Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/ce9aa9-8793-4863-a059-5a284064fdb6/1/iyxcL6LnUK158bFbtbQJhhuS6Ng.roa
File: iyxcL6LnUK158bFbtbQJhhuS6Ng.roa (raw, json)
Hash identifier: strOsLJiHSXzoWqxz0M2Kye67YqQ1wkM5pihqbXsQXk=
Subject key identifier: 8B:2C:5C:2F:A2:E7:50:AD:79:F1:B1:5B:B5:B4:09:86:1B:92:E8:D8
Certificate issuer: /CN=35371996dc555a98404c7ee712ee293ff6045383
Certificate serial: 01856FDDDEB0F6D4C22D5A869D14B39407E3
Authority key identifier: 35:37:19:96:DC:55:5A:98:40:4C:7E:E7:12:EE:29:3F:F6:04:53:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTcZltxVWphATH7nEu4pP_YEU4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/ce9aa9-8793-4863-a059-5a284064fdb6/1/iyxcL6LnUK158bFbtbQJhhuS6Ng.roa
Signing time: Mon 02 Jan 2023 00:24:49 +0000
ROA not before: Mon 02 Jan 2023 00:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56533
IP address blocks: 91.223.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:de:b0:f6:d4:c2:2d:5a:86:9d:14:b3:94:07:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35371996dc555a98404c7ee712ee293ff6045383
Validity
Not Before: Jan 2 00:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b2c5c2fa2e750ad79f1b15bb5b409861b92e8d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3e:34:37:d5:35:7e:32:66:ae:41:a2:c6:5f:
96:4b:2b:9e:25:b3:c1:ec:73:4b:52:9a:e0:6a:35:
0d:15:11:fb:5e:66:3e:18:b9:c4:86:01:0b:8d:c1:
d1:1c:a0:76:81:5e:4c:97:c3:09:07:01:c0:1f:3f:
fd:3c:77:cc:69:07:3e:af:e2:ff:e2:cf:05:e4:41:
2d:7f:e2:73:52:db:ea:06:94:c0:5c:cf:00:6f:73:
3c:2c:b1:37:4e:46:aa:70:e1:c1:1a:a5:42:24:f0:
de:a4:a7:3b:4b:1a:a8:45:4a:8a:e9:40:b9:3a:6b:
5f:a1:b8:db:7c:37:46:51:bb:62:ec:b6:1e:fc:9e:
6b:4d:4a:ab:8d:60:16:ad:99:ae:c0:ff:1c:06:d1:
f0:f5:b7:11:10:54:db:1a:9b:64:6e:37:1d:9b:11:
28:52:3f:b8:d4:d5:35:be:7d:36:51:49:20:45:27:
39:5a:5f:50:43:9b:63:6c:22:6b:09:e3:78:42:bb:
08:d4:d3:88:ff:65:43:e7:b8:90:e4:08:32:6a:da:
75:81:76:2a:ce:a7:0a:fc:a7:53:41:be:30:cb:b4:
ce:d3:be:0a:13:43:d1:1c:c7:0c:17:66:e9:d4:31:
15:d9:2b:31:04:3d:db:bc:63:23:c8:89:d7:cb:38:
0c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:2C:5C:2F:A2:E7:50:AD:79:F1:B1:5B:B5:B4:09:86:1B:92:E8:D8
X509v3 Authority Key Identifier:
keyid:35:37:19:96:DC:55:5A:98:40:4C:7E:E7:12:EE:29:3F:F6:04:53:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTcZltxVWphATH7nEu4pP_YEU4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ce9aa9-8793-4863-a059-5a284064fdb6/1/iyxcL6LnUK158bFbtbQJhhuS6Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ce9aa9-8793-4863-a059-5a284064fdb6/1/NTcZltxVWphATH7nEu4pP_YEU4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.178.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:d7:2b:c4:ff:9a:11:de:a7:18:ec:76:13:5b:70:f2:08:3e:
65:07:e3:61:51:9d:89:77:7d:3b:d6:d6:3c:c7:0e:24:14:69:
7e:7d:ed:aa:ae:e3:52:2c:e7:53:f5:8d:e4:f3:41:d8:45:90:
68:66:ec:f5:39:f7:d5:1a:8c:95:07:7d:2f:e9:5b:04:10:db:
8d:24:6c:6a:09:62:c7:5a:71:f9:06:db:9b:44:63:7a:94:d3:
8f:61:a8:f5:dd:17:e3:db:f9:35:c1:db:68:ba:67:ac:7b:24:
78:98:5d:0b:1f:68:74:92:4a:2d:21:bb:ea:07:90:bd:49:2f:
9b:62:6f:63:13:9f:6b:b0:6a:09:d3:c0:f8:05:76:df:54:54:
c2:dc:f7:6a:a4:d0:c7:98:c5:d1:5a:63:a6:bb:77:80:68:fb:
1d:34:07:62:4f:b9:2b:7d:f4:70:82:10:5f:8a:aa:b7:2d:8b:
aa:d0:21:b4:12:38:5e:ae:e6:13:89:81:7d:ad:e2:f4:df:b8:
13:55:a5:c0:0d:88:1b:1c:93:a9:fe:19:53:af:ae:52:f2:74:
a3:d5:07:0e:3e:dc:f3:a4:df:ef:7d:98:12:99:90:33:b5:9d:
28:3d:18:e0:35:46:08:64:22:33:09:8e:96:f4:06:57:c6:65:
b4:99:1d:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:10 2024 by rpki-client on console-ams.rpki-client.org