Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9606f6-da02-4bb8-b3e4-f03ac59b5a97/1/fQTMoK2QHyyBpzyXuiW5Nw8Uxrw.roa
File: fQTMoK2QHyyBpzyXuiW5Nw8Uxrw.roa (raw, json)
Hash identifier: RI8DlCAaYqHucGRzeJ1T1g/S7zvkd65KfBtXzPaEk/E=
Subject key identifier: 7D:04:CC:A0:AD:90:1F:2C:81:A7:3C:97:BA:25:B9:37:0F:14:C6:BC
Certificate issuer: /CN=9be4717112fec119f6cfcace7cc4434fb47df8f5
Certificate serial: 018571B0DBC9D9D97B8931462895D1BD5B7C
Authority key identifier: 9B:E4:71:71:12:FE:C1:19:F6:CF:CA:CE:7C:C4:43:4F:B4:7D:F8:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-RxcRL-wRn2z8rOfMRDT7R9-PU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9606f6-da02-4bb8-b3e4-f03ac59b5a97/1/fQTMoK2QHyyBpzyXuiW5Nw8Uxrw.roa
Signing time: Mon 02 Jan 2023 08:54:54 +0000
ROA not before: Mon 02 Jan 2023 08:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60509
IP address blocks: 91.240.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:db:c9:d9:d9:7b:89:31:46:28:95:d1:bd:5b:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9be4717112fec119f6cfcace7cc4434fb47df8f5
Validity
Not Before: Jan 2 08:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d04cca0ad901f2c81a73c97ba25b9370f14c6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2f:24:f3:e6:bb:fa:9e:fd:d5:20:92:2e:e1:
c6:57:73:5c:cf:a0:ab:a2:f2:21:c5:d1:73:bc:1d:
61:60:84:69:12:56:3c:08:c9:2e:ef:90:1a:71:11:
7b:de:d0:bb:38:e1:dd:3f:c8:3e:e2:d4:64:7b:62:
42:b9:98:ab:24:1c:09:11:de:59:a8:dd:9e:5c:6c:
73:8d:c2:d9:68:12:d1:5d:10:6b:ed:bb:b0:7c:1a:
b6:78:0d:2c:ff:49:99:d6:af:18:2d:e2:3f:03:a9:
76:92:b9:99:bb:42:47:2b:23:7e:8a:a1:97:64:bf:
9b:2c:f3:5c:84:1b:15:d1:51:c9:f6:53:66:a2:59:
dd:06:ba:51:c7:d7:dc:99:c3:72:08:95:e8:b6:7f:
12:75:2a:64:17:cc:cd:13:75:fe:43:91:83:62:cb:
7e:cb:fb:59:e3:d5:35:5e:5b:ce:36:27:25:be:be:
a3:de:16:44:48:da:ad:76:4a:cf:cf:b8:a6:9a:9a:
45:b6:49:16:37:08:8e:11:37:3e:12:c1:05:92:87:
1c:83:a2:b8:76:77:0d:89:64:19:ee:2c:24:fa:64:
3e:eb:de:ff:24:90:ba:ec:d2:06:f5:89:25:8d:30:
97:89:22:09:2a:2d:96:89:85:0a:18:6d:4b:08:9d:
ef:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:04:CC:A0:AD:90:1F:2C:81:A7:3C:97:BA:25:B9:37:0F:14:C6:BC
X509v3 Authority Key Identifier:
keyid:9B:E4:71:71:12:FE:C1:19:F6:CF:CA:CE:7C:C4:43:4F:B4:7D:F8:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-RxcRL-wRn2z8rOfMRDT7R9-PU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9606f6-da02-4bb8-b3e4-f03ac59b5a97/1/fQTMoK2QHyyBpzyXuiW5Nw8Uxrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9606f6-da02-4bb8-b3e4-f03ac59b5a97/1/m-RxcRL-wRn2z8rOfMRDT7R9-PU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.4.0/24
Signature Algorithm: sha256WithRSAEncryption
54:e9:ce:4d:72:83:c8:65:40:23:c6:12:a8:17:ff:6c:46:c3:
ed:01:53:db:ac:92:6d:d1:ca:c5:eb:4a:52:d3:1b:75:a2:12:
ec:38:72:3d:32:03:76:c2:df:44:83:a0:38:a6:e7:1a:b5:0f:
f1:20:22:46:fc:24:f4:72:73:57:2e:db:68:e4:b4:50:ab:35:
09:35:5f:d9:0d:e0:6d:21:a7:4a:f5:dc:1a:c0:7e:cd:d5:b9:
10:9b:a9:de:2d:5a:42:ce:ad:25:5a:f9:0d:65:f3:9b:b2:80:
bc:06:97:bd:b2:ae:c6:c6:b9:de:b0:9a:96:5c:e1:e1:09:28:
ae:1d:5b:b9:33:fe:eb:49:07:71:c5:dc:d7:11:fd:de:3f:c3:
d0:bb:ee:12:ce:4c:d6:07:a2:c5:5d:23:26:3d:90:5b:cd:cd:
e3:09:42:92:50:c5:40:06:13:4e:6a:e8:91:7d:89:65:36:8f:
cc:4a:40:41:49:ca:72:02:fb:af:26:47:e9:b9:0b:41:4d:9c:
35:33:41:d8:4a:f8:dc:d7:46:d1:fd:f9:c7:4e:94:52:90:c2:
6b:63:81:52:3f:cb:12:19:50:e8:11:ee:46:18:c0:d1:e0:1e:
05:61:8b:26:68:5e:7d:7b:16:cf:fc:0c:9c:2d:59:de:92:dc:
d2:2e:55:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:18:17 2024 by rpki-client on console.sobornost.net