Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/8CVzL9V4SqvzxsXKXW_Ibji4ji4.roa
File: 8CVzL9V4SqvzxsXKXW_Ibji4ji4.roa (raw, json)
Hash identifier: h20rkc2nIR40nFlX4JT3vhI+olucHom3Jecb7z2j0rc=
Subject key identifier: F0:25:73:2F:D5:78:4A:AB:F3:C6:C5:CA:5D:6F:C8:6E:38:B8:8E:2E
Certificate issuer: /CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Certificate serial: 018570D527FEDA1A70C16D080A6671C5ED0B
Authority key identifier: F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/8CVzL9V4SqvzxsXKXW_Ibji4ji4.roa
Signing time: Mon 02 Jan 2023 04:54:55 +0000
ROA not before: Mon 02 Jan 2023 04:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 91.123.8.0/22 maxlen: 24
91.123.12.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:27:fe:da:1a:70:c1:6d:08:0a:66:71:c5:ed:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Validity
Not Before: Jan 2 04:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f025732fd5784aabf3c6c5ca5d6fc86e38b88e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:71:d2:87:7b:96:2e:32:28:e4:7f:da:11:c7:
18:be:ba:09:de:20:9b:8e:82:17:d9:ab:01:2b:4a:
1e:73:b0:f3:a7:34:a0:c5:f1:08:23:e2:d7:6f:79:
02:16:7e:3d:34:19:24:7d:61:55:ca:42:40:d4:b5:
80:b3:87:8d:87:7b:4c:69:b3:16:4a:14:90:5b:ce:
39:e2:ab:aa:89:cc:32:90:e8:e9:e3:ce:ce:55:c1:
aa:67:9d:71:ac:dd:0e:57:a0:38:b4:b1:1f:0e:ae:
28:58:af:b9:8c:2b:44:38:00:9f:01:dd:01:03:a7:
13:12:05:19:9c:ca:2e:7e:a8:b3:23:2d:b9:20:0d:
52:45:bb:c7:96:fd:d6:c4:5b:71:7b:aa:c4:b0:06:
0e:8f:5b:e1:4d:ab:84:c8:d6:b9:6f:8a:2c:40:1a:
7b:55:ed:2c:cc:4d:2c:e3:e6:fc:a8:bc:c6:59:e6:
98:91:04:b5:00:f2:5a:1f:e6:3b:92:2f:a7:47:49:
9c:4a:3a:ef:6f:57:36:5c:f1:16:7a:58:03:2a:be:
28:04:fb:35:5d:2c:90:3c:f9:c0:d9:e3:a7:f7:6c:
ef:78:89:48:d5:9b:0d:9a:24:5f:92:fa:a8:72:ca:
b2:18:83:7b:16:62:3d:5d:89:58:38:a2:6d:34:cc:
84:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:25:73:2F:D5:78:4A:AB:F3:C6:C5:CA:5D:6F:C8:6E:38:B8:8E:2E
X509v3 Authority Key Identifier:
keyid:F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/8CVzL9V4SqvzxsXKXW_Ibji4ji4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/8Mx6RHSC5XsGBLq7gqUkCc3js20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.123.8.0/21
Signature Algorithm: sha256WithRSAEncryption
b1:01:14:2f:f0:8c:c1:b6:9e:47:12:75:f6:d8:cc:52:df:05:
dc:12:d9:32:ff:31:4c:82:70:90:5e:1f:1b:a4:a8:98:5c:e8:
b0:f0:f4:38:31:7d:26:d8:38:61:87:c0:40:6a:46:ef:eb:17:
b2:e8:33:e4:0b:04:16:f7:e3:0f:da:20:a4:37:2e:20:21:65:
ba:57:61:72:cd:49:e2:60:cb:3f:0c:a4:d9:46:62:82:a0:a7:
b4:61:cd:78:01:82:7b:09:b3:4a:f2:78:90:3d:99:36:69:6e:
2e:f2:0e:a4:8e:bb:19:28:6b:e7:09:d9:dc:46:be:55:42:7e:
af:e6:96:01:ee:51:15:e7:01:12:a7:03:77:7a:b3:22:90:c1:
76:8c:8d:70:d8:cf:21:7b:9f:29:bc:25:a4:66:fe:7e:ef:4a:
ca:13:99:b7:8c:6f:df:95:67:2d:e1:45:8d:a0:a7:3c:13:62:
61:03:91:2b:60:d3:ee:74:a0:25:56:30:30:cd:71:c5:58:81:
76:48:1c:a8:67:2f:4c:6d:59:f5:19:6b:98:87:78:c8:8e:8b:
52:f0:2b:67:13:e2:7d:1b:5f:87:3f:fa:65:14:e9:ec:2d:0f:
cd:3c:1d:4b:33:d5:4c:f4:3a:92:d9:dc:2d:08:4b:ea:3c:d6:
c0:87:5d:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:13 2023 by rpki-client on console-ams.rpki-client.org