Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/4b1b49-bb7a-4a6e-ba9c-f224de60b49b/1/luSDB4SUVKXttCu2AlmYxbaZY0Y.roa
File: luSDB4SUVKXttCu2AlmYxbaZY0Y.roa (raw, json)
Hash identifier: B9EsBUu1QE6K4b2KySjiXd4U8n5mDMTARcXS9rT1fag=
Subject key identifier: 96:E4:83:07:84:94:54:A5:ED:B4:2B:B6:02:59:98:C5:B6:99:63:46
Certificate issuer: /CN=39cef2e2df5b4ada21e4736b00b7eb89e4d3eb39
Certificate serial: 01856C783343AC8EC0A7914F03DABF84EA2C
Authority key identifier: 39:CE:F2:E2:DF:5B:4A:DA:21:E4:73:6B:00:B7:EB:89:E4:D3:EB:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oc7y4t9bStoh5HNrALfrieTT6zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/4b1b49-bb7a-4a6e-ba9c-f224de60b49b/1/luSDB4SUVKXttCu2AlmYxbaZY0Y.roa
Signing time: Sun 01 Jan 2023 08:34:54 +0000
ROA not before: Sun 01 Jan 2023 08:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3223
IP address blocks: 91.226.182.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:33:43:ac:8e:c0:a7:91:4f:03:da:bf:84:ea:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39cef2e2df5b4ada21e4736b00b7eb89e4d3eb39
Validity
Not Before: Jan 1 08:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96e48307849454a5edb42bb6025998c5b6996346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:dc:63:e9:61:4d:30:95:f4:ee:b6:b7:49:55:
e0:6e:30:28:36:15:9e:0c:ab:70:5a:b7:b8:b3:c4:
f4:10:88:5d:48:9a:ab:10:39:a7:da:1b:63:6f:58:
7f:9d:3e:fc:1d:6b:83:11:22:89:a8:23:bf:ba:06:
f6:66:47:06:7e:1b:a4:92:88:39:22:80:c0:c3:3b:
2d:04:45:0c:db:2a:47:80:31:24:58:f2:00:b9:b9:
3b:59:4e:f5:75:58:0d:6d:09:c4:09:20:7d:b0:3a:
f0:a7:fa:69:d3:ca:9d:fe:b9:88:c3:74:6a:69:f4:
7a:0b:5f:5f:bf:ce:10:d0:69:1f:b0:bf:eb:13:af:
03:0b:c0:f9:30:f3:1c:13:f5:e7:07:ff:c5:69:be:
fe:9c:ad:c1:f5:3f:08:62:05:00:ab:95:13:17:0c:
29:1f:e6:b9:d4:61:87:41:33:cf:a4:2e:0e:b5:15:
69:25:a8:31:eb:99:9c:ca:23:04:46:b4:07:b0:56:
73:f3:14:03:09:bb:f8:90:ba:bf:6d:7b:61:a4:d2:
6e:09:97:ca:1c:22:9d:4c:a4:28:c0:e5:36:24:ed:
62:eb:2e:69:93:b9:a7:2f:2f:8f:ca:2f:44:48:d6:
63:3b:78:37:d0:db:14:6f:af:96:f3:b7:20:1a:25:
14:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E4:83:07:84:94:54:A5:ED:B4:2B:B6:02:59:98:C5:B6:99:63:46
X509v3 Authority Key Identifier:
keyid:39:CE:F2:E2:DF:5B:4A:DA:21:E4:73:6B:00:B7:EB:89:E4:D3:EB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oc7y4t9bStoh5HNrALfrieTT6zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4b1b49-bb7a-4a6e-ba9c-f224de60b49b/1/luSDB4SUVKXttCu2AlmYxbaZY0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4b1b49-bb7a-4a6e-ba9c-f224de60b49b/1/Oc7y4t9bStoh5HNrALfrieTT6zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.182.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:2a:a1:5a:ea:be:96:04:7b:c5:ce:28:44:e7:2d:56:ff:2f:
2c:c1:75:66:f5:7d:d9:1c:4f:7d:36:ef:9b:5e:b2:4b:30:9d:
55:f4:96:80:8a:bb:8c:e3:32:0c:69:9d:e9:95:8d:62:39:c0:
97:64:bf:99:a9:ec:ec:a6:33:ad:94:26:37:dd:fd:cc:cc:96:
f6:3c:cc:df:c5:8a:fd:3b:ee:fd:bb:2f:74:e6:e1:20:90:da:
03:05:7a:60:3a:1c:23:01:9b:f6:41:00:b5:db:7d:b0:92:3d:
1a:47:38:a8:c1:7e:30:26:c6:0b:4e:53:2b:4b:d4:13:58:ed:
9b:21:5f:cb:fd:e3:ea:bb:74:b8:ab:b1:49:1e:32:79:b1:2a:
9d:4a:40:98:76:06:38:44:b6:73:52:4b:02:34:d2:b3:b8:76:
e4:2a:6b:02:38:43:8a:ac:42:7a:0e:e3:d9:31:a0:fb:af:d2:
10:65:8f:ec:6b:8b:c7:d3:45:95:d5:cb:22:cd:dd:89:e4:82:
64:90:10:d3:20:29:79:02:2b:ae:9d:af:ef:0f:83:92:ce:df:
83:42:2e:c0:18:d6:1b:aa:91:a4:f3:2b:6a:05:9c:98:c5:d1:
ec:36:ae:76:bc:d4:af:58:38:5f:6c:78:a4:dd:9a:50:aa:1e:
a8:aa:79:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:53:06 2024 by rpki-client on console-fra.rpki-client.org