Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/rWT5Io-XwhnC0tyBj9kGekv95T0.roa
File: rWT5Io-XwhnC0tyBj9kGekv95T0.roa (raw, json)
Hash identifier: o/7uzI2xUy02XAwtD9yx83zAj2TAEg3GbDxZa8mC0ms=
Subject key identifier: AD:64:F9:22:8F:97:C2:19:C2:D2:DC:81:8F:D9:06:7A:4B:FD:E5:3D
Certificate issuer: /CN=974661cb1c38e63bd78bd6b2b1d68686a5415bf5
Certificate serial: 01856DB8881ACB8AECD17469230A80C83CAA
Authority key identifier: 97:46:61:CB:1C:38:E6:3B:D7:8B:D6:B2:B1:D6:86:86:A5:41:5B:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Zhyxw45jvXi9aysdaGhqVBW_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/rWT5Io-XwhnC0tyBj9kGekv95T0.roa
Signing time: Sun 01 Jan 2023 14:24:47 +0000
ROA not before: Sun 01 Jan 2023 14:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213250
IP address blocks: 91.200.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:b8:88:1a:cb:8a:ec:d1:74:69:23:0a:80:c8:3c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=974661cb1c38e63bd78bd6b2b1d68686a5415bf5
Validity
Not Before: Jan 1 14:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad64f9228f97c219c2d2dc818fd9067a4bfde53d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:48:4f:6d:36:13:44:5c:08:9e:eb:e8:6a:05:
aa:32:96:8b:7c:b3:8d:9b:57:78:fb:98:45:aa:8d:
8d:ff:9f:40:c1:c1:68:7f:26:ca:45:a0:8d:db:cb:
5c:09:da:94:d3:84:1d:fb:3f:87:bf:da:c7:6f:e8:
7f:65:05:f3:06:95:f1:6b:3b:7f:0c:7e:54:a6:ca:
9e:ed:57:f6:b0:ca:0a:0e:b3:02:18:33:c1:f0:65:
d8:c0:f4:da:84:68:fa:98:0c:c4:8e:73:d9:74:8f:
47:60:d3:e2:ae:5d:3d:68:35:d4:55:ef:b1:81:61:
0d:57:2e:c7:0b:26:37:cf:bc:bc:88:7a:d6:dc:d1:
4f:06:30:6d:88:ff:0c:7f:90:e4:07:f9:04:03:57:
29:16:29:0e:74:b0:47:75:bc:1a:3c:d8:d9:0e:fe:
36:40:9d:7d:8c:c4:1e:db:78:16:5c:08:53:05:ec:
92:c2:71:f1:90:81:c1:ae:dc:07:a7:0b:05:a1:99:
3a:f3:32:1f:43:75:5c:02:87:81:31:97:8c:a1:0e:
f8:03:22:47:66:96:46:0e:78:27:8c:e1:cf:26:0b:
4f:d2:1b:9d:8a:2f:cd:ea:0d:60:dc:c1:28:3c:50:
6b:10:68:9a:93:c1:18:d1:db:54:af:47:28:49:a0:
69:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:64:F9:22:8F:97:C2:19:C2:D2:DC:81:8F:D9:06:7A:4B:FD:E5:3D
X509v3 Authority Key Identifier:
keyid:97:46:61:CB:1C:38:E6:3B:D7:8B:D6:B2:B1:D6:86:86:A5:41:5B:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Zhyxw45jvXi9aysdaGhqVBW_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/rWT5Io-XwhnC0tyBj9kGekv95T0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/l0Zhyxw45jvXi9aysdaGhqVBW_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.100.0/22
Signature Algorithm: sha256WithRSAEncryption
88:d6:a2:50:56:04:99:fb:b5:4c:c6:8c:b7:ed:e3:5a:9b:23:
5f:76:ec:56:b3:8c:4a:f2:64:be:6a:b7:0c:64:92:44:c3:0d:
63:3a:8a:af:0b:64:fc:08:dc:be:13:74:68:02:67:ea:df:e4:
10:46:30:75:ee:4d:37:24:2d:7e:0d:6c:80:55:89:34:f7:24:
4b:73:1e:a8:13:7b:a6:44:14:35:48:78:ff:ca:26:06:75:b1:
d9:93:c8:32:83:de:e4:96:74:ac:55:f7:d1:0f:3c:87:d9:16:
d2:36:c6:91:7f:c1:07:a5:57:77:fd:24:2e:92:0d:b5:41:f4:
aa:4b:80:f6:ad:3b:25:ad:ed:c3:cf:df:5c:d1:95:9b:01:9b:
db:97:71:7e:c3:f7:4e:e5:2e:21:cc:c6:06:ad:b6:8d:1b:67:
57:61:98:5a:d5:d4:83:3a:15:0f:ae:3f:44:7e:a0:da:f6:ad:
db:b9:47:8c:4f:1d:f3:9c:12:43:88:29:82:53:6c:f7:23:91:
de:92:a1:93:73:c2:ed:6e:95:57:1a:b0:4e:8a:17:b3:d2:ae:
2e:2c:e0:ca:ca:10:be:df:3a:f4:e7:9a:12:35:63:dc:37:f6:
c0:81:6d:ed:c0:0a:98:c5:60:03:dc:85:8c:35:bf:92:c7:94:
08:82:4e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org