Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/5f4524-234c-491b-9964-182f1bac640a/1/HObyDGbCAHyl3nApv_1cA37CJm8.roa
File: HObyDGbCAHyl3nApv_1cA37CJm8.roa (raw, json)
Hash identifier: 3U7WUlmvFRQQXY8TZ8e0lguAKaiK/uAfJq1ajx1nODs=
Subject key identifier: 1C:E6:F2:0C:66:C2:00:7C:A5:DE:70:29:BF:FD:5C:03:7E:C2:26:6F
Certificate issuer: /CN=e5bf8c181b280e3d2828da1b2477b9102355955a
Certificate serial: 018571F10E7C476A535D4283713C2F067E34
Authority key identifier: E5:BF:8C:18:1B:28:0E:3D:28:28:DA:1B:24:77:B9:10:23:55:95:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b-MGBsoDj0oKNobJHe5ECNVlVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/5f4524-234c-491b-9964-182f1bac640a/1/HObyDGbCAHyl3nApv_1cA37CJm8.roa
Signing time: Mon 02 Jan 2023 10:05:01 +0000
ROA not before: Mon 02 Jan 2023 10:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48943
IP address blocks: 91.211.32.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f1:0e:7c:47:6a:53:5d:42:83:71:3c:2f:06:7e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bf8c181b280e3d2828da1b2477b9102355955a
Validity
Not Before: Jan 2 10:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ce6f20c66c2007ca5de7029bffd5c037ec2266f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c9:39:ea:0c:cc:a7:11:0b:53:5c:1d:db:f1:
ed:f7:c9:39:12:3e:56:3a:7f:4f:a5:27:54:03:aa:
77:14:3b:de:45:e7:f8:a4:1c:16:7c:85:61:0a:7d:
fa:df:9a:0f:cb:98:39:d8:7d:8d:0c:a3:f3:c4:14:
70:8a:5d:fa:11:5a:05:af:c5:ea:77:97:c9:60:29:
b7:d4:23:98:17:f1:72:2b:d1:92:a9:83:29:62:ab:
e2:51:af:4d:cd:8b:a4:ce:ca:e4:a7:02:77:d8:de:
e9:45:bb:06:e4:d5:5e:c9:65:b1:1b:2e:b9:f9:d1:
7b:98:25:7d:58:84:03:45:4d:d0:7c:0e:d2:53:36:
db:f0:da:0d:ff:31:d0:bb:a2:2a:92:76:d5:d2:9e:
47:88:57:b3:fc:5b:66:31:d9:63:51:3d:c8:16:4a:
0d:53:17:23:65:06:64:25:46:cc:c6:70:59:f6:0c:
87:3d:0f:f8:d2:b1:81:5f:aa:c0:a8:d2:41:24:a3:
93:f1:bb:86:db:6c:2c:fa:30:5a:88:b1:6e:e4:0e:
54:d8:61:24:4c:e8:77:b0:29:52:ff:ac:d2:f0:29:
5b:c3:57:aa:b5:cb:6c:ec:17:40:43:6f:c8:66:4c:
4b:55:70:16:d9:7d:23:0f:19:ed:23:ed:3a:78:ae:
b1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E6:F2:0C:66:C2:00:7C:A5:DE:70:29:BF:FD:5C:03:7E:C2:26:6F
X509v3 Authority Key Identifier:
keyid:E5:BF:8C:18:1B:28:0E:3D:28:28:DA:1B:24:77:B9:10:23:55:95:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b-MGBsoDj0oKNobJHe5ECNVlVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/5f4524-234c-491b-9964-182f1bac640a/1/HObyDGbCAHyl3nApv_1cA37CJm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/5f4524-234c-491b-9964-182f1bac640a/1/5b-MGBsoDj0oKNobJHe5ECNVlVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.32.0/22
Signature Algorithm: sha256WithRSAEncryption
10:a0:1e:71:6b:25:4b:58:a8:9f:80:b1:77:cc:60:2b:7b:8c:
50:d9:9e:16:ad:57:1a:0e:97:cc:c0:ef:d2:b1:e6:3f:ac:93:
ca:08:8a:b0:d3:06:dd:1e:33:75:e7:90:00:4e:bf:dc:af:ea:
dc:1f:9d:ca:ba:85:55:7c:48:3c:be:fe:90:a3:6b:68:06:e7:
9c:21:4e:5b:98:b0:d4:4a:55:1e:aa:45:ba:79:96:1f:60:c3:
0a:21:cc:76:c3:d4:23:bb:89:a2:ab:c9:04:09:4d:21:02:35:
1c:87:4b:ff:05:91:2c:ce:03:05:3a:70:52:b6:23:71:2b:03:
6b:3a:e1:4e:e4:c8:b3:ba:5e:24:b2:16:8a:83:b3:1a:f5:c2:
a2:80:3c:10:a9:df:87:cf:fa:40:84:ca:f8:e3:19:66:5a:fd:
9c:86:e9:97:b5:8a:94:a9:d9:9d:3e:12:b4:c9:15:29:73:e9:
3e:f9:72:e5:30:f5:85:10:26:74:64:af:45:30:3c:d0:9f:a6:
70:c1:3b:5e:be:13:2a:d7:1f:05:1b:da:16:d1:d8:62:a5:6e:
65:c7:f1:3f:65:27:e2:95:f0:21:1f:3f:5a:fc:16:44:2a:90:
2a:67:88:f1:ed:2b:27:01:c8:73:95:fe:63:cd:0e:e3:3e:1a:
69:96:ca:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:41 2024 by rpki-client on console-fra.rpki-client.org