Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/IuYjMG9NommUoTxH6AlyP13Cc2E.roa
File: IuYjMG9NommUoTxH6AlyP13Cc2E.roa (raw, json)
Hash identifier: wN7YdSGtbRIx3ypzVTjnEOY1GtyVm+03F2nDiqr0Hpo=
Subject key identifier: 22:E6:23:30:6F:4D:A2:69:94:A1:3C:47:E8:09:72:3F:5D:C2:73:61
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 0187741641B159915B6805DB2F3B65C68033
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/IuYjMG9NommUoTxH6AlyP13Cc2E.roa
Signing time: Wed 12 Apr 2023 06:10:28 +0000
ROA not before: Wed 12 Apr 2023 06:10:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 91.147.124.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:74:16:41:b1:59:91:5b:68:05:db:2f:3b:65:c6:80:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Apr 12 06:10:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22e623306f4da26994a13c47e809723f5dc27361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fc:6d:de:65:2c:03:8b:bb:49:6f:80:81:aa:
b3:08:a1:66:1a:7a:d6:c9:44:8a:b9:1a:6a:18:77:
6b:6b:97:04:dd:d4:a1:df:89:c2:56:ed:bc:f9:c9:
04:eb:d4:ad:58:1c:67:92:4b:19:4a:5e:4d:d4:a9:
0e:71:a8:7a:05:3d:70:51:e7:31:6c:3d:a4:be:f5:
6b:7a:78:80:38:23:70:77:e5:aa:34:55:b3:4e:14:
df:38:ba:27:e5:ab:b4:d1:14:4b:3f:cd:28:92:98:
74:05:9b:b8:02:b1:8f:d3:58:39:a3:91:3a:26:62:
d1:0a:09:83:71:d9:ac:40:97:1f:28:73:19:bc:eb:
c7:65:b8:4d:6a:a5:97:b6:28:e5:11:e0:81:7c:c6:
99:fa:e1:52:a4:43:04:dc:85:00:ee:c0:74:8a:aa:
ea:8e:b9:c0:de:dd:f5:83:91:fd:cc:d6:69:ab:05:
71:1d:56:f7:c8:65:bf:38:fe:51:a0:00:1b:45:65:
1c:9b:02:21:ba:df:c2:f2:41:05:63:7f:d2:03:e8:
27:6c:17:e0:d5:13:d6:8f:c9:51:d6:3a:c5:74:c9:
c2:4c:8c:d3:9b:15:e5:99:09:67:b0:48:69:e1:99:
c5:26:1c:72:cd:de:22:8d:2a:a3:6f:d3:00:a1:67:
29:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E6:23:30:6F:4D:A2:69:94:A1:3C:47:E8:09:72:3F:5D:C2:73:61
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/IuYjMG9NommUoTxH6AlyP13Cc2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.124.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:4a:2d:87:48:9d:fc:7d:4d:9b:b1:0e:be:83:c2:98:90:35:
94:f5:88:cf:8b:c1:a1:0d:cb:06:3b:1d:7f:57:4e:25:e8:d5:
fa:15:cb:cd:4a:11:c0:0d:ba:c3:53:3b:a8:74:94:26:04:48:
ce:1d:34:0b:bc:d0:3a:f4:b7:04:9c:da:44:9d:d9:83:8f:d4:
b4:0a:a0:89:53:59:c0:ee:4a:e5:26:22:84:97:11:82:06:77:
b0:0e:b9:a6:bd:b2:7f:9c:9f:68:19:67:1d:cd:48:8d:57:17:
a2:f8:e9:72:a7:2b:5b:1e:c7:84:a3:96:2e:f4:e8:ea:11:d7:
78:d5:40:b8:c2:38:a6:93:a8:4c:21:ef:31:e1:fa:65:69:a5:
5f:d5:20:af:2e:02:04:45:e6:f5:e6:ef:0f:5c:04:b9:d7:5a:
3c:7b:cf:6b:d0:ab:a6:fb:76:15:59:32:9d:46:a4:1f:a5:18:
36:9b:6f:cc:45:ff:fe:d1:37:da:df:81:9d:21:88:91:f0:c4:
0a:60:17:cc:2d:4f:7b:c8:29:f4:da:ad:58:62:ac:41:92:d7:
5f:73:c6:81:8f:43:5a:57:1c:41:30:3a:f7:2a:33:aa:74:e9:
69:73:a5:12:51:7a:f4:7f:51:1e:89:3a:76:6e:01:d1:76:3a:
4d:13:64:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:51 2023 by rpki-client on console.sobornost.net