Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/teTChtHYUDqszSGDsAcoP0bxJZc.roa
File: teTChtHYUDqszSGDsAcoP0bxJZc.roa (raw, json)
Hash identifier: 3R+RXEf2Kk5BhAPeuZc11VdKrfpaaKqTt4ISnMIln8k=
Subject key identifier: B5:E4:C2:86:D1:D8:50:3A:AC:CD:21:83:B0:07:28:3F:46:F1:25:97
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01856D0ADDE4ACE3F22DDD77A34669B393F2
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/teTChtHYUDqszSGDsAcoP0bxJZc.roa
Signing time: Sun 01 Jan 2023 11:15:06 +0000
ROA not before: Sun 01 Jan 2023 11:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34119
IP address blocks: 91.205.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Feb 2023 12:36:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:dd:e4:ac:e3:f2:2d:dd:77:a3:46:69:b3:93:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 11:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5e4c286d1d8503aaccd2183b007283f46f12597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3b:af:25:f6:ad:8e:0e:a0:3e:a6:d5:8b:e6:
04:9b:39:d5:cc:36:96:13:d7:2f:c6:c0:9a:7e:f6:
db:65:36:e9:45:13:62:c4:ce:15:56:1a:76:1a:23:
81:2f:97:14:aa:19:12:e3:ef:91:7b:2c:15:d9:77:
4a:5d:51:61:d1:ee:50:78:e9:e4:4a:7f:a2:48:17:
9d:d1:45:d4:46:4a:8a:bd:68:7b:60:26:ca:97:94:
b2:da:b2:ef:67:86:a8:1f:b4:e8:e2:d1:22:ac:c0:
cb:93:2d:63:da:e6:f6:7c:0c:d9:62:39:fd:c1:bf:
88:67:5b:0b:05:8d:1c:37:ee:0b:c9:a9:b5:ed:e4:
0a:e1:ff:78:53:6e:2f:38:62:82:ab:12:c2:46:a9:
9e:b2:8d:c1:23:7c:2e:27:1d:c8:96:51:a6:ed:cd:
d7:b2:af:bf:3a:6e:ef:8a:8d:29:d0:81:96:ca:79:
9e:f9:d6:d9:51:a0:55:82:3a:dc:c3:d5:0e:5a:bd:
ef:7b:a2:ae:d8:8a:6d:dd:c1:6d:ef:d8:be:a6:ba:
a0:c2:ea:a7:69:5a:0f:22:c4:8e:ef:09:d8:ed:54:
e1:94:f9:86:71:bd:38:2e:0a:05:dc:7e:ab:0e:49:
3b:3b:9b:2c:2b:12:18:b6:26:76:df:c4:20:eb:65:
ad:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E4:C2:86:D1:D8:50:3A:AC:CD:21:83:B0:07:28:3F:46:F1:25:97
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/teTChtHYUDqszSGDsAcoP0bxJZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.228.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b4:a9:e0:27:97:54:a3:8a:a3:f2:1e:9e:cd:c2:6d:c6:86:
a4:86:f4:29:56:50:3e:b1:83:72:b6:ea:a1:47:fe:35:93:72:
1b:53:3a:cb:ef:dd:ed:a5:a7:9f:f7:42:4a:0f:12:9f:24:0a:
96:06:63:37:4e:29:49:e4:c4:cb:bb:9e:8d:46:61:8e:8d:3b:
12:9b:4f:12:3e:19:a8:27:e6:a3:bf:64:ed:82:22:e0:76:ae:
c2:21:f8:c0:7f:db:ef:85:ba:17:59:87:de:38:97:cd:f2:ce:
1f:15:15:d6:17:76:00:34:67:29:63:61:4c:10:60:e0:cd:dd:
8b:4f:16:c0:99:30:40:26:c4:cc:d3:34:21:54:b3:43:90:cc:
40:6c:04:9b:63:4c:c3:88:76:3a:5e:b6:fb:ca:ec:36:1b:59:
3d:f0:1a:89:a5:a8:1c:9a:a8:67:02:1d:7b:55:ab:52:7e:45:
49:cc:32:c8:29:ab:bc:bb:2f:56:91:f9:41:b4:1a:24:8a:ee:
9f:e5:a1:3b:6e:85:ea:58:b8:38:e9:37:39:e2:64:03:98:1f:
03:12:f3:77:42:0b:4b:00:e9:9b:4b:3a:47:5a:87:3d:55:b9:
0e:09:35:25:55:7b:62:b0:ca:f8:e5:84:9e:d8:bc:ea:45:48:
6b:8a:6b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org