Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/a8c553-3b9e-4edd-a7bb-5237c03b8813/1/0n26iD5p7xHsGHQ-h3heKNU5b-o.roa
File: 0n26iD5p7xHsGHQ-h3heKNU5b-o.roa (raw, json)
Hash identifier: GUd5UxrvDOq5j6g6nKcPEJdVLcCrLPfyE6lFXjmQq48=
Subject key identifier: D2:7D:BA:88:3E:69:EF:11:EC:18:74:3E:87:78:5E:28:D5:39:6F:EA
Certificate issuer: /CN=9c7ef2852d4cb2eabc978ec1c5a1a4d09e04afb5
Certificate serial: 0185EEB0464045FCCD36CC7D3523445712EC
Authority key identifier: 9C:7E:F2:85:2D:4C:B2:EA:BC:97:8E:C1:C5:A1:A4:D0:9E:04:AF:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nH7yhS1Msuq8l47BxaGk0J4Er7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/a8c553-3b9e-4edd-a7bb-5237c03b8813/1/0n26iD5p7xHsGHQ-h3heKNU5b-o.roa
Signing time: Thu 26 Jan 2023 15:26:47 +0000
ROA not before: Thu 26 Jan 2023 15:26:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 91.199.133.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ee:b0:46:40:45:fc:cd:36:cc:7d:35:23:44:57:12:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c7ef2852d4cb2eabc978ec1c5a1a4d09e04afb5
Validity
Not Before: Jan 26 15:26:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d27dba883e69ef11ec18743e87785e28d5396fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e2:aa:50:65:d2:37:25:ed:34:25:0a:bc:d4:
ef:f3:86:3e:c0:b4:da:8d:cb:24:8c:a7:08:d3:9e:
ab:26:4a:6f:46:61:01:e2:48:e3:c4:e2:79:d5:dd:
91:70:55:9e:02:6d:94:50:3c:75:26:9c:35:09:60:
15:70:64:8e:ce:9f:f6:7d:18:cd:50:ef:7b:95:3c:
80:5d:ef:bc:8a:2b:d0:4c:9e:0d:cb:ea:01:6b:8e:
45:c5:ed:b5:86:7f:e0:20:38:1c:4a:e0:a0:22:cf:
90:12:7e:2f:dc:d9:a9:0e:0a:aa:ae:e6:4a:ab:c9:
48:2e:74:1d:9e:fb:d6:20:fb:f8:f1:39:05:b6:5e:
d8:1a:a8:02:39:78:88:1f:a2:90:45:6a:cf:9f:46:
83:a7:50:62:c9:9a:43:05:8f:31:f8:08:35:df:58:
b6:41:05:6e:55:d2:ab:f2:25:c6:f6:a9:be:66:47:
08:fe:bf:c4:ed:d6:c5:14:21:fe:67:1b:41:f0:87:
67:0b:4b:d2:8e:fa:72:8f:51:02:ff:32:ba:e7:1a:
d6:87:0f:d3:6a:a0:3c:a0:5a:06:da:cc:1e:a6:68:
3c:9c:fa:a9:13:68:f1:25:c9:49:6d:b1:d9:df:fa:
c2:2d:29:90:01:8b:1d:d5:41:bc:0b:ab:a7:c5:ab:
ff:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7D:BA:88:3E:69:EF:11:EC:18:74:3E:87:78:5E:28:D5:39:6F:EA
X509v3 Authority Key Identifier:
keyid:9C:7E:F2:85:2D:4C:B2:EA:BC:97:8E:C1:C5:A1:A4:D0:9E:04:AF:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nH7yhS1Msuq8l47BxaGk0J4Er7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a8c553-3b9e-4edd-a7bb-5237c03b8813/1/0n26iD5p7xHsGHQ-h3heKNU5b-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a8c553-3b9e-4edd-a7bb-5237c03b8813/1/nH7yhS1Msuq8l47BxaGk0J4Er7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.133.0/24
Signature Algorithm: sha256WithRSAEncryption
47:68:f1:1a:33:68:f8:a2:0d:e2:9e:7f:8b:91:4d:15:1a:8d:
bf:4f:7a:03:b7:44:92:b4:e9:b7:aa:ea:de:55:ad:31:7f:bf:
a8:ce:07:c0:ff:87:fd:21:6b:de:eb:8c:93:8e:52:e1:3b:e0:
36:9c:66:97:8e:b5:04:44:f8:38:aa:60:f8:79:36:f6:dd:9e:
00:8e:a8:8c:d6:9e:40:8b:7b:cd:07:4f:14:ab:56:89:3d:17:
84:c9:84:0c:35:69:89:2c:22:5a:f4:53:d6:e9:4d:9e:14:c7:
21:d8:8f:94:d1:40:42:c9:cc:d5:fb:84:2e:e0:c3:91:08:b7:
d5:6d:62:88:5d:17:82:7e:72:90:89:35:19:34:25:1c:71:b6:
34:29:b8:89:5d:3c:82:dd:f2:ae:71:83:17:86:a3:a1:2b:97:
99:a8:68:38:49:4c:5b:e6:b0:8c:22:5b:8a:66:e4:92:f3:64:
80:07:7b:f1:84:b9:77:37:f5:49:a6:7c:30:69:80:5a:f2:06:
0a:0c:05:40:6e:75:7e:2d:13:13:eb:ca:21:37:23:a8:91:75:
f7:af:63:dc:d8:a5:7c:46:0d:78:43:17:36:f8:f4:f2:45:93:
42:b5:e7:b9:0a:1f:f6:3a:ed:1c:84:46:3e:56:3b:7b:5a:52:
cf:71:e8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:53:08 2024 by rpki-client on console-fra.rpki-client.org