Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/24d1eb-2ce1-4e6f-83c2-15a9f21caa85/1/cx6YTORSwRSQPB74Lhwk_PxhepY.roa
File: cx6YTORSwRSQPB74Lhwk_PxhepY.roa (raw, json)
Hash identifier: JAKk1XwgRRIXxbQNFUmy8JK283gj88nioSoREHviYjY=
Subject key identifier: 73:1E:98:4C:E4:52:C1:14:90:3C:1E:F8:2E:1C:24:FC:FC:61:7A:96
Certificate issuer: /CN=127e9f9d5fd45da010695cc4212af7e67b7b348f
Certificate serial: 01857139D5CDCE1F27009D909103B0862E96
Authority key identifier: 12:7E:9F:9D:5F:D4:5D:A0:10:69:5C:C4:21:2A:F7:E6:7B:7B:34:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/En6fnV_UXaAQaVzEISr35nt7NI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/24d1eb-2ce1-4e6f-83c2-15a9f21caa85/1/cx6YTORSwRSQPB74Lhwk_PxhepY.roa
Signing time: Mon 02 Jan 2023 06:44:53 +0000
ROA not before: Mon 02 Jan 2023 06:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198955
IP address blocks: 91.240.155.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:d5:cd:ce:1f:27:00:9d:90:91:03:b0:86:2e:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=127e9f9d5fd45da010695cc4212af7e67b7b348f
Validity
Not Before: Jan 2 06:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=731e984ce452c114903c1ef82e1c24fcfc617a96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:51:0b:1e:97:65:2e:1f:d7:cc:57:09:01:de:
03:fc:32:60:f7:a3:7e:58:d7:52:f6:68:04:14:72:
a9:09:6b:76:ea:8c:3d:0c:49:80:83:3c:75:c1:35:
31:61:2d:ce:06:99:50:09:87:ff:8f:0c:2d:5b:9b:
8f:7e:d4:9a:2b:1a:6e:72:17:6b:03:c8:5a:d3:e8:
20:85:db:d1:91:a5:5e:00:ff:8c:61:2b:a6:2c:bf:
73:4b:43:33:66:8d:3c:62:ae:47:fd:9a:71:6c:be:
de:1d:db:51:8c:01:5f:43:80:52:53:47:c6:a9:6a:
cf:97:1c:99:ca:8e:f1:dc:44:05:af:40:67:a9:ea:
45:82:08:c6:53:04:0f:6f:ad:de:48:4f:d3:91:be:
5f:ae:00:46:b5:2a:6b:2b:e0:03:b5:5f:a6:bd:55:
63:59:70:1e:a1:c9:d6:72:68:87:46:b4:e5:64:35:
20:6f:4c:72:bd:7c:70:c6:43:0a:b5:7b:37:df:c9:
2d:4d:e9:90:6c:e8:d6:20:6d:c5:ae:5b:96:93:7f:
f5:4b:ec:19:b7:37:45:78:aa:d4:99:e2:71:48:f9:
da:8b:2a:c7:a9:ef:63:99:62:3a:eb:f1:76:a3:5b:
8e:75:22:10:bb:14:e4:c3:df:c0:fa:2f:50:7c:ff:
50:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:1E:98:4C:E4:52:C1:14:90:3C:1E:F8:2E:1C:24:FC:FC:61:7A:96
X509v3 Authority Key Identifier:
keyid:12:7E:9F:9D:5F:D4:5D:A0:10:69:5C:C4:21:2A:F7:E6:7B:7B:34:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/En6fnV_UXaAQaVzEISr35nt7NI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/24d1eb-2ce1-4e6f-83c2-15a9f21caa85/1/cx6YTORSwRSQPB74Lhwk_PxhepY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/24d1eb-2ce1-4e6f-83c2-15a9f21caa85/1/En6fnV_UXaAQaVzEISr35nt7NI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.155.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:e9:95:c4:2a:51:1c:79:37:3e:17:e7:bd:58:de:00:a8:3b:
4a:ca:56:7d:28:81:f6:74:24:fd:85:92:48:f5:0e:71:c6:58:
16:63:36:b2:c4:69:a5:de:65:22:f7:7c:36:fd:a7:4a:3a:3b:
4b:af:0e:85:24:d6:60:6d:7b:9f:ea:f3:f9:df:78:c6:45:c9:
b7:51:7d:18:86:a5:a7:2a:8b:35:2a:de:61:3d:92:5c:1d:4b:
8c:c5:43:f2:73:09:89:34:30:30:6a:7e:87:b1:97:e3:d0:c3:
2b:ce:0e:06:13:2e:f9:f1:00:81:3d:71:f9:19:08:6b:0c:ab:
c2:5c:6f:14:fd:53:2b:d0:86:f4:73:8c:17:81:ec:0b:ed:3c:
a1:a4:45:e5:c9:03:c6:9c:9c:51:70:24:04:41:bb:e9:c9:93:
1d:54:d8:e9:a2:b3:65:0b:d1:75:b6:77:72:31:e6:7e:1b:a9:
ab:ac:22:96:f3:c7:99:56:5f:14:5d:0a:29:07:ea:61:0d:70:
28:67:ec:81:30:3d:16:c1:ef:1b:c5:e5:6a:97:c5:a4:78:10:
fc:00:15:3b:45:af:44:47:37:c3:a8:2f:a9:68:b4:4f:bc:76:
cd:02:1d:fd:37:05:90:de:ed:78:08:5f:6b:49:99:2b:55:b4:
4b:0f:38:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:53 2024 by rpki-client on console-fra.rpki-client.org