Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/LzMPrZ0b6-HVWO284ovPlfVz54E.roa
File: LzMPrZ0b6-HVWO284ovPlfVz54E.roa (raw, json)
Hash identifier: gMmOKYZ9fOSAq4d58UuO+iaDNugbXQU9vCR9r69n2T8=
Subject key identifier: 2F:33:0F:AD:9D:1B:EB:E1:D5:58:ED:BC:E2:8B:CF:95:F5:73:E7:81
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0187D1F2B1F986DD5D5BCB7FD8AFE5C65EE3
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/LzMPrZ0b6-HVWO284ovPlfVz54E.roa
Signing time: Sun 30 Apr 2023 11:35:56 +0000
ROA not before: Sun 30 Apr 2023 11:35:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147186
IP address blocks: 91.225.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Nov 2023 20:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d1:f2:b1:f9:86:dd:5d:5b:cb:7f:d8:af:e5:c6:5e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Apr 30 11:35:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f330fad9d1bebe1d558edbce28bcf95f573e781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:55:8d:ae:2c:f9:1b:49:5a:66:c8:9e:ec:a7:
82:c1:49:e1:e2:e5:d1:7e:9f:9f:61:22:08:66:81:
de:56:a4:f3:cf:8a:94:3c:55:d2:8e:1c:80:52:a9:
94:83:3a:42:d7:ef:1b:02:be:e2:1b:4b:92:29:08:
d2:64:c8:c4:c8:47:d7:3f:27:6a:81:b3:77:85:08:
ad:94:90:75:c8:ba:ae:9e:54:03:98:ff:10:6f:72:
28:e5:cd:e5:61:75:20:d2:08:b4:d3:d3:64:bb:8c:
f6:42:ca:68:93:ec:de:bc:db:0e:04:b9:4a:14:34:
3b:c6:75:2f:75:f0:f4:cb:06:5a:2d:a5:70:b7:0e:
c1:1d:48:38:c1:ba:fd:5b:d8:96:eb:a6:dc:4e:ad:
23:9b:1f:8c:78:a1:f9:2f:67:34:2d:8c:bf:aa:04:
48:84:fb:3c:05:ef:cf:a6:6e:e2:77:b5:4b:f0:89:
21:2e:f6:b0:06:c7:5b:3e:cf:b9:a3:68:57:f7:ae:
20:4d:34:0a:ef:40:f0:2a:91:62:69:b2:c3:47:db:
a4:31:c6:05:c5:98:5d:c2:4f:a8:3b:56:97:86:52:
01:0a:d2:8d:aa:0c:77:93:c1:60:1f:af:ae:b1:bb:
0c:03:e2:57:a1:a4:51:56:dc:44:69:37:60:bd:14:
f8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:33:0F:AD:9D:1B:EB:E1:D5:58:ED:BC:E2:8B:CF:95:F5:73:E7:81
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/LzMPrZ0b6-HVWO284ovPlfVz54E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.227.0/24
Signature Algorithm: sha256WithRSAEncryption
66:3c:28:23:71:22:2e:8c:1c:2b:7d:81:7b:10:9b:66:8b:a0:
e9:40:49:37:93:ef:19:32:c3:33:9a:85:c9:b0:a5:80:68:79:
06:62:a4:f2:73:69:32:b4:1e:90:d3:0b:df:c5:67:64:fd:09:
0e:dd:e9:4c:14:19:e1:fa:71:05:3a:97:e4:97:36:d1:42:cc:
fd:16:69:98:d9:d6:ba:0a:d4:7c:63:b5:4d:bb:47:c3:cb:61:
67:0c:cd:37:7d:c2:be:be:7e:eb:51:88:8e:80:80:28:3a:84:
b8:67:80:30:b2:be:97:23:38:51:33:d3:aa:42:b0:92:e3:0d:
96:c6:82:2d:89:61:2e:f2:6a:b4:f8:e8:71:cd:49:bb:28:a5:
71:40:fd:86:5f:0e:21:75:71:18:57:d0:f7:a5:16:ac:15:21:
a7:bd:99:07:0f:70:e1:bb:52:50:8f:62:04:39:6f:db:3b:3b:
ba:ac:bc:39:4e:d5:a0:c8:07:9e:3d:19:97:16:ee:09:72:99:
d9:95:78:da:92:62:ba:0c:b3:f6:e2:1d:97:92:55:0b:24:b3:
7b:84:95:1b:9e:2d:8b:ee:b3:6b:46:18:a7:46:71:73:c9:e5:
84:b3:84:b6:b4:ed:67:8c:54:12:8f:32:0d:52:dd:b9:2c:ed:
d3:53:78:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:49 2024 by rpki-client on console-ams.rpki-client.org