Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/GhRNrnkgnQlyRy-E1Kr4Wmr0vzo.roa
File: GhRNrnkgnQlyRy-E1Kr4Wmr0vzo.roa (raw, json)
Hash identifier: psFjZAD/T5ZrU6BQFu0AKY0ngWPfq/nelZy/DCtmyXY=
Subject key identifier: 1A:14:4D:AE:79:20:9D:09:72:47:2F:84:D4:AA:F8:5A:6A:F4:BF:3A
Certificate issuer: /CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Certificate serial: 01856E14373AE144201D3AC3F96F549D4E56
Authority key identifier: 01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/GhRNrnkgnQlyRy-E1Kr4Wmr0vzo.roa
Signing time: Sun 01 Jan 2023 16:04:56 +0000
ROA not before: Sun 01 Jan 2023 16:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198381
IP address blocks: 91.126.178.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:37:3a:e1:44:20:1d:3a:c3:f9:6f:54:9d:4e:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Validity
Not Before: Jan 1 16:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a144dae79209d0972472f84d4aaf85a6af4bf3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:59:be:5f:ff:79:fa:ed:c4:5a:3d:87:7b:c4:
f8:ea:7a:a0:93:b6:3f:b5:9f:ec:fd:6c:a6:32:8c:
dc:7a:9a:98:74:60:70:8b:52:5c:a0:62:1d:96:91:
3d:7e:c6:b1:8b:29:91:7d:6b:cb:d3:14:bd:b6:f5:
64:c3:b9:ee:89:72:0c:5c:d0:27:3e:c7:b9:40:1a:
d4:d9:6f:13:ed:38:fe:a1:77:ca:c8:8d:aa:78:b4:
62:3a:c7:14:8f:8b:aa:20:a1:bd:88:e1:c8:05:50:
aa:46:79:ee:e9:a7:81:a6:47:e4:e7:18:c1:e1:b7:
53:f2:01:db:ab:11:8c:be:94:bf:0c:34:64:d0:1d:
d4:8e:13:8d:c9:aa:3c:e3:61:86:40:e6:f3:71:df:
e8:34:ed:66:ef:08:f3:69:58:92:54:bb:76:70:8a:
e5:6e:d3:85:4d:1a:00:06:1f:78:9e:86:fb:63:87:
c2:3b:30:e5:e2:11:99:ca:65:c3:ce:50:79:06:be:
18:4d:4e:02:93:25:a3:e3:8c:98:17:ba:93:0f:0a:
ba:6a:aa:94:55:17:ab:2b:f5:d2:f3:ea:eb:d0:28:
a5:9e:f8:67:b2:f7:6c:85:69:c0:8b:89:eb:8b:27:
ee:7f:77:0c:28:78:7d:10:48:e3:2e:d2:07:eb:26:
91:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:14:4D:AE:79:20:9D:09:72:47:2F:84:D4:AA:F8:5A:6A:F4:BF:3A
X509v3 Authority Key Identifier:
keyid:01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/GhRNrnkgnQlyRy-E1Kr4Wmr0vzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.126.178.0/24
Signature Algorithm: sha256WithRSAEncryption
25:27:6b:c8:5f:1f:13:27:eb:a1:e3:9d:8c:98:80:45:43:99:
b1:5b:32:57:d2:8b:9f:91:f1:28:cc:76:c9:8c:1d:96:eb:09:
05:53:53:82:5a:5c:a5:5b:0f:fa:06:41:c8:9a:bc:34:13:7b:
3b:f8:bf:dc:2e:e9:4f:55:13:48:0c:3a:83:73:c9:fd:be:69:
ae:69:e1:e3:9c:7c:f6:36:af:a0:ff:77:04:84:c6:23:39:01:
6b:4e:ae:5f:4b:f3:c8:fb:06:38:b2:5e:0e:0f:02:05:bd:d6:
49:1c:94:40:0d:0d:6f:07:0d:24:f9:b5:3e:f5:46:66:c6:3a:
b3:0c:d2:e6:02:2e:1f:2c:42:8f:0b:ba:06:d6:70:f6:b4:ab:
e5:ca:59:59:d5:ae:6d:2d:70:eb:5b:6f:50:90:36:b0:83:f8:
ef:01:86:13:e1:df:78:b7:35:f3:c3:87:f1:ae:be:16:da:38:
a2:e0:5c:4c:85:d2:6a:47:1d:ec:bc:6a:8f:d8:23:9f:c3:e3:
c0:5b:44:2f:26:18:3b:0d:7c:b3:a2:cc:6d:a7:fc:c3:16:0d:
c7:70:b0:a8:93:42:59:35:90:d9:4e:66:29:49:34:10:54:91:
14:52:68:1d:27:24:57:00:ed:1c:6f:75:7a:7e:f0:b2:69:c3:
fd:9f:46:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:37 2024 by rpki-client on console-fra.rpki-client.org