Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/hisvSTQoyHiqaZF6bxtVATkb5zg.roa
File: hisvSTQoyHiqaZF6bxtVATkb5zg.roa (raw, json)
Hash identifier: fsLw6FJpKtgPPdAtGu8rJsP97dXQCS8DdTQMejAuLbQ=
Subject key identifier: 86:2B:2F:49:34:28:C8:78:AA:69:91:7A:6F:1B:55:01:39:1B:E7:38
Certificate issuer: /CN=34cb956ec3a14f6f5e4b76d54342fa98d59c77a6
Certificate serial: 018A3D5C63257ED43724C78B56627EE8BF37
Authority key identifier: 34:CB:95:6E:C3:A1:4F:6F:5E:4B:76:D5:43:42:FA:98:D5:9C:77:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NMuVbsOhT29eS3bVQ0L6mNWcd6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/hisvSTQoyHiqaZF6bxtVATkb5zg.roa
Signing time: Mon 28 Aug 2023 18:16:19 +0000
ROA not before: Mon 28 Aug 2023 18:16:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29686
IP address blocks: 91.195.150.0/23 maxlen: 24
2001:678:2e0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3d:5c:63:25:7e:d4:37:24:c7:8b:56:62:7e:e8:bf:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34cb956ec3a14f6f5e4b76d54342fa98d59c77a6
Validity
Not Before: Aug 28 18:16:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=862b2f493428c878aa69917a6f1b5501391be738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c7:6e:06:65:08:35:f4:a2:7f:f2:77:71:c7:
c0:07:5e:a1:a2:93:93:c5:5f:e9:56:9a:93:05:80:
65:ed:4b:69:f6:09:33:4b:f2:ea:eb:5a:9a:52:07:
5d:cb:fe:08:d7:78:16:3a:b6:7d:4c:34:0c:a6:7d:
f6:f7:2c:e3:c0:2c:cc:22:a5:ca:f0:e4:3e:35:50:
f1:36:5c:de:3d:fd:1a:a7:64:9c:0e:d3:6d:fe:60:
f0:0e:9c:81:73:dd:5c:e1:45:b4:9f:93:07:dd:01:
4a:5d:91:72:4f:d2:8a:1f:35:c3:16:07:06:31:e6:
a2:cf:e6:74:e6:c8:71:b0:5c:45:53:15:a0:30:68:
c1:2f:b6:70:57:f6:db:f4:27:59:37:91:e8:4f:35:
0a:a2:d8:9a:e6:f8:f9:33:6d:23:69:98:18:f3:63:
cc:a1:83:c5:77:37:2a:77:d8:ad:44:2e:2f:a3:9f:
52:96:cc:9d:77:83:1e:4b:0c:e0:a8:80:07:0e:cc:
bd:70:35:8c:c9:a9:13:43:c9:b5:e5:26:f7:b0:49:
ef:10:49:b2:2f:60:c1:85:5b:3b:a8:13:d6:be:52:
cb:85:97:57:16:a3:8a:15:e7:95:f5:aa:33:30:e2:
bf:84:d2:d8:17:82:92:cd:f2:f5:e1:db:57:5f:ad:
86:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:2B:2F:49:34:28:C8:78:AA:69:91:7A:6F:1B:55:01:39:1B:E7:38
X509v3 Authority Key Identifier:
keyid:34:CB:95:6E:C3:A1:4F:6F:5E:4B:76:D5:43:42:FA:98:D5:9C:77:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NMuVbsOhT29eS3bVQ0L6mNWcd6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/hisvSTQoyHiqaZF6bxtVATkb5zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/NMuVbsOhT29eS3bVQ0L6mNWcd6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.150.0/23
IPv6:
2001:678:2e0::/48
Signature Algorithm: sha256WithRSAEncryption
35:09:58:02:9b:90:d7:23:b0:b0:ba:24:92:98:e3:1c:bc:e2:
e1:53:54:a1:00:e0:30:d2:40:b4:93:4c:d6:87:42:e8:51:08:
3e:88:26:01:7b:8d:d9:4c:7d:84:df:bb:b4:22:cb:39:55:56:
fa:6f:42:db:a0:fc:b8:c7:41:87:6e:8e:ad:59:b3:2a:c3:c6:
df:eb:e6:fa:12:e3:74:ea:10:f3:40:ab:36:cd:5a:a8:dd:d3:
6f:79:60:41:b0:63:4a:cf:36:38:65:a3:ea:58:c1:6e:ad:63:
93:9c:05:a1:ca:e6:15:bc:53:75:7b:e0:db:1d:a2:5d:23:15:
71:58:f7:af:f4:b3:f8:8b:cd:ca:ba:68:89:f6:c2:1a:96:a3:
ca:51:a7:9d:1e:2b:d8:ae:bf:b3:08:84:37:b5:07:bc:cc:8f:
fd:8f:14:09:91:5a:05:d8:83:56:5b:76:ec:e8:50:25:c3:e3:
7d:21:07:78:81:52:5c:8d:07:22:ff:29:59:f4:dd:95:2f:ee:
0b:75:ea:1b:71:3b:ef:dd:5e:e0:74:0a:e5:62:fa:98:47:60:
cd:77:ee:ef:b6:89:49:d7:ea:d8:df:a3:57:df:7d:2b:1f:75:
11:01:09:01:38:61:a5:d9:d4:73:19:9c:d1:58:ca:1d:3b:7d:
c6:81:fb:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:26 2024 by rpki-client on console-fra.rpki-client.org