Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oSFPkXsJFESeEgMvzSZcAQ2c6l4.roa
File: oSFPkXsJFESeEgMvzSZcAQ2c6l4.roa (raw, json)
Hash identifier: xBpJ+Upd7ywR7LozAry2GFRsDcXNLmtcMTz5hVh4Zno=
Subject key identifier: A1:21:4F:91:7B:09:14:44:9E:12:03:2F:CD:26:5C:01:0D:9C:EA:5E
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 01857169B9A0FF9ABD4A466CC132974E1351
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oSFPkXsJFESeEgMvzSZcAQ2c6l4.roa
Signing time: Mon 02 Jan 2023 07:37:12 +0000
ROA not before: Mon 02 Jan 2023 07:37:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43566
IP address blocks: 91.199.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:b9:a0:ff:9a:bd:4a:46:6c:c1:32:97:4e:13:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Jan 2 07:37:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1214f917b0914449e12032fcd265c010d9cea5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ac:7f:7c:35:54:32:c5:70:a3:ca:e2:31:4c:
7c:db:eb:1d:ef:bc:78:f9:b6:4c:49:17:e7:6f:d8:
fd:2c:83:1b:24:68:72:67:66:1d:6a:2b:33:3e:71:
69:83:47:c4:44:67:e1:f4:96:83:74:17:0f:79:1b:
5f:57:0a:e9:d9:b9:34:49:9f:43:58:62:67:50:e4:
72:73:b5:ff:1b:16:f1:60:3b:54:7c:c1:3f:98:75:
0a:2b:7f:17:c4:24:83:b5:8d:0a:f1:7a:14:5e:39:
97:c1:57:c6:83:72:c7:e2:58:eb:e7:16:0d:e4:d5:
c4:0f:06:58:f3:27:67:28:3f:ca:81:55:01:39:02:
32:63:5e:65:b1:40:8f:1b:c3:ce:4f:a0:ff:c6:5c:
9d:4e:3c:3b:4d:ba:2a:7b:36:aa:f7:d9:65:96:f1:
ce:11:9d:49:4a:39:4c:8e:58:7a:bb:d0:50:76:02:
8c:dd:da:4d:ff:bb:09:84:89:fa:b2:10:ba:27:93:
6d:fd:52:d5:81:22:de:9b:24:65:5f:d9:06:37:c2:
bc:65:4f:32:80:43:d0:a3:86:e3:c1:68:24:34:7e:
4d:59:46:98:bc:00:e3:04:fa:96:41:c8:23:e9:e6:
b1:84:26:a1:05:60:51:40:8c:62:7f:4e:7d:d0:07:
ae:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:21:4F:91:7B:09:14:44:9E:12:03:2F:CD:26:5C:01:0D:9C:EA:5E
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oSFPkXsJFESeEgMvzSZcAQ2c6l4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.83.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ee:e8:48:6b:6b:1d:74:33:1a:1d:1d:35:4f:6e:d8:e6:52:
7f:b2:64:c7:7d:5a:bd:1c:40:ff:6c:1c:e1:b3:78:71:b7:10:
19:6c:62:f2:7a:f9:a0:55:a3:1a:fb:1e:6f:ee:06:ff:a5:61:
bf:2a:6b:ed:4d:aa:23:73:9b:1b:4a:3f:a9:54:27:3d:bb:00:
f8:c0:42:03:e1:b9:17:1b:d7:bd:5d:b3:2d:0d:1f:48:3e:be:
3c:82:9a:24:ca:60:49:90:51:d2:e7:5b:52:8a:a9:ac:ba:d3:
8b:12:bc:9e:2c:b1:5b:66:6a:83:19:93:b1:0f:b3:dd:e8:6d:
60:df:ed:4d:de:32:c5:d3:d4:a4:69:c1:eb:73:c1:46:74:05:
4b:ae:c1:23:ed:96:9b:08:41:6d:ce:1b:f2:dd:95:04:67:a2:
45:a0:e8:b2:91:03:40:7c:7c:4a:68:ee:71:0d:c6:0a:3e:b2:
8b:77:0f:ff:14:c6:7a:72:87:18:90:e9:27:ab:b5:ed:2d:d1:
3f:49:5b:21:c2:3d:70:58:4b:d6:ed:92:75:7c:85:61:07:ea:
48:24:1d:b1:4c:ea:c6:8f:37:13:21:f0:46:16:ca:b5:f0:b7:
88:5f:4f:50:51:8a:93:a5:65:93:61:49:9c:32:de:a0:1a:e4:
32:5c:c6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:01 2024 by rpki-client on console-ams.rpki-client.org