Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/K7qRTiYoNvuW6f92OlqhTh6jlNE.roa
File: K7qRTiYoNvuW6f92OlqhTh6jlNE.roa (raw, json)
Hash identifier: X2gkN27AADoGMoUJ8/rIZ6YlZCxe5nGZYHBrPY+78YQ=
Subject key identifier: 2B:BA:91:4E:26:28:36:FB:96:E9:FF:76:3A:5A:A1:4E:1E:A3:94:D1
Certificate issuer: /CN=46224dc9396e580ff7120f257353a70c72379c93
Certificate serial: 01856C25B8CF089B3E5F352A01578B91F580
Authority key identifier: 46:22:4D:C9:39:6E:58:0F:F7:12:0F:25:73:53:A7:0C:72:37:9C:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RiJNyTluWA_3Eg8lc1OnDHI3nJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/K7qRTiYoNvuW6f92OlqhTh6jlNE.roa
Signing time: Sun 01 Jan 2023 07:04:49 +0000
ROA not before: Sun 01 Jan 2023 07:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31704
IP address blocks: 91.216.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:b8:cf:08:9b:3e:5f:35:2a:01:57:8b:91:f5:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46224dc9396e580ff7120f257353a70c72379c93
Validity
Not Before: Jan 1 07:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bba914e262836fb96e9ff763a5aa14e1ea394d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:89:fb:0d:46:35:a0:92:94:c3:7f:2c:d1:28:
de:b9:e2:c5:c7:1c:2a:0c:29:c0:4a:6a:b5:8f:9a:
b6:63:f0:a3:44:c2:f5:78:1e:6a:f1:4e:53:c7:a8:
ed:aa:d6:c3:9c:87:95:71:e0:4a:cc:c8:ac:85:9b:
f0:08:9d:f3:bf:2f:77:ad:bc:0a:eb:bd:b2:70:64:
1d:81:24:05:f0:61:dd:1d:c1:85:f8:8f:a4:fa:40:
38:1a:3f:33:96:39:77:74:be:52:14:97:6a:fb:58:
84:51:8a:6a:92:d4:2e:8f:98:3e:39:09:bd:6d:02:
6e:10:5f:de:dd:65:c4:07:61:3a:11:61:55:53:a8:
5a:64:3b:c1:56:e3:ee:02:3d:1c:b7:a4:b7:29:82:
d3:75:22:c6:09:26:45:ec:71:9e:b5:4d:71:21:60:
f2:d7:a7:eb:be:09:b8:70:b6:27:50:d8:9c:5b:25:
15:71:1f:8d:4a:c8:13:52:39:15:f0:4d:3d:a7:66:
b1:13:d1:d5:ef:7d:6b:09:be:39:1d:d3:9f:57:a7:
a4:34:43:d1:c8:ce:fc:25:86:0e:ec:67:e3:3a:73:
c0:41:9b:5e:e6:e5:f2:7a:fc:b7:e0:e4:44:8b:d7:
57:c3:a2:83:7a:b0:21:a4:9d:9b:77:17:32:da:63:
c5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:BA:91:4E:26:28:36:FB:96:E9:FF:76:3A:5A:A1:4E:1E:A3:94:D1
X509v3 Authority Key Identifier:
keyid:46:22:4D:C9:39:6E:58:0F:F7:12:0F:25:73:53:A7:0C:72:37:9C:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RiJNyTluWA_3Eg8lc1OnDHI3nJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/K7qRTiYoNvuW6f92OlqhTh6jlNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/RiJNyTluWA_3Eg8lc1OnDHI3nJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.170.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ab:ab:ca:34:66:c3:2f:e1:aa:ca:fe:1e:e2:99:81:9b:c3:
ce:a9:91:a5:8a:f6:82:f3:92:d7:ce:de:20:d6:bf:61:00:31:
aa:5e:e9:bb:fd:3a:7e:20:fa:36:ba:2e:ea:bd:5c:e5:c2:aa:
fb:2a:2a:b6:5a:c4:7d:38:34:d1:d1:e7:2d:a9:b3:48:36:52:
f6:55:11:d6:fa:3e:2b:67:ea:9c:66:2e:73:d7:e3:bc:90:74:
e0:ac:fe:1d:04:cc:ca:66:f7:6e:6d:b4:1b:1f:2f:87:95:9d:
06:7c:02:0b:8b:50:22:89:23:79:2e:f4:cd:6e:c8:fc:14:7d:
24:e1:93:b1:f7:3d:ac:74:ef:4d:41:87:3d:cf:cb:f6:67:eb:
03:b1:f5:2c:e2:69:f2:c0:3f:59:7c:68:b3:21:b2:47:06:f0:
a9:58:35:30:9b:60:d7:88:ea:c9:1f:66:ca:5b:9e:fb:96:9d:
60:74:81:59:2c:87:68:26:87:72:8b:96:83:dc:05:d6:50:c8:
e7:23:3b:30:62:0d:7c:07:00:f1:2c:f3:e4:f4:42:81:d2:04:
d7:4d:47:ea:2d:5e:b8:14:f1:e1:28:a2:d3:17:3a:c8:c0:ba:
0a:4b:f5:a9:79:3b:7a:79:42:6a:c0:79:1f:8b:91:4a:e9:f3:
e6:bc:bf:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:03 2024 by rpki-client on console-ams.rpki-client.org