Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ccbf7a-ec38-44e6-b2eb-7187977e057e/1/emOKOiMeE1pjGSOAnfbR4SMFRXY.roa
File: emOKOiMeE1pjGSOAnfbR4SMFRXY.roa (raw, json)
Hash identifier: yKMBqOuqfTsy9uHLXrkZ+3oBUe5uVq/oFvI7TVbICwQ=
Subject key identifier: 7A:63:8A:3A:23:1E:13:5A:63:19:23:80:9D:F6:D1:E1:23:05:45:76
Certificate issuer: /CN=888c7b94642d2e4bbfb9583ad941f51eb8c45640
Certificate serial: 01856EB908E3F187FAB02D61DA87AD7EA1E3
Authority key identifier: 88:8C:7B:94:64:2D:2E:4B:BF:B9:58:3A:D9:41:F5:1E:B8:C4:56:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIx7lGQtLku_uVg62UH1HrjEVkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ccbf7a-ec38-44e6-b2eb-7187977e057e/1/emOKOiMeE1pjGSOAnfbR4SMFRXY.roa
Signing time: Sun 01 Jan 2023 19:04:58 +0000
ROA not before: Sun 01 Jan 2023 19:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197679
IP address blocks: 91.224.238.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:08:e3:f1:87:fa:b0:2d:61:da:87:ad:7e:a1:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888c7b94642d2e4bbfb9583ad941f51eb8c45640
Validity
Not Before: Jan 1 19:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a638a3a231e135a631923809df6d1e123054576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:35:9a:27:01:64:21:c6:1c:c9:7a:83:c0:f0:
ea:6e:2e:66:5e:88:f9:39:ef:12:de:e6:58:b2:65:
2f:7b:1a:84:b3:92:99:89:fd:e3:00:49:fb:bf:7a:
81:73:63:25:bd:76:8a:3f:71:77:a2:ff:96:ad:9e:
f3:ef:93:54:19:3f:e5:91:e1:9d:f6:a9:f0:e5:2a:
a7:5a:27:ae:3d:8e:d3:12:24:4c:23:d1:69:3c:7c:
e0:35:a7:42:f5:21:29:5d:0d:59:76:b4:61:e7:43:
70:35:9d:3e:36:f9:10:c4:5d:b5:2e:8e:ca:6f:e6:
18:44:82:be:a8:95:6d:05:b1:dd:1a:10:30:27:0f:
84:b6:a2:63:81:b1:ab:aa:98:23:8c:cf:3e:e5:ca:
01:b8:a2:3e:0c:47:98:c7:ae:bf:0e:50:0d:4b:60:
bb:e6:29:e3:e4:43:4f:74:69:cc:c6:5d:9d:14:4d:
d2:8a:6b:4c:cf:2f:53:6a:5d:db:1c:a4:15:96:0f:
4d:8d:ed:ef:ca:63:be:ae:36:c3:fd:d7:c7:aa:e0:
fd:09:cd:cf:02:04:3d:d0:9f:69:7b:8b:60:a9:e3:
f8:0a:2c:31:da:f9:5b:85:6b:0f:8d:92:28:38:c7:
49:ca:1b:83:7c:c5:92:df:12:71:24:cf:8e:ee:f9:
e9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:63:8A:3A:23:1E:13:5A:63:19:23:80:9D:F6:D1:E1:23:05:45:76
X509v3 Authority Key Identifier:
keyid:88:8C:7B:94:64:2D:2E:4B:BF:B9:58:3A:D9:41:F5:1E:B8:C4:56:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIx7lGQtLku_uVg62UH1HrjEVkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ccbf7a-ec38-44e6-b2eb-7187977e057e/1/emOKOiMeE1pjGSOAnfbR4SMFRXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ccbf7a-ec38-44e6-b2eb-7187977e057e/1/iIx7lGQtLku_uVg62UH1HrjEVkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.238.0/23
Signature Algorithm: sha256WithRSAEncryption
43:6e:ab:3d:e3:7a:56:76:b3:49:0a:2b:a8:68:e2:81:d1:e7:
43:df:11:41:a2:ad:71:2d:3b:83:a1:15:2e:c3:87:7c:55:64:
f6:de:77:34:90:41:fb:1b:4b:74:af:bc:ea:b9:62:7c:b8:9f:
1b:f5:0a:12:45:82:92:e2:44:01:be:6b:80:b8:ab:cc:c2:3e:
ae:58:78:ad:e8:88:c6:0f:94:06:a2:32:bc:4f:84:e9:d5:30:
8e:7a:d2:b7:c8:9b:15:e0:6a:06:84:75:3d:50:18:4f:3e:66:
6f:af:dd:2f:a2:0f:30:50:01:16:18:ef:79:80:02:35:4e:e0:
8f:37:34:26:f8:ad:e7:da:96:f3:52:92:cd:57:79:86:1b:e0:
42:28:1a:a2:a8:f1:8a:cb:c2:11:b9:e7:8e:5e:4b:a3:b3:79:
44:d4:b5:50:d0:f9:4e:f7:29:08:d3:cb:89:18:3e:75:87:42:
cf:8a:74:20:6c:ba:71:c3:7b:7f:7f:ad:04:bd:75:54:4a:1e:
2c:1d:26:45:ae:7c:bc:28:fe:e9:38:9a:6c:55:35:1f:0e:56:
1e:04:d1:f6:df:f9:94:18:4d:be:cc:42:1a:c0:93:ef:57:38:
8d:f5:80:aa:64:67:35:34:73:8f:24:67:4b:09:32:98:5a:76:
5c:f5:0e:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:34 2024 by rpki-client on console.sobornost.net