Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/7a4402-f3f5-4f3a-98a8-2337a81b1f78/1/t2Ge9jWXaHjUYcIAqRwfyEho96c.roa
File: t2Ge9jWXaHjUYcIAqRwfyEho96c.roa (raw, json)
Hash identifier: G8jIA52WoL6DlUGOo/Aj48jN8QUQqf5CGsUbNvYwLI4=
Subject key identifier: B7:61:9E:F6:35:97:68:78:D4:61:C2:00:A9:1C:1F:C8:48:68:F7:A7
Certificate issuer: /CN=3389e0b8a2ff82a23b48dd6e6e76176b4cd3832e
Certificate serial: 01856FCB9971EC0D17C3409A0381389CFDA2
Authority key identifier: 33:89:E0:B8:A2:FF:82:A2:3B:48:DD:6E:6E:76:17:6B:4C:D3:83:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M4nguKL_gqI7SN1ubnYXa0zTgy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/7a4402-f3f5-4f3a-98a8-2337a81b1f78/1/t2Ge9jWXaHjUYcIAqRwfyEho96c.roa
Signing time: Mon 02 Jan 2023 00:04:52 +0000
ROA not before: Mon 02 Jan 2023 00:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41489
IP address blocks: 91.240.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:99:71:ec:0d:17:c3:40:9a:03:81:38:9c:fd:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3389e0b8a2ff82a23b48dd6e6e76176b4cd3832e
Validity
Not Before: Jan 2 00:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7619ef635976878d461c200a91c1fc84868f7a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:32:18:f8:24:02:db:fa:00:c5:f0:29:35:f6:
87:03:41:d5:df:ca:8b:23:4e:8c:9d:bd:eb:80:77:
5f:83:26:71:b2:4e:9f:3c:2b:e6:35:2c:ae:94:82:
dd:f4:b7:80:d1:93:4d:7a:47:9f:92:37:3d:b5:de:
0b:2b:c9:c6:2e:ad:96:66:21:01:42:f4:e0:e9:4c:
14:d1:ce:27:b2:08:f0:b7:5f:94:28:82:e2:b7:c1:
90:a4:fe:a7:37:73:7d:43:5a:af:68:4f:52:68:34:
63:f3:12:bd:2e:63:7f:e3:f3:d9:d0:75:70:a1:41:
18:b9:6e:04:46:f3:65:40:7c:96:74:20:99:79:a5:
98:7e:91:07:3c:e4:f4:1e:f7:ac:40:29:eb:3e:bf:
18:b3:ce:7e:e5:eb:60:d6:b3:d0:b1:27:fd:c8:59:
2f:62:fb:51:4b:f7:48:50:f8:4a:00:08:12:bb:7b:
65:23:e2:ad:88:83:97:69:b9:9a:cb:fc:54:43:fd:
83:64:d4:b4:6e:7e:e2:d4:9c:7a:02:33:21:04:2e:
4f:eb:05:ee:ee:c5:d5:18:aa:cb:b2:ff:67:b8:51:
d0:68:8b:fc:5b:22:89:d1:b7:27:dc:07:2d:40:47:
70:9f:0e:20:a9:f0:3d:88:85:c5:12:84:cf:22:23:
b8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:61:9E:F6:35:97:68:78:D4:61:C2:00:A9:1C:1F:C8:48:68:F7:A7
X509v3 Authority Key Identifier:
keyid:33:89:E0:B8:A2:FF:82:A2:3B:48:DD:6E:6E:76:17:6B:4C:D3:83:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M4nguKL_gqI7SN1ubnYXa0zTgy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/7a4402-f3f5-4f3a-98a8-2337a81b1f78/1/t2Ge9jWXaHjUYcIAqRwfyEho96c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/7a4402-f3f5-4f3a-98a8-2337a81b1f78/1/M4nguKL_gqI7SN1ubnYXa0zTgy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.176.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:5f:17:41:ae:f2:57:d1:b5:61:60:11:d8:4c:4b:ee:1a:02:
1a:2b:12:a6:35:bc:2d:e1:5d:f5:63:d9:bf:c2:8d:77:3a:45:
f4:5b:b6:c1:2b:02:4d:71:37:11:db:14:67:e4:b7:fe:f6:df:
55:1c:88:c8:cc:b7:55:c3:4c:6d:48:70:ee:59:81:83:9a:94:
56:a3:76:ae:3d:e1:c1:78:14:3b:05:90:a3:8c:38:87:11:2e:
65:04:cd:42:f8:dc:20:ef:05:d0:d3:92:92:17:42:1f:b4:57:
73:c4:92:a6:3b:08:48:fd:23:ca:e7:e9:71:84:0f:91:88:dd:
ea:33:5a:0f:34:a8:c8:17:c5:e6:2b:9d:2c:08:c1:d2:3b:a0:
50:dd:81:03:3d:7b:9b:33:04:eb:9a:59:7e:8b:7b:73:da:89:
f1:51:e6:9c:f6:27:8b:67:47:b6:72:db:48:19:91:ae:f3:66:
c1:28:87:d1:60:06:6f:7e:5f:1f:46:38:32:28:aa:d1:e2:3e:
89:39:b1:15:45:2e:71:68:a4:25:b7:1b:ca:06:ef:de:fd:34:
e0:0f:23:87:8d:a7:12:51:18:4a:5d:e3:36:f8:fd:fe:b5:cc:
a2:4c:01:d9:f5:42:8a:55:89:18:e7:92:29:59:25:8a:a5:5c:
56:3c:13:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:31 2024 by rpki-client on console-ams.rpki-client.org