Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/fc0a4a-a74a-4c2b-833b-1049c997bc7a/1/U_6UF-7_ft6WxvwWGmasaMjn5qM.roa
File: U_6UF-7_ft6WxvwWGmasaMjn5qM.roa (raw, json)
Hash identifier: c0da4gyvRydsPA55IPxJIzXhPHkZB04QMJk8L+KwBqs=
Subject key identifier: 53:FE:94:17:EE:FF:7E:DE:96:C6:FC:16:1A:66:AC:68:C8:E7:E6:A3
Certificate issuer: /CN=706f0a161b217b9cefd3781ce2611951be419dba
Certificate serial: 018A64A0656620941E67A68B71160CA294B3
Authority key identifier: 70:6F:0A:16:1B:21:7B:9C:EF:D3:78:1C:E2:61:19:51:BE:41:9D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG8KFhshe5zv03gc4mEZUb5Bnbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/fc0a4a-a74a-4c2b-833b-1049c997bc7a/1/U_6UF-7_ft6WxvwWGmasaMjn5qM.roa
Signing time: Tue 05 Sep 2023 09:15:47 +0000
ROA not before: Tue 05 Sep 2023 09:15:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198893
IP address blocks: 91.195.228.0/23 maxlen: 23
2001:67c:ca4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:a0:65:66:20:94:1e:67:a6:8b:71:16:0c:a2:94:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706f0a161b217b9cefd3781ce2611951be419dba
Validity
Not Before: Sep 5 09:15:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53fe9417eeff7ede96c6fc161a66ac68c8e7e6a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fa:03:db:a5:f8:dc:f1:60:08:f8:18:a1:0f:
5b:d7:ff:0e:d7:f6:93:dd:62:cf:f4:84:29:91:83:
0b:3c:e1:81:ae:74:d3:d3:8a:60:20:13:55:46:5a:
af:31:96:c2:cc:7f:68:7a:7e:f7:c1:87:31:88:b5:
32:12:e8:4d:e0:39:ee:45:c1:57:8d:aa:80:f4:53:
3c:b9:f3:1e:90:d2:da:48:e0:6b:96:46:9d:b9:bf:
fe:ee:af:9e:d0:08:0e:3b:b4:16:42:a6:f7:29:0c:
ea:28:13:14:53:36:3f:61:b1:e5:aa:41:f7:b3:53:
be:02:73:1d:cf:38:a9:f6:c3:99:d3:42:b5:7d:68:
cf:27:38:50:f6:fb:52:61:97:90:d5:c4:d3:81:3a:
f4:85:d7:ec:80:39:31:c3:94:50:5c:ae:da:66:47:
d0:bf:50:e3:64:4c:3f:1f:d7:7f:82:72:8c:58:82:
5b:7b:22:13:d6:29:88:61:cf:c1:9a:85:64:ed:0c:
f9:96:94:57:12:e1:ee:37:52:0e:40:b9:ce:67:a0:
4d:c5:ba:db:1d:5f:c6:17:df:ad:fa:86:4d:2b:6d:
bc:53:71:64:c9:83:d6:1e:4f:6f:2a:c3:89:c0:f6:
5d:03:35:d4:67:59:ec:58:92:04:05:57:2b:d1:ed:
47:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:FE:94:17:EE:FF:7E:DE:96:C6:FC:16:1A:66:AC:68:C8:E7:E6:A3
X509v3 Authority Key Identifier:
keyid:70:6F:0A:16:1B:21:7B:9C:EF:D3:78:1C:E2:61:19:51:BE:41:9D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG8KFhshe5zv03gc4mEZUb5Bnbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/fc0a4a-a74a-4c2b-833b-1049c997bc7a/1/U_6UF-7_ft6WxvwWGmasaMjn5qM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/fc0a4a-a74a-4c2b-833b-1049c997bc7a/1/cG8KFhshe5zv03gc4mEZUb5Bnbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.228.0/23
IPv6:
2001:67c:ca4::/48
Signature Algorithm: sha256WithRSAEncryption
2f:fb:46:26:e4:e4:8e:61:1d:e0:f8:ca:71:a4:ab:98:11:3b:
a5:fb:68:2c:58:1f:8c:6f:4c:3e:c9:a7:08:dc:ec:62:70:73:
ea:62:97:3c:28:db:9f:79:60:db:29:6a:b1:18:67:eb:1c:3b:
0a:44:8e:08:d6:d6:8a:5f:47:e2:41:97:20:f2:f0:40:1d:cb:
4d:34:e9:27:f2:9b:1a:14:70:63:51:72:56:ba:03:b6:b0:e5:
79:b3:6c:f3:76:66:0d:34:cd:4a:d2:ff:6c:52:bc:4e:7b:76:
ca:78:fe:97:d2:c1:c5:af:46:81:16:04:21:8e:68:d2:bf:84:
d4:0a:e1:19:dc:26:87:77:97:6d:4f:88:44:91:e3:d4:2f:f0:
68:31:75:ec:a8:85:e6:ac:d8:15:55:2f:97:db:82:97:33:70:
8e:ff:07:a0:1c:eb:d7:33:f7:6b:7a:8a:58:21:55:e5:3d:be:
e8:1b:e5:ef:d6:3a:3f:fe:b9:16:e2:a1:52:de:09:56:c1:8f:
e3:c8:d9:2b:ed:66:c8:cc:dc:28:05:48:9f:5c:0b:ac:ef:8e:
b2:0e:13:b2:fe:73:57:36:55:cb:35:27:91:34:f5:55:ec:d8:
09:b3:82:bb:9f:f6:53:2e:76:c5:09:e4:ef:80:88:55:73:19:
5c:f5:10:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:33 2024 by rpki-client on console-fra.rpki-client.org