Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/K9cT1UZm0xk1jjoE85StGwDZFe8.roa
File: K9cT1UZm0xk1jjoE85StGwDZFe8.roa (raw, json)
Hash identifier: j52DYZNAtPRj24d0i8sZ/j46FwtftIBRLkLENr6uRMQ=
Subject key identifier: 2B:D7:13:D5:46:66:D3:19:35:8E:3A:04:F3:94:AD:1B:00:D9:15:EF
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018DE7C38ACA1C80348BC10F84AA146844F3
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/K9cT1UZm0xk1jjoE85StGwDZFe8.roa
Signing time: Mon 26 Feb 2024 23:32:48 +0000
ROA not before: Mon 26 Feb 2024 23:32:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51692
IP address blocks: 91.186.216.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 05 Mar 2024 21:51:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e7:c3:8a:ca:1c:80:34:8b:c1:0f:84:aa:14:68:44:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Feb 26 23:32:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bd713d54666d319358e3a04f394ad1b00d915ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:23:40:cb:be:3e:a1:d1:39:aa:6c:fa:50:95:
92:4a:f0:22:35:a6:2a:de:2e:9f:68:f6:f2:ce:08:
c2:98:11:c5:40:b5:cd:cd:61:e8:0a:63:c0:3d:58:
fb:2e:a2:21:30:b5:f4:53:28:bb:94:a0:bb:fc:22:
fa:43:5d:42:b4:18:ec:6f:4a:87:ec:92:14:b0:f5:
13:94:00:4a:03:30:c9:57:6e:93:58:4b:91:e9:06:
58:27:65:de:50:1f:24:76:fa:79:b5:ad:85:7e:79:
2e:a4:19:11:7d:a0:9b:3d:33:3c:6f:5d:03:b5:3d:
63:84:c0:af:c1:9a:86:59:87:e2:c0:6e:07:72:ec:
21:96:6e:23:82:d1:a4:dc:bd:f2:d8:64:e9:51:0c:
a0:5f:bb:c2:39:ec:33:5f:fa:f2:25:99:e5:9e:17:
b6:ed:15:20:bc:20:6f:0f:95:3c:8d:84:32:8d:f0:
6a:80:d4:44:3a:4c:81:0f:96:75:fd:ca:58:d8:9a:
10:e6:f2:4a:b7:47:34:b1:09:e1:ab:45:71:10:1d:
3e:7b:73:79:67:a3:11:d0:c8:8e:a9:28:79:7e:43:
1c:a1:0f:e3:8f:97:8f:55:f6:c3:e8:0b:79:52:f4:
85:6a:db:ae:4a:20:06:61:83:bc:7f:a6:44:06:48:
ff:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D7:13:D5:46:66:D3:19:35:8E:3A:04:F3:94:AD:1B:00:D9:15:EF
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/K9cT1UZm0xk1jjoE85StGwDZFe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.216.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:4c:72:46:49:a5:5c:7f:3f:81:3d:fb:f7:75:0a:94:c7:e1:
de:8a:aa:77:9e:18:d1:4d:df:ab:2b:5e:ef:0c:3b:1d:ac:1a:
85:a0:6f:00:05:82:d2:17:65:bb:90:fe:0c:7c:d5:9a:4e:d2:
70:29:e0:43:e6:5c:1f:ae:26:d2:af:f4:fa:03:4a:ca:4d:d4:
0b:da:c6:12:85:c8:ba:b0:7e:ba:01:af:42:5b:89:28:94:bf:
df:2d:64:ca:fa:ad:ae:ab:03:16:6d:ab:e0:d1:ef:c9:57:53:
f1:7a:c4:90:fd:19:e5:81:0f:a2:65:2a:25:e4:49:eb:0d:ba:
0e:dc:b0:a5:0c:72:22:d0:ea:a8:94:c5:8d:ad:12:68:ab:f3:
73:cf:95:d7:c5:01:bf:6b:57:e3:68:aa:25:2a:bf:9a:e4:c0:
56:a2:3c:76:f3:92:42:8d:4e:f7:2c:e6:01:6d:49:68:57:06:
2c:01:36:24:86:6f:c7:9d:43:33:20:f0:6d:57:74:5f:b8:2e:
cc:27:93:da:a2:11:c3:b8:71:55:20:27:a2:ba:6d:37:ed:ff:
4d:d7:da:76:84:bb:61:a3:8f:fd:3b:b3:e4:93:b1:9d:07:f0:
af:59:0f:34:2d:c5:c1:97:33:97:6f:6a:18:67:c5:51:2e:86:
36:22:c5:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 5 23:48:47 2024 by rpki-client on console-fra.rpki-client.org