:6b:d0:76:83:c4:05:65:f8:0a:d4:7f:ad:
81:d3:ad:60:ee:c3:39:b8:4d:4c:e1:a3:6e:0e:19:02:b9:b3:
48:b6:e4:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org