Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/30c84e-e0b0-491c-971b-f1d4629ccd77/1/rYhSj-Qa-7IQQ8x30_3RJDX-Y_o.roa
File: rYhSj-Qa-7IQQ8x30_3RJDX-Y_o.roa (raw, json)
Hash identifier: MGV2Q7/h5NoYMuyQmAh85FCkgsko+IznNxj+Ge2W5A8=
Subject key identifier: AD:88:52:8F:E4:1A:FB:B2:10:43:CC:77:D3:FD:D1:24:35:FE:63:FA
Certificate issuer: /CN=906d4fbf6ddc6f5cb745a68cc6818a942eaee20e
Certificate serial: 018809FE570B81E3DC5C9D79249815EAD97A
Authority key identifier: 90:6D:4F:BF:6D:DC:6F:5C:B7:45:A6:8C:C6:81:8A:94:2E:AE:E2:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kG1Pv23cb1y3RaaMxoGKlC6u4g4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/30c84e-e0b0-491c-971b-f1d4629ccd77/1/rYhSj-Qa-7IQQ8x30_3RJDX-Y_o.roa
Signing time: Thu 11 May 2023 08:47:23 +0000
ROA not before: Thu 11 May 2023 08:47:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211440
IP address blocks: 91.213.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:09:fe:57:0b:81:e3:dc:5c:9d:79:24:98:15:ea:d9:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=906d4fbf6ddc6f5cb745a68cc6818a942eaee20e
Validity
Not Before: May 11 08:47:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad88528fe41afbb21043cc77d3fdd12435fe63fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b4:e8:b4:28:e4:77:b1:82:6f:11:e6:61:9d:
1a:f3:06:21:9f:70:37:96:a1:5d:95:4d:89:1e:dc:
f4:21:88:ce:ee:40:4a:1e:69:31:dc:87:5d:d7:69:
1c:f9:9d:5a:4b:a3:0f:7d:c5:27:4e:4a:48:c9:d1:
f1:7a:38:ce:78:15:98:c5:e0:30:62:a3:15:0b:75:
05:67:13:ed:07:7c:73:45:ff:ec:c4:14:46:5b:b0:
df:fe:ba:f0:0b:24:44:9e:94:dd:66:c2:ad:b9:58:
e7:d3:48:4d:8f:93:bc:87:8c:ee:a5:1e:fe:65:50:
a1:5b:99:83:fc:69:73:24:ba:13:52:cc:78:41:1c:
ef:e9:6f:6c:60:59:f2:2c:44:a4:ef:be:36:e0:d4:
43:c6:55:c5:18:d5:d8:53:57:09:08:fc:ee:32:f9:
51:fb:42:19:6c:96:6d:58:63:ca:8c:02:98:32:f2:
f3:cb:85:7c:8a:3c:ec:d2:19:3d:3d:dc:ec:8b:cf:
bb:ba:34:b0:03:f5:e6:28:94:a4:a4:88:ef:af:51:
0d:90:af:02:db:87:30:c5:d3:f2:19:2f:be:27:c0:
4b:79:3c:7d:c5:03:3c:32:4d:76:3b:72:f6:70:a8:
ef:e5:80:11:84:71:b1:18:79:0e:01:40:1b:57:66:
2f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:88:52:8F:E4:1A:FB:B2:10:43:CC:77:D3:FD:D1:24:35:FE:63:FA
X509v3 Authority Key Identifier:
keyid:90:6D:4F:BF:6D:DC:6F:5C:B7:45:A6:8C:C6:81:8A:94:2E:AE:E2:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kG1Pv23cb1y3RaaMxoGKlC6u4g4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/30c84e-e0b0-491c-971b-f1d4629ccd77/1/rYhSj-Qa-7IQQ8x30_3RJDX-Y_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/30c84e-e0b0-491c-971b-f1d4629ccd77/1/kG1Pv23cb1y3RaaMxoGKlC6u4g4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.173.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:58:e4:d1:07:2f:a1:6e:72:77:37:b2:f9:f0:91:9e:ac:36:
b0:48:11:13:9c:75:23:bc:14:28:5b:a5:8f:3e:19:a5:11:57:
4c:82:a0:e8:d4:01:cb:aa:96:c7:86:d7:9b:76:70:5f:79:f9:
39:e3:7c:6c:cb:b3:9a:82:6b:9d:f2:2e:e9:c1:3f:02:c8:4b:
9a:03:e1:13:2b:43:2d:9a:db:49:c1:ca:9a:b0:5d:3c:c1:a6:
65:67:7e:7f:c2:95:7a:30:61:8e:ad:d8:72:ad:56:5d:c8:78:
88:cb:dd:db:a2:b5:2e:f0:bc:c5:67:5c:f0:f6:b2:6d:0b:51:
6d:63:71:f2:06:e8:87:09:b3:6a:31:f1:46:5a:14:b6:2e:b9:
cf:97:71:71:49:d5:43:8a:79:c0:44:2b:69:de:50:e7:30:bc:
f8:56:7e:5d:56:86:43:18:ae:91:b7:3f:4b:75:e9:2b:8b:c6:
9c:69:52:85:92:fe:c7:55:de:48:0a:f1:5c:f1:ea:0f:5f:99:
b2:c4:c3:8d:e9:5b:8a:a2:4e:44:1e:ab:14:a6:08:c4:59:eb:
ab:6a:20:6d:9b:9d:fb:d4:7d:19:1e:d4:4e:15:e6:60:dc:a7:
ab:57:12:38:53:ad:8b:a2:bf:57:31:51:7d:c1:16:37:1c:a4:
7b:79:17:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:51 2024 by rpki-client on console-fra.rpki-client.org