Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/zUuVTUQOI_dMaXQIsxStBEx2QSc.roa
File: zUuVTUQOI_dMaXQIsxStBEx2QSc.roa (raw, json)
Hash identifier: 8TCC14oHPQwY+8M72+e5l6epXnazszP+/U+rfp+6kcU=
Subject key identifier: CD:4B:95:4D:44:0E:23:F7:4C:69:74:08:B3:14:AD:04:4C:76:41:27
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 018CB4A9882EEAFA9CCF6C792C7FB2EFF9FB
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/zUuVTUQOI_dMaXQIsxStBEx2QSc.roa
Signing time: Fri 29 Dec 2023 08:20:58 +0000
ROA not before: Fri 29 Dec 2023 08:20:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 263759
IP address blocks: 91.229.134.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b4:a9:88:2e:ea:fa:9c:cf:6c:79:2c:7f:b2:ef:f9:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Dec 29 08:20:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd4b954d440e23f74c697408b314ad044c764127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cb:fc:83:94:f8:e2:f4:49:92:89:a2:a2:62:
20:1f:03:a7:5d:ba:60:51:99:75:3f:79:73:04:d1:
45:8c:22:7d:ea:ac:fc:ae:4d:2b:88:21:03:e8:5d:
df:28:e3:7b:91:06:b8:8d:a9:8e:38:70:63:7c:21:
c4:51:c8:6b:7e:8a:ef:10:50:19:2a:a9:07:41:08:
ad:da:a3:bb:5b:c0:93:91:92:ce:73:7e:e7:54:77:
8f:ba:18:20:5d:34:d0:0e:1d:e3:cb:78:54:b9:4a:
79:7e:c1:aa:9f:54:6c:c1:1f:3e:9e:c0:37:0d:09:
b5:44:08:ef:19:c0:d3:dd:72:3b:e1:4d:c2:d0:d6:
bc:82:c6:46:08:c2:fa:94:2f:6e:47:9e:4b:7f:b5:
5c:7f:04:77:2c:09:f0:9f:d2:ff:20:3c:cb:9d:73:
27:da:1b:33:53:d6:8a:02:11:96:fc:d1:15:55:67:
05:2a:89:fe:c8:c1:9b:cb:bc:fd:00:33:13:66:6e:
40:bd:46:6b:89:ed:5b:57:bc:46:5c:e5:91:74:ae:
5e:1c:50:95:cc:f2:d7:68:71:3b:68:80:96:bd:0e:
11:82:9a:59:51:8a:d7:c3:fb:3b:31:3e:40:51:04:
4e:27:45:08:ce:66:15:a0:16:1d:a7:86:d7:9f:90:
6f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4B:95:4D:44:0E:23:F7:4C:69:74:08:B3:14:AD:04:4C:76:41:27
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/zUuVTUQOI_dMaXQIsxStBEx2QSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.134.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:86:42:cb:c8:27:4b:d5:f5:06:38:7e:2c:6c:42:b4:0a:df:
87:9c:56:33:89:72:11:ae:63:8c:1e:b5:85:2a:93:f9:18:75:
e8:e0:90:8f:26:49:90:5f:fb:9a:9e:b3:37:35:a4:a9:b2:1f:
eb:ed:41:44:5e:5e:92:34:1f:c0:68:37:02:e4:c4:31:17:c3:
82:2c:fb:c0:b4:cb:39:06:73:ba:2c:5d:fa:42:38:c4:1d:03:
87:1b:7f:ba:a2:0b:79:c2:7f:4c:4c:09:41:99:2b:b6:5f:e9:
aa:bc:69:ce:46:bd:88:d0:bf:b6:f2:88:9d:e7:cf:c4:77:98:
0f:af:e3:eb:05:21:89:85:f6:73:5a:4a:2b:0a:d0:5e:73:13:
cb:07:e5:23:c3:eb:03:e4:d9:7e:76:9f:96:14:4c:47:26:01:
15:2e:da:de:b1:a4:05:dc:72:19:a4:d2:06:dd:aa:9c:b4:78:
b0:4b:01:2d:8b:c9:a3:41:9f:c3:c0:ee:1a:9a:1c:be:e9:1c:
bb:f7:51:1c:4c:e3:6a:d2:d3:c7:34:c2:2a:e7:25:b5:c6:bf:
f4:fb:43:88:9f:39:34:3c:0b:d3:5b:d0:4a:06:fc:86:fa:a9:
68:b1:63:22:12:1f:a5:cb:1d:62:dd:06:3b:e8:43:4c:ce:12:
bb:36:39:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org