Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/5NRwU7Kx_nHgljqijx-_ETEk8Qc.roa
File: 5NRwU7Kx_nHgljqijx-_ETEk8Qc.roa (raw, json)
Hash identifier: z+XKb+xFALmD+We2pw8mstdu/F5WSydCj56wPHoc0O0=
Subject key identifier: E4:D4:70:53:B2:B1:FE:71:E0:96:3A:A2:8F:1F:BF:11:31:24:F1:07
Certificate issuer: /CN=10721ead6a4575643cb703062c0968755e8281eb
Certificate serial: 01856D81957AD13C187D618084964BA6E0F7
Authority key identifier: 10:72:1E:AD:6A:45:75:64:3C:B7:03:06:2C:09:68:75:5E:82:81:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHIerWpFdWQ8twMGLAlodV6Cges.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/5NRwU7Kx_nHgljqijx-_ETEk8Qc.roa
Signing time: Sun 01 Jan 2023 13:24:46 +0000
ROA not before: Sun 01 Jan 2023 13:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 91.236.216.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:95:7a:d1:3c:18:7d:61:80:84:96:4b:a6:e0:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10721ead6a4575643cb703062c0968755e8281eb
Validity
Not Before: Jan 1 13:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4d47053b2b1fe71e0963aa28f1fbf113124f107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f4:ea:b2:9f:36:17:d8:fe:b4:ad:66:07:52:
5b:5c:9e:bc:23:1e:90:c4:c6:84:80:88:11:d0:d3:
0d:dd:c9:29:8c:92:a4:3f:75:60:2d:4c:04:4c:9e:
aa:69:ad:89:6d:e8:43:1e:d8:af:c3:a1:11:40:99:
6c:c7:3d:95:8c:b5:76:0b:01:08:fc:b5:c1:e9:6f:
93:2e:95:86:d8:08:6a:0a:e1:d6:02:14:3c:06:89:
c0:80:09:4a:e6:b6:30:49:a5:56:d6:00:97:97:be:
30:bb:20:86:be:98:f2:ca:d1:e2:66:2d:47:c8:f9:
67:81:a1:f4:c9:3d:98:20:0e:a6:07:9e:14:6c:78:
5d:9a:55:46:84:4e:9d:2e:63:0f:3f:18:31:8f:46:
00:49:f5:5e:b9:df:81:16:d3:e9:b7:f0:59:57:e8:
a2:d7:34:d0:8b:44:ff:f7:f8:2c:eb:0a:97:48:4b:
ac:a8:30:69:46:6e:74:86:84:72:19:1c:5e:48:21:
94:b9:06:8d:2e:70:99:6a:ca:bb:72:37:dd:0f:a2:
7c:7e:22:83:40:7a:bd:5e:20:97:7c:61:f3:57:ef:
58:16:c7:b7:c2:8c:ad:9c:fe:bb:8d:bb:47:c5:05:
49:54:27:09:98:d3:87:a8:95:05:32:0d:b9:fb:83:
64:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D4:70:53:B2:B1:FE:71:E0:96:3A:A2:8F:1F:BF:11:31:24:F1:07
X509v3 Authority Key Identifier:
keyid:10:72:1E:AD:6A:45:75:64:3C:B7:03:06:2C:09:68:75:5E:82:81:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHIerWpFdWQ8twMGLAlodV6Cges.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/5NRwU7Kx_nHgljqijx-_ETEk8Qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/EHIerWpFdWQ8twMGLAlodV6Cges.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.216.0/23
Signature Algorithm: sha256WithRSAEncryption
85:37:b4:4e:fe:94:b6:2f:82:67:77:60:f2:43:bb:c5:44:ab:
0c:95:2e:96:b2:53:24:c9:f8:fd:a2:ce:2e:b5:79:87:3e:38:
2f:3e:3c:f3:9c:09:28:bd:ef:3f:c6:bd:9a:af:f3:d7:e9:1d:
ba:c0:3e:e5:87:84:bf:30:bb:14:0b:a5:fb:c8:8f:f3:f1:df:
f0:80:26:64:4e:ba:31:7f:18:cb:b3:1e:24:8c:15:06:59:c3:
0c:0a:74:1e:39:f8:f7:d6:41:3f:74:98:b2:90:68:50:66:e5:
ae:11:47:20:e0:39:a0:31:d8:87:31:85:45:2b:c2:46:c5:5c:
8b:9c:01:2c:e8:87:4d:54:18:1e:45:3c:06:02:b9:e0:3b:86:
f9:6d:46:48:04:fd:e5:72:2e:23:2b:3c:f0:be:af:f8:ff:f0:
a7:5d:3d:64:f2:b8:8f:70:d9:c2:e2:be:de:e3:05:6b:cb:41:
25:7a:a0:df:62:0c:1c:20:a0:8c:4e:e5:ab:e2:42:6e:51:06:
96:e3:eb:ad:65:f2:6a:17:e2:65:2b:21:ae:21:3f:30:63:ad:
9e:98:51:a4:ba:08:a3:e3:bc:dc:ae:02:5d:72:0f:09:73:f7:
f0:6b:a6:bf:bb:44:8d:6a:86:10:50:ca:8f:c8:5f:25:ad:6f:
40:2f:f9:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:37 2024 by rpki-client on console-fra.rpki-client.org