Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/A3hgoqw9Np5jwlqCUkBSrz3W_VQ.roa
File: A3hgoqw9Np5jwlqCUkBSrz3W_VQ.roa (raw, json)
Hash identifier: GvwUTxcqtMCIzgdwhpBOkVyQIdi5W6a/6t1K9fIlt90=
Subject key identifier: 03:78:60:A2:AC:3D:36:9E:63:C2:5A:82:52:40:52:AF:3D:D6:FD:54
Certificate issuer: /CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Certificate serial: 01856E1438566ED2A5D4C700F330DE41AE8B
Authority key identifier: 01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/A3hgoqw9Np5jwlqCUkBSrz3W_VQ.roa
Signing time: Sun 01 Jan 2023 16:04:56 +0000
ROA not before: Sun 01 Jan 2023 16:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205241
IP address blocks: 91.126.77.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:38:56:6e:d2:a5:d4:c7:00:f3:30:de:41:ae:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Validity
Not Before: Jan 1 16:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=037860a2ac3d369e63c25a82524052af3dd6fd54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:85:30:41:22:8f:fb:3f:50:ce:50:ef:3b:f5:
92:45:9e:a2:28:b3:b2:a7:0a:92:86:ae:48:15:f6:
94:d8:a3:0b:f1:35:57:87:9f:bc:52:1d:9f:91:45:
fe:a3:e7:33:8e:1a:83:19:bd:db:c3:51:9f:1f:16:
45:26:a5:51:63:02:79:a1:6e:3c:92:2a:f8:53:6d:
51:45:47:00:5d:dc:ab:62:a0:8b:0f:21:84:80:93:
9c:0f:4a:1b:ff:01:d6:5b:8b:64:e0:29:98:1b:70:
e2:a6:a5:18:6b:de:eb:2c:81:11:dd:e8:0f:9f:cf:
24:5e:03:76:67:0b:62:35:d5:9b:04:2e:58:5c:2e:
53:43:5a:31:86:51:82:f8:5b:75:16:8e:b5:e4:f8:
e2:62:32:9f:7d:83:fd:93:6a:52:55:17:74:f8:80:
fe:86:fe:98:18:28:f5:b0:42:e7:0a:e7:10:57:65:
be:1d:a4:c0:cb:02:15:50:e9:46:2a:05:6d:a5:ac:
5a:f2:f5:62:ec:d6:ca:7d:41:b5:12:b7:71:03:43:
48:3d:79:f5:ec:61:99:c1:48:0f:02:71:32:8e:05:
1c:fc:29:90:04:de:90:b9:c7:cf:3c:dc:ca:3e:e2:
96:00:0e:08:90:d7:f7:f4:54:fe:5f:d8:d9:a6:bf:
0f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:78:60:A2:AC:3D:36:9E:63:C2:5A:82:52:40:52:AF:3D:D6:FD:54
X509v3 Authority Key Identifier:
keyid:01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/A3hgoqw9Np5jwlqCUkBSrz3W_VQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.126.77.0/24
Signature Algorithm: sha256WithRSAEncryption
39:a3:c1:c9:e2:07:e2:be:14:84:88:6a:c5:ee:05:16:53:1f:
d2:cb:c1:c5:23:06:26:6f:27:f6:83:5b:06:d1:ca:2e:cd:66:
1b:b8:e4:7b:11:75:68:d9:c9:1f:5d:10:5f:be:16:14:44:15:
7c:b4:66:f6:5f:21:b0:8f:b5:72:f9:43:e0:d3:97:21:2d:65:
4c:35:e9:46:af:a2:1c:5b:60:14:ad:22:7b:8a:33:84:1f:de:
73:76:a6:f8:f6:e6:8d:4f:2f:28:ea:ca:93:74:e8:75:4f:6c:
10:47:1d:ff:e6:c5:32:14:03:13:25:32:bf:87:e2:d0:19:46:
11:22:01:12:eb:23:28:bc:a3:2e:83:f1:d2:aa:90:7c:56:bf:
a0:a8:07:20:f8:ba:fb:10:22:35:34:d1:bd:7d:67:2b:ba:2f:
13:01:d0:e0:38:fe:57:1a:6b:22:61:1b:77:51:b3:a2:0c:f4:
4b:19:f5:49:e0:30:24:ac:be:c9:1b:b2:2b:21:4a:c4:05:99:
a9:23:a8:63:19:08:46:38:eb:8a:d9:86:9d:9e:5a:c5:96:c8:
31:62:7e:58:3e:e9:84:00:d5:03:90:b7:0e:4e:ee:89:3a:59:
e6:73:b4:37:42:da:20:37:6a:0a:c2:a1:1f:10:f2:ee:ef:ae:
f2:6f:2c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:37 2024 by rpki-client on console-fra.rpki-client.org