Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/ec2482-c651-4a2d-aaee-8a56b0f50731/1/M4EIpf5AYPIiDD1TTokREY1Qsmc.roa
File: M4EIpf5AYPIiDD1TTokREY1Qsmc.roa (raw, json)
Hash identifier: Ofm76/ychuFwx0r5u6Mdr33W2weRJhwl7iEkSXwKSQ8=
Subject key identifier: 33:81:08:A5:FE:40:60:F2:22:0C:3D:53:4E:89:11:11:8D:50:B2:67
Certificate issuer: /CN=8a5a08f41c373027e081b5c1ca8a800bf1855d9f
Certificate serial: 0185DF97FFB144E1FB2805B6247C22B7AE91
Authority key identifier: 8A:5A:08:F4:1C:37:30:27:E0:81:B5:C1:CA:8A:80:0B:F1:85:5D:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iloI9Bw3MCfggbXByoqAC_GFXZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/ec2482-c651-4a2d-aaee-8a56b0f50731/1/M4EIpf5AYPIiDD1TTokREY1Qsmc.roa
Signing time: Mon 23 Jan 2023 17:05:58 +0000
ROA not before: Mon 23 Jan 2023 17:05:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 91.207.183.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:df:97:ff:b1:44:e1:fb:28:05:b6:24:7c:22:b7:ae:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a08f41c373027e081b5c1ca8a800bf1855d9f
Validity
Not Before: Jan 23 17:05:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=338108a5fe4060f2220c3d534e8911118d50b267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:66:02:00:0f:e9:23:28:e1:fb:60:8d:25:0f:
ba:b7:7a:2f:9c:b4:13:5e:79:86:43:18:c9:60:46:
f8:5f:30:8f:9b:a1:78:d2:75:c0:61:38:65:7e:50:
c8:37:82:5d:2e:24:31:94:85:e5:ef:fe:fc:09:7f:
84:e6:6d:a3:f2:4e:df:22:41:01:d4:45:b1:35:e5:
8d:10:ea:8f:f1:1c:f8:3b:e5:32:73:45:43:e8:6d:
cb:cb:bf:5b:89:86:f6:35:45:3f:f7:fa:2a:07:ef:
b8:2a:f3:64:5e:ee:cb:19:ee:b3:68:82:65:0f:5f:
31:6c:17:23:1e:d3:4d:c6:c2:c1:a3:69:0d:cc:90:
4b:b9:7f:f4:d7:19:45:a9:2d:86:d7:a7:5d:35:b7:
67:a7:1c:2d:69:94:44:08:fd:b2:87:86:21:cd:53:
aa:8d:84:cb:33:ea:41:c9:f7:82:6a:67:5c:0f:77:
e9:e4:fe:c7:d1:f7:92:c6:d5:df:43:25:7c:6e:5b:
60:9b:14:4d:07:3d:8d:04:2b:e0:a7:48:76:05:27:
e7:cc:e2:ce:23:fe:74:11:21:e3:82:f2:75:2e:71:
9e:34:ba:52:45:c3:22:c2:4d:5c:4e:51:23:0e:d7:
96:1b:2c:73:74:cc:51:90:30:9e:22:53:bb:34:5b:
04:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:81:08:A5:FE:40:60:F2:22:0C:3D:53:4E:89:11:11:8D:50:B2:67
X509v3 Authority Key Identifier:
keyid:8A:5A:08:F4:1C:37:30:27:E0:81:B5:C1:CA:8A:80:0B:F1:85:5D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iloI9Bw3MCfggbXByoqAC_GFXZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/ec2482-c651-4a2d-aaee-8a56b0f50731/1/M4EIpf5AYPIiDD1TTokREY1Qsmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/ec2482-c651-4a2d-aaee-8a56b0f50731/1/iloI9Bw3MCfggbXByoqAC_GFXZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.183.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:61:23:f5:0c:e9:64:1f:18:25:70:3f:e3:12:3f:bc:04:71:
93:5f:64:03:28:48:06:a4:b7:9b:00:c7:5e:2f:45:ae:e7:21:
e0:b4:1a:e5:7a:7e:67:d2:3c:23:a9:86:50:b9:29:e5:ff:13:
9f:93:f4:fc:39:d1:b8:c0:71:b7:a5:6f:bd:7b:4d:2b:75:ff:
ea:fb:a9:6f:33:87:a4:ba:ef:6e:f3:7b:9c:c7:85:60:92:a0:
1a:89:fd:00:2d:8d:8f:e3:af:94:fc:f6:09:50:c0:4f:fd:18:
17:4a:09:79:19:74:e8:70:30:4d:49:5f:ff:f1:0b:47:a6:89:
22:d5:96:cc:fd:08:eb:b9:0c:c3:b3:02:e3:c1:24:d1:32:b8:
fa:f6:c7:4d:43:56:6b:31:3c:49:71:6e:29:50:7f:d6:25:f0:
06:80:f1:f4:7f:ff:00:58:16:60:e4:30:c9:c9:d4:4d:3e:bc:
51:cd:9f:4a:84:e6:c7:24:b1:2f:65:ce:86:5f:87:27:cf:27:
a7:e2:ec:9a:c0:27:b9:e4:c7:f2:e6:df:44:0f:a2:a0:78:14:
43:3a:12:45:2b:a1:4f:96:51:70:41:08:ea:10:d5:f4:3b:66:
e9:85:bd:1b:f8:58:3e:57:64:c7:d5:93:fd:fc:43:b4:08:db:
74:ac:6e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:55 2024 by rpki-client on console-fra.rpki-client.org