Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/h7LkxprKoYLD5fjwo8CWDeChUfg.roa
File: h7LkxprKoYLD5fjwo8CWDeChUfg.roa (raw, json)
Hash identifier: V4GVq5Osabd6QUhO8W2v2Ylz8iS0RXGPGZa+xsm1QxM=
Subject key identifier: 87:B2:E4:C6:9A:CA:A1:82:C3:E5:F8:F0:A3:C0:96:0D:E0:A1:51:F8
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0185708CDE77A66C7CCA42F7816EC4B5E5DC
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/h7LkxprKoYLD5fjwo8CWDeChUfg.roa
Signing time: Mon 02 Jan 2023 03:35:58 +0000
ROA not before: Mon 02 Jan 2023 03:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34636
IP address blocks: 91.186.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:de:77:a6:6c:7c:ca:42:f7:81:6e:c4:b5:e5:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 03:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87b2e4c69acaa182c3e5f8f0a3c0960de0a151f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fb:20:41:1d:a6:5b:23:92:6d:ae:26:e0:a7:
77:b9:01:79:f0:65:ff:55:cb:4b:d4:fa:60:ca:48:
d1:4b:ae:a8:5a:d7:57:8f:ed:97:50:f8:c0:3b:0f:
0f:18:6d:d1:04:67:f0:14:18:4e:c0:f6:24:0b:0d:
9a:fb:03:12:cb:7b:d3:7e:1f:6e:7a:11:aa:b4:e0:
29:30:99:43:65:9c:c6:f8:12:1a:35:0d:38:92:33:
6b:86:cf:d0:17:6b:6f:d0:d3:26:c0:68:2a:2b:e0:
a4:85:72:9a:4a:c3:9d:93:c1:56:82:ff:3e:83:15:
6a:83:d6:1b:4b:86:d5:f3:69:d7:01:4d:9f:36:26:
3b:fa:a4:ea:1e:4a:43:8a:c4:93:1e:ea:45:a3:98:
5a:79:fe:9c:7e:95:eb:33:0d:e5:81:b6:e6:3d:67:
ed:aa:8e:b4:17:28:c2:bd:27:39:c6:e7:26:ed:36:
87:ac:82:a9:a8:6f:2b:ec:48:06:ac:1b:c9:47:8c:
75:35:65:73:ff:e0:19:50:ce:e9:c7:01:8b:f5:22:
2f:85:fd:ce:61:24:6d:b8:23:7f:bb:c8:8b:d6:b5:
e8:8c:3a:50:9a:1a:89:b1:e0:9e:42:9e:47:97:20:
dc:39:7d:86:7f:21:62:ef:a7:98:01:40:1f:5b:62:
72:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B2:E4:C6:9A:CA:A1:82:C3:E5:F8:F0:A3:C0:96:0D:E0:A1:51:F8
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/h7LkxprKoYLD5fjwo8CWDeChUfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.193.0/24
Signature Algorithm: sha256WithRSAEncryption
83:71:51:40:14:6f:fd:3a:36:cc:e6:8e:2a:57:33:1f:77:9d:
63:8f:5e:1b:78:d8:d8:ad:3c:7a:b2:47:f5:d1:97:9d:eb:61:
f2:5c:d2:f6:6a:98:54:90:a1:05:ae:be:f6:29:ca:ae:40:30:
57:ee:7f:f7:29:1c:b9:79:12:88:c5:4a:5b:40:45:9a:4a:e3:
15:3b:6f:4f:50:87:5d:8b:c6:65:33:c5:97:d2:25:cf:4d:e4:
13:93:3a:c0:f1:87:70:2c:e2:c6:11:38:ff:a0:47:22:b6:a7:
a8:5b:4d:3d:2f:47:b7:4d:a1:94:d6:8f:a4:40:70:6d:87:5e:
4c:4e:d6:80:04:9a:2d:0c:34:9e:0c:0f:ea:05:d2:cf:30:32:
b1:f8:01:68:df:df:2f:43:76:26:32:77:67:85:8f:a7:e7:41:
5f:1a:72:fd:5e:11:b6:51:79:c5:77:41:4d:d8:96:32:0d:6b:
26:cb:24:a8:ed:c4:03:db:c8:57:ab:13:96:bc:92:83:b7:7e:
06:a9:ef:a2:c6:70:0f:bf:07:ce:0a:ac:39:5f:d6:02:3b:61:
d1:aa:22:d7:57:aa:cb:2f:be:e2:ca:4d:58:39:b8:cb:f4:ad:
37:ed:22:38:0e:15:70:d6:55:6f:2e:04:08:81:5a:a3:86:9f:
c5:05:08:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org