Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/RBKZpS4Sby61hOYjQo9_Iym_EAY.roa
File: RBKZpS4Sby61hOYjQo9_Iym_EAY.roa (raw, json)
Hash identifier: XTU0tPUzqdFNDE5CxMEsnqPB0n7/p4uaTWWv13N/+5k=
Subject key identifier: 44:12:99:A5:2E:12:6F:2E:B5:84:E6:23:42:8F:7F:23:29:BF:10:06
Certificate issuer: /CN=84a69fc568894cb3985edef22216bd99974de251
Certificate serial: 01856ECB83F14C5EA170EEB81736508ED41F
Authority key identifier: 84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/RBKZpS4Sby61hOYjQo9_Iym_EAY.roa
Signing time: Sun 01 Jan 2023 19:25:09 +0000
ROA not before: Sun 01 Jan 2023 19:25:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56339
IP address blocks: 91.243.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:83:f1:4c:5e:a1:70:ee:b8:17:36:50:8e:d4:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a69fc568894cb3985edef22216bd99974de251
Validity
Not Before: Jan 1 19:25:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=441299a52e126f2eb584e623428f7f2329bf1006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:62:16:1f:9e:85:b8:7c:a6:94:0f:11:a0:35:
17:e0:75:5a:25:bc:96:24:e7:3c:ae:54:11:b4:24:
05:65:e3:b4:44:c2:5d:a8:23:08:31:1f:99:35:65:
31:40:8f:1f:8c:02:83:ae:e1:82:81:44:a1:10:3e:
81:b6:26:06:a0:58:8c:f7:10:97:86:06:0d:0d:27:
f6:c3:23:a6:29:d7:ed:50:8b:f2:8d:3b:81:fd:92:
44:a1:2f:2d:f2:8f:91:80:bd:c8:93:bc:dd:d4:59:
e2:f9:ef:6f:cf:e4:1a:71:3c:30:6f:17:6d:0e:01:
50:30:4c:82:18:86:3a:56:49:3e:36:20:bb:82:b0:
d2:86:68:26:db:45:06:d6:da:19:72:11:e7:6c:e8:
3a:c3:64:3b:3b:6a:c7:26:8c:a1:bc:40:c7:66:61:
08:f8:bd:b2:b1:40:5e:e2:1f:0f:10:fd:64:09:e2:
3d:aa:b5:11:cc:7a:fd:d2:88:7e:19:1e:3d:67:a1:
71:c9:65:2d:36:b1:11:a1:66:93:b2:3e:24:0a:a5:
27:d0:5e:48:40:88:ef:04:88:84:8e:4c:72:c0:63:
dc:05:f5:0d:1f:8c:ba:5d:3e:da:f6:f6:af:1b:a0:
da:fe:53:45:d3:bb:df:88:cc:68:7b:b7:4a:54:39:
5b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:12:99:A5:2E:12:6F:2E:B5:84:E6:23:42:8F:7F:23:29:BF:10:06
X509v3 Authority Key Identifier:
keyid:84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/RBKZpS4Sby61hOYjQo9_Iym_EAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.117.0/24
Signature Algorithm: sha256WithRSAEncryption
00:5a:c8:ec:da:4c:8e:28:84:b1:ef:e9:95:11:0b:55:f9:5c:
11:89:ef:61:27:df:9f:24:be:36:b4:54:4a:b4:e3:73:78:19:
fe:51:3b:31:1a:40:28:d5:09:ff:99:9f:39:d9:c8:0f:46:52:
3a:69:44:10:57:65:1d:93:bb:40:e2:9e:57:2d:50:91:14:89:
4e:c0:4d:b5:ef:5f:70:41:78:e3:bc:9b:e0:81:ae:a1:3a:be:
7d:a8:dd:47:7b:de:32:32:5b:99:e8:63:3b:c4:00:2f:99:c4:
8d:e6:f1:d4:f1:c0:f9:e7:e2:ce:0a:47:34:5d:d5:a8:d6:77:
f3:6f:cd:10:b8:03:9e:d1:f7:74:51:58:1e:16:19:0f:24:84:
63:36:2e:f1:ee:36:18:91:77:67:1a:a0:9f:24:83:91:16:a5:
16:18:38:24:5e:e8:0d:71:e8:bb:a1:a5:4c:39:b5:00:50:bf:
73:39:ce:af:ea:43:31:1a:e0:0c:10:19:4d:b1:61:90:08:1e:
ce:f6:59:51:2b:15:bc:08:91:04:92:ec:95:ea:52:ad:5d:da:
00:90:47:b1:3b:00:72:80:bc:95:e0:52:2f:82:ae:cf:d7:99:
f2:16:33:7c:ec:25:6d:a5:05:5f:a3:8d:0b:14:48:21:17:16:
3b:82:2c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:34 2024 by rpki-client on console-ams.rpki-client.org