Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/saxiCwa8ZvaoscHrV7CSEtzWUVQ.roa
File: saxiCwa8ZvaoscHrV7CSEtzWUVQ.roa (raw, json)
Hash identifier: Lf7s4pcSW4LvMeqaJkgQsWCWELCE/zzID93DmkhKBhs=
Subject key identifier: B1:AC:62:0B:06:BC:66:F6:A8:B1:C1:EB:57:B0:92:12:DC:D6:51:54
Certificate issuer: /CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Certificate serial: 0185734CDE319341CD4BA46B2208443D9068
Authority key identifier: D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/saxiCwa8ZvaoscHrV7CSEtzWUVQ.roa
Signing time: Mon 02 Jan 2023 16:24:55 +0000
ROA not before: Mon 02 Jan 2023 16:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197071
IP address blocks: 91.216.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Dec 2023 10:57:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:de:31:93:41:cd:4b:a4:6b:22:08:44:3d:90:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Validity
Not Before: Jan 2 16:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1ac620b06bc66f6a8b1c1eb57b09212dcd65154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:aa:4f:e2:e5:65:78:34:d5:6a:53:b2:01:fa:
83:2c:a0:00:44:52:bb:26:15:13:c7:67:0c:ab:b6:
22:50:ab:f8:a7:63:2d:73:6e:99:c3:34:ec:bd:30:
f1:8f:9a:a6:89:bb:1b:c0:98:13:93:ea:67:bd:0a:
ae:8f:fd:c8:39:ad:af:8b:57:2f:dc:97:6a:de:0c:
c6:c4:72:49:81:e7:1f:46:36:68:aa:f6:9e:fe:11:
a4:e2:77:9d:a6:01:d2:89:c5:66:f5:ab:a9:61:1f:
b4:ee:5f:ca:44:8b:11:e4:ef:a9:83:24:82:0d:fc:
2d:1b:f7:53:d5:bc:97:26:ee:4d:79:fc:c8:4f:68:
f0:7d:6b:a2:e4:04:e6:22:c8:3f:a6:86:54:66:90:
00:d9:5e:50:05:e9:76:70:66:29:d5:ac:03:5d:2d:
2d:71:e4:e9:db:13:89:99:91:9a:f0:bb:ef:8b:76:
9c:84:3a:41:e7:2e:11:a2:ca:14:c4:8c:75:dd:8b:
c0:96:7a:25:8a:28:f5:78:1e:db:30:8b:9c:43:36:
26:db:72:cf:28:7b:6b:e0:95:ee:f1:c6:74:16:23:
1b:e6:df:6d:f5:d2:77:ca:46:08:99:58:06:da:91:
99:e3:da:8f:9d:95:f5:28:e1:15:37:60:55:de:aa:
f4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:AC:62:0B:06:BC:66:F6:A8:B1:C1:EB:57:B0:92:12:DC:D6:51:54
X509v3 Authority Key Identifier:
keyid:D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/saxiCwa8ZvaoscHrV7CSEtzWUVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.35.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:14:97:29:fc:ed:55:73:aa:5e:da:70:80:96:75:e3:3c:6d:
cd:96:8c:dd:1f:25:38:61:46:be:19:7b:b8:ba:d0:6a:99:f1:
ad:fd:0b:b8:c2:7f:07:f0:a9:af:c6:ab:aa:87:e0:e9:cd:4c:
db:e8:36:0f:27:ff:d3:96:df:74:9b:52:3d:27:13:5f:a0:9f:
7a:1e:73:60:30:5a:c1:3e:4a:2e:04:8b:84:37:d5:d4:4c:49:
c0:93:d4:71:73:5b:29:5a:03:d8:a4:66:1f:20:b0:2b:e5:10:
d9:62:ba:0c:e6:2b:bf:cb:19:1f:d8:96:93:77:e6:f9:cd:7e:
93:63:36:fa:6b:d3:9d:1b:18:35:fc:a3:e5:b0:70:b0:18:3b:
be:60:80:df:68:bc:77:1d:0c:91:1d:d0:c8:08:4c:b9:11:02:
06:5d:bd:7c:9b:30:3b:90:72:49:47:8c:e1:41:ce:8d:35:6b:
98:d6:28:6e:47:6a:85:3a:c9:07:98:dd:1c:8b:ae:c9:42:f7:
a2:57:7f:9d:c2:73:be:92:11:45:17:82:1e:5d:f6:3a:3b:a5:
35:4d:c8:55:0a:20:31:49:73:a5:20:d0:a4:dd:e4:4a:8c:7f:
0d:8d:fd:78:1e:83:0c:d3:6c:f3:4d:10:df:70:d5:34:8c:5e:
c0:c6:23:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:26 2024 by rpki-client on console-ams.rpki-client.org