Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/fdb641-d1a3-4dda-bf91-be7c828c3693/1/MEmkpr_xY1vDyVjtDiM33pq8K5E.roa
File: MEmkpr_xY1vDyVjtDiM33pq8K5E.roa (raw, json)
Hash identifier: 3IOXuISDnIrjA0kBBoj1EQX121194UpIBFazqFfa9fA=
Subject key identifier: 30:49:A4:A6:BF:F1:63:5B:C3:C9:58:ED:0E:23:37:DE:9A:BC:2B:91
Certificate issuer: /CN=c9e0e4c9acbf701f930149b325ce042cf9f92a59
Certificate serial: 01856EB8E884539456B0CB1D3DECB2B398D7
Authority key identifier: C9:E0:E4:C9:AC:BF:70:1F:93:01:49:B3:25:CE:04:2C:F9:F9:2A:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yeDkyay_cB-TAUmzJc4ELPn5Klk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/fdb641-d1a3-4dda-bf91-be7c828c3693/1/MEmkpr_xY1vDyVjtDiM33pq8K5E.roa
Signing time: Sun 01 Jan 2023 19:04:49 +0000
ROA not before: Sun 01 Jan 2023 19:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 91.213.126.0/24 maxlen: 24
2a12:7280::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b8:e8:84:53:94:56:b0:cb:1d:3d:ec:b2:b3:98:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9e0e4c9acbf701f930149b325ce042cf9f92a59
Validity
Not Before: Jan 1 19:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3049a4a6bff1635bc3c958ed0e2337de9abc2b91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:90:e6:b7:58:63:e6:ea:f7:92:85:3b:64:9c:
09:81:5f:f6:dd:c9:e4:f9:63:bb:ef:b2:87:59:f7:
6d:6d:21:c0:28:0a:78:d0:77:52:91:fa:9d:6f:f2:
2e:0b:1c:4c:d9:3a:c2:93:64:fb:de:9f:8e:54:e1:
12:ec:af:5f:d5:46:bb:c9:25:ee:2f:7c:4b:f5:38:
ac:88:fa:2c:34:e2:c0:73:e3:a0:92:37:df:dc:ce:
98:df:0d:2f:87:3e:86:d8:31:25:6b:8a:e4:da:fd:
1e:01:40:2e:fa:33:f3:af:6f:07:c7:d9:b8:d0:1c:
9c:c4:2a:6c:e7:44:be:f8:aa:d5:cd:51:bb:ae:db:
c3:ea:60:b7:2d:07:5b:78:78:60:2b:17:a8:ae:54:
08:4e:92:cb:32:3c:21:4c:be:ab:1a:4f:93:47:6d:
4e:d8:3d:61:8e:9f:f7:15:bf:74:9b:9e:bf:61:37:
c9:e6:94:3d:8f:f6:9d:40:21:73:e0:c0:d1:26:db:
fc:3d:6e:fb:1b:2b:76:89:8e:15:41:77:a9:70:6b:
e2:8e:bd:84:f2:78:76:05:91:cd:7d:42:31:2e:ff:
46:e2:45:a1:cb:a8:f8:07:05:26:d8:1f:2a:16:de:
8b:02:09:27:f9:46:d7:76:7f:de:1d:da:67:91:c6:
aa:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:49:A4:A6:BF:F1:63:5B:C3:C9:58:ED:0E:23:37:DE:9A:BC:2B:91
X509v3 Authority Key Identifier:
keyid:C9:E0:E4:C9:AC:BF:70:1F:93:01:49:B3:25:CE:04:2C:F9:F9:2A:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yeDkyay_cB-TAUmzJc4ELPn5Klk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/fdb641-d1a3-4dda-bf91-be7c828c3693/1/MEmkpr_xY1vDyVjtDiM33pq8K5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/fdb641-d1a3-4dda-bf91-be7c828c3693/1/yeDkyay_cB-TAUmzJc4ELPn5Klk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.126.0/24
IPv6:
2a12:7280::/29
Signature Algorithm: sha256WithRSAEncryption
18:35:ed:dd:55:27:ad:b5:77:0b:9a:25:33:07:89:5f:d9:73:
93:b9:b2:d9:2a:34:3e:96:38:3d:ee:bd:f8:31:31:2b:37:c0:
ea:46:9c:29:5d:71:21:c8:f2:bf:7f:c9:ee:4f:ed:c9:df:3b:
43:cc:0c:4e:1f:26:62:aa:3a:1a:da:8e:3a:7c:9c:55:a7:f6:
79:e6:70:6a:ce:29:21:dd:47:b2:8f:d5:7e:13:f9:37:0d:69:
57:b9:2d:b4:9d:e6:40:55:20:64:94:9d:fb:99:1c:40:4b:d6:
eb:42:bc:f8:5f:a3:b8:56:d5:a8:5f:ba:e7:36:f1:5f:e6:56:
52:6b:bd:34:d7:7b:7d:b5:35:e1:49:d3:2a:95:35:9e:ed:b7:
57:94:33:d9:62:d6:55:b6:34:59:42:f0:68:7b:91:34:8c:71:
4d:18:d0:c6:00:85:87:c7:3a:e3:59:7c:4b:d0:42:6e:9b:6f:
5b:6b:69:e7:5d:f0:84:57:b7:ed:41:68:21:0d:31:62:cc:af:
a1:97:e2:4e:1e:b0:31:3b:31:1f:4f:d6:62:cd:25:83:d6:cc:
7a:27:ef:10:b2:98:59:30:51:d1:a5:bc:8b:7b:70:ba:5c:bc:
e2:da:bd:a8:16:fb:49:57:94:c9:8c:10:93:bf:68:0c:00:0c:
d9:12:45:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:40 2024 by rpki-client on console-fra.rpki-client.org