Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/_oImfiC6U8ovcaxbXRe9twb8SXk.roa
File: _oImfiC6U8ovcaxbXRe9twb8SXk.roa (raw, json)
Hash identifier: Aa2xEzCLNGiLRvDG/mAx/x+L+4Vbww4IC5f4scWgjZM=
Subject key identifier: FE:82:26:7E:20:BA:53:CA:2F:71:AC:5B:5D:17:BD:B7:06:FC:49:79
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018ABBB63D561ED281E5F28234A2C56B09A8
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/_oImfiC6U8ovcaxbXRe9twb8SXk.roa
Signing time: Fri 22 Sep 2023 07:06:37 +0000
ROA not before: Fri 22 Sep 2023 07:06:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 91.190.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bb:b6:3d:56:1e:d2:81:e5:f2:82:34:a2:c5:6b:09:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Sep 22 07:06:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe82267e20ba53ca2f71ac5b5d17bdb706fc4979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3c:49:bc:99:2c:0b:cc:9c:ce:01:a7:b2:15:
71:c9:13:d9:bb:3c:37:00:09:1c:81:21:f1:f7:5d:
ca:0c:a2:60:ca:94:e0:e5:e3:a4:d8:c3:db:24:1e:
21:27:c1:a5:ef:c3:8e:27:12:3a:7e:c5:06:0e:63:
97:75:6e:90:d9:f0:c4:df:17:cd:0c:4e:e5:54:24:
72:87:7a:00:82:e7:dd:f1:b9:ba:0c:d7:60:7c:d8:
7a:6b:9a:78:60:a5:76:df:38:5d:a1:2d:95:99:76:
e2:c4:80:14:d0:05:1e:d6:82:0c:f5:eb:fd:e2:17:
8b:b8:e3:50:f3:52:35:34:6b:f1:74:58:33:17:eb:
20:33:73:62:61:e6:25:80:37:96:1c:77:b6:bb:97:
6d:6a:a3:29:b1:1a:6a:df:4d:3b:34:d0:17:dd:60:
bb:d7:d8:2f:9a:4c:75:b1:47:d1:8e:56:5c:2a:ee:
9c:88:f2:af:0f:e0:94:cb:fe:a1:18:1f:4e:87:3b:
9b:e8:5d:d9:38:b4:44:2a:80:b6:d7:17:f9:85:9e:
63:60:27:64:bb:f8:7e:98:31:93:81:2a:56:e6:d1:
54:ef:4f:c7:cb:39:b6:3d:d1:59:02:0c:c6:ec:3e:
4c:1f:c3:03:62:ec:19:57:bc:bb:d8:98:87:2b:31:
ba:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:82:26:7E:20:BA:53:CA:2F:71:AC:5B:5D:17:BD:B7:06:FC:49:79
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/_oImfiC6U8ovcaxbXRe9twb8SXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.184.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b5:00:ba:98:be:6d:3c:2d:e8:e7:06:21:f5:43:5d:5b:12:
a7:5e:38:34:89:50:66:0e:37:a7:bc:7d:6c:07:93:b7:ad:93:
32:98:9c:f7:95:97:2e:66:e3:6c:cf:d7:2d:18:50:99:24:ca:
d0:8f:7d:45:8d:cb:d3:38:0b:5d:19:33:d6:39:5c:ff:4a:3f:
5d:02:ae:bf:39:4c:50:59:55:fa:4e:20:cc:fe:50:3d:00:7f:
03:ab:e1:e0:f6:88:84:05:a2:a1:c1:10:3c:b5:97:8c:78:79:
6a:e5:9a:7a:c2:93:ce:5d:67:0a:99:6c:87:f5:71:ed:b0:cc:
bc:97:07:e5:42:0d:fa:7d:5c:4f:f0:f3:c8:c1:84:26:7b:26:
dc:91:03:23:1a:1d:30:68:90:25:66:56:73:e9:7a:c3:ae:e9:
77:5e:68:dc:59:43:66:87:2b:2d:94:d1:67:a2:0c:3a:88:d7:
f1:90:33:60:40:b0:ff:21:92:11:ff:2e:d8:34:11:e8:2e:c3:
c4:d9:20:8b:eb:4c:9a:57:b4:a5:da:02:10:51:ea:45:96:9a:
3f:91:40:a7:1d:7e:9c:7c:22:bc:df:9d:6e:67:8e:a7:f0:e9:
a3:18:66:83:c8:18:6c:97:3f:13:e0:31:d7:1b:2b:3c:22:57:
4e:a8:d2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:36 2024 by rpki-client on console-fra.rpki-client.org