Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/dHpf7MfoSlSiffJk-plXrn7-MhY.roa
File: dHpf7MfoSlSiffJk-plXrn7-MhY.roa (raw, json)
Hash identifier: EeOnOh4b0uM03v2ZjzVmNnqPTMTCHRBcTjvv9js9Kb8=
Subject key identifier: 74:7A:5F:EC:C7:E8:4A:54:A2:7D:F2:64:FA:99:57:AE:7E:FE:32:16
Certificate issuer: /CN=217b7ab062bc828b348d05306e65354748b9d6d6
Certificate serial: 0187D45C74FE1E646A21483E8E850783A6B2
Authority key identifier: 21:7B:7A:B0:62:BC:82:8B:34:8D:05:30:6E:65:35:47:48:B9:D6:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXt6sGK8gos0jQUwbmU1R0i51tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/dHpf7MfoSlSiffJk-plXrn7-MhY.roa
Signing time: Sun 30 Apr 2023 22:50:41 +0000
ROA not before: Sun 30 Apr 2023 22:50:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212982
IP address blocks: 91.219.23.0/24 maxlen: 24
91.219.23.32/27 maxlen: 27
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d4:5c:74:fe:1e:64:6a:21:48:3e:8e:85:07:83:a6:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b7ab062bc828b348d05306e65354748b9d6d6
Validity
Not Before: Apr 30 22:50:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=747a5fecc7e84a54a27df264fa9957ae7efe3216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a2:49:48:a9:fd:55:9e:48:de:d4:b8:da:7d:
e3:03:3d:58:8e:10:e9:df:6a:68:f7:c6:36:3f:74:
77:0e:1f:30:f0:64:fa:e1:fa:da:55:52:7e:cb:27:
c7:74:c7:ff:0a:7c:bb:95:b4:06:dd:07:3b:90:f4:
a3:36:f0:43:fb:b3:0a:67:23:40:a7:a5:31:8a:42:
3c:cf:00:a4:78:cf:8a:42:1e:aa:c3:f8:3b:53:c7:
ce:d2:27:84:09:0c:33:43:c2:08:76:2b:a8:f1:cf:
81:21:ad:69:a9:3d:d0:e0:19:d3:5d:37:65:0d:84:
94:0b:1d:85:70:a1:72:e1:01:6a:65:82:55:67:0e:
31:ef:81:99:65:42:e9:46:25:bb:f4:46:65:76:64:
44:98:71:7e:01:38:77:28:9f:1d:72:a0:72:99:ed:
81:d8:3b:5e:34:c5:50:1c:e7:42:21:65:bc:6f:73:
c5:30:3d:2a:39:05:da:39:ae:f8:0c:14:a3:f8:a3:
0f:8e:d8:4a:c6:c8:c1:e9:2c:3e:c1:56:df:f0:ed:
07:c7:23:a6:3f:11:49:93:06:00:2e:3e:f0:67:6a:
8d:76:e2:ab:fd:9f:f9:ad:b5:b3:c3:44:a7:c4:1e:
c3:c3:77:71:11:7f:42:cb:27:52:89:bd:80:30:34:
fc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:7A:5F:EC:C7:E8:4A:54:A2:7D:F2:64:FA:99:57:AE:7E:FE:32:16
X509v3 Authority Key Identifier:
keyid:21:7B:7A:B0:62:BC:82:8B:34:8D:05:30:6E:65:35:47:48:B9:D6:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXt6sGK8gos0jQUwbmU1R0i51tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/dHpf7MfoSlSiffJk-plXrn7-MhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/a8dadc-611b-4063-adb6-55b659cd82bb/1/IXt6sGK8gos0jQUwbmU1R0i51tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.23.0/24
Signature Algorithm: sha256WithRSAEncryption
26:d3:c3:67:90:3f:75:d0:03:30:cf:da:5e:ba:64:aa:bc:67:
2e:53:ce:4e:5c:de:cd:91:d7:a6:8c:a5:b0:93:39:2e:11:8d:
e9:8e:d4:28:2c:94:f4:0f:bb:8f:7f:46:f1:b6:b9:a7:0c:65:
01:1e:59:0c:6f:c1:21:bb:d2:4c:cf:2b:3f:ad:29:0f:8b:53:
bf:43:75:af:8c:e7:ed:ff:a7:dc:c0:4a:ba:31:92:65:fb:55:
e6:f8:ab:87:ac:93:e2:d9:9c:82:23:56:e3:d5:64:0f:2e:c8:
2c:52:51:f1:a6:b5:8c:74:13:6d:42:7f:60:60:12:7a:11:3e:
e9:d3:61:04:2c:aa:e5:11:84:47:81:56:d4:9c:4c:3b:d8:2c:
59:61:ad:31:6e:d4:7e:10:42:6d:5a:ba:8b:3e:71:eb:03:3b:
35:72:a0:90:b5:fd:d0:a2:2d:24:45:40:43:6a:a4:f1:02:2f:
22:4a:33:c5:1a:a7:67:8b:7f:36:f4:fa:00:61:ba:5e:4d:3f:
f4:eb:2c:bf:5e:f5:e0:a7:09:08:c7:36:26:d3:d0:69:e1:af:
44:16:49:e3:ea:42:c3:a0:80:f4:45:36:c0:af:4f:19:00:d8:
4c:c5:2d:3d:8e:51:19:31:6a:1d:38:53:a9:a8:83:bf:33:3a:
29:54:d8:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 13 20:30:16 2023 by rpki-client on console-fra.rpki-client.org