Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/rTn7TnkFpG2PkpDgk3CAKqNGoEI.roa
File: rTn7TnkFpG2PkpDgk3CAKqNGoEI.roa (raw, json)
Hash identifier: jRlmiTWa4dk7B6FuC93IBtkSSjSuMPMVLZgBbMIbcpA=
Subject key identifier: AD:39:FB:4E:79:05:A4:6D:8F:92:90:E0:93:70:80:2A:A3:46:A0:42
Certificate issuer: /CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Certificate serial: 01856F66CAD8BD85A4CB6E24C1EC4BD58723
Authority key identifier: 99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/rTn7TnkFpG2PkpDgk3CAKqNGoEI.roa
Signing time: Sun 01 Jan 2023 22:14:45 +0000
ROA not before: Sun 01 Jan 2023 22:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50572
IP address blocks: 91.223.47.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ca:d8:bd:85:a4:cb:6e:24:c1:ec:4b:d5:87:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9992b53426fb614d9a5a6d83f400566a660c9dd2
Validity
Not Before: Jan 1 22:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad39fb4e7905a46d8f9290e09370802aa346a042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:11:13:41:e3:1e:52:d2:9b:57:40:ba:a3:cb:
8a:78:f9:fa:59:28:38:92:65:88:92:7f:42:3a:26:
c5:14:78:3c:4f:5c:8b:af:63:a0:c8:fb:85:9e:5d:
a0:45:95:9b:52:81:1a:7a:0f:a8:04:23:cd:56:ab:
79:cb:9e:49:14:e6:8c:d5:b3:6a:ab:24:95:1b:ad:
67:be:32:e0:45:26:25:79:67:97:a5:4a:b3:0f:83:
64:bf:35:ba:47:c5:ee:7c:46:28:0d:08:30:32:18:
8e:74:86:5e:ff:1b:c0:9b:e9:52:95:46:af:60:74:
fd:f7:87:5a:ca:0b:7c:86:a7:88:0a:8e:7c:8c:ba:
eb:a1:93:9f:b9:3b:bf:be:b9:e1:89:f1:bc:0f:63:
3d:f3:13:33:02:4c:73:74:b2:32:65:47:72:da:a9:
95:ef:ce:72:30:b8:04:de:61:2d:c3:56:b1:05:bc:
4c:d7:16:33:77:83:4a:e9:fc:5d:90:66:f1:0a:e3:
78:5d:c8:30:28:b4:12:7f:e6:d4:d4:39:ea:9e:2e:
fb:80:92:55:f8:4d:a2:3b:a8:3b:50:71:57:52:8e:
e6:55:72:50:f9:6a:97:24:0b:49:dc:a6:b9:19:1e:
53:ea:2c:60:bb:c4:10:de:3d:5e:5d:bd:9c:c1:e9:
8e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:39:FB:4E:79:05:A4:6D:8F:92:90:E0:93:70:80:2A:A3:46:A0:42
X509v3 Authority Key Identifier:
keyid:99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/rTn7TnkFpG2PkpDgk3CAKqNGoEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.47.0/24
Signature Algorithm: sha256WithRSAEncryption
81:e2:c2:9c:2e:60:8c:f0:03:b5:3d:44:25:7f:32:1d:d6:0c:
01:d2:d7:62:dc:3a:95:49:f7:8e:9b:b4:71:2c:52:7f:0d:fb:
5c:b6:0d:fc:4e:20:75:b5:5e:c5:33:0a:67:de:5d:e6:3f:88:
e2:11:4d:45:98:88:e8:99:16:e4:b0:18:36:94:10:8d:f5:b3:
d4:fc:2d:35:b0:6f:27:3b:73:23:2b:c2:a2:e5:fe:3c:50:b1:
94:de:12:91:69:f9:9b:d7:ae:03:cc:b3:7f:b1:a2:52:1e:72:
f5:8a:40:1f:60:d5:1f:c0:d1:92:85:31:ab:1f:31:4c:e2:d0:
40:e9:95:56:dc:bb:a4:f1:29:ca:ce:3a:7c:c2:be:12:39:78:
a0:03:e4:60:e2:0e:b2:9f:a8:17:ba:87:64:19:6f:14:45:e2:
01:d8:d1:c3:56:3c:bf:50:2a:50:92:de:90:f6:95:b4:16:61:
c9:c3:7d:30:8d:5d:0d:12:25:9c:6e:60:a3:0a:76:d9:18:39:
81:11:98:7a:d4:9b:a6:de:c2:34:9f:fb:6c:a8:d0:da:c5:e4:
59:a9:ad:9f:ae:b6:21:15:b5:12:29:6c:8f:68:79:e3:75:44:
84:de:22:49:e2:cd:74:c3:1b:de:4a:23:1a:6a:10:2b:97:73:
bb:64:17:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:09 2024 by rpki-client on console-ams.rpki-client.org