Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/rDg91D6btQMHNfd12IxrCVCzen0.roa
File: rDg91D6btQMHNfd12IxrCVCzen0.roa (raw, json)
Hash identifier: wGnnXLkv65HEps77o2OGF8trRBYQrriAejYp6bbcSwk=
Subject key identifier: AC:38:3D:D4:3E:9B:B5:03:07:35:F7:75:D8:8C:6B:09:50:B3:7A:7D
Certificate issuer: /CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Certificate serial: 018571D794FE37D6F647ACACBC416AC46167
Authority key identifier: A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/rDg91D6btQMHNfd12IxrCVCzen0.roa
Signing time: Mon 02 Jan 2023 09:37:11 +0000
ROA not before: Mon 02 Jan 2023 09:37:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41887
IP address blocks: 90.145.56.0/24 maxlen: 24
2a02:120:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:94:fe:37:d6:f6:47:ac:ac:bc:41:6a:c4:61:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Validity
Not Before: Jan 2 09:37:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac383dd43e9bb5030735f775d88c6b0950b37a7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d6:b8:c6:0a:97:8e:57:73:dc:8d:96:f2:0b:
a7:d5:42:73:6e:39:e2:20:63:6f:96:a3:4a:9b:e8:
59:84:09:1a:5d:70:63:b2:28:33:c1:4e:d0:49:df:
49:2d:d9:ff:91:0f:5e:bf:9f:de:24:02:d7:c4:71:
c5:31:a2:f2:d7:8c:aa:d1:3f:43:3d:87:1f:ab:66:
82:1b:ea:8e:c7:68:f9:e0:e5:b7:8c:4f:bf:e8:a9:
37:4b:ab:f4:16:7c:65:d2:fb:e1:57:1f:64:3b:54:
84:58:44:fc:84:69:20:40:33:ac:d1:75:ad:59:b7:
37:67:ce:24:64:cb:ac:06:a8:3f:e2:6a:b1:8f:d4:
66:81:cd:1c:c8:1a:1f:7c:00:b9:99:98:b6:43:69:
41:d7:f9:15:3d:30:af:f6:b4:95:cd:c6:49:b5:2b:
da:3e:1a:62:30:73:05:da:8c:8e:8b:aa:f8:c2:68:
d5:79:56:df:d7:a7:b3:6f:f3:ce:17:de:df:c7:fc:
2b:5a:b7:01:53:8b:1c:0e:80:08:2a:ab:80:6f:15:
e3:0c:84:84:e8:a0:42:af:c4:69:1b:56:77:6e:9a:
48:03:42:6e:af:07:6f:12:ff:54:e0:0e:a8:6c:ee:
a4:6f:7d:55:b9:70:a8:45:fa:46:a7:66:74:34:65:
80:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:38:3D:D4:3E:9B:B5:03:07:35:F7:75:D8:8C:6B:09:50:B3:7A:7D
X509v3 Authority Key Identifier:
keyid:A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/rDg91D6btQMHNfd12IxrCVCzen0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/qGWA4YrW_43JQr6IPBbei3MflgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.145.56.0/24
IPv6:
2a02:120:2::/48
Signature Algorithm: sha256WithRSAEncryption
0d:f3:ba:0f:b1:61:b7:85:c7:19:17:7e:2f:e8:77:1b:d5:9d:
33:c1:3e:2c:87:a3:c1:87:d7:3f:a7:2e:92:8d:72:38:7d:0d:
c6:70:0b:b7:65:bc:7a:98:5c:da:d3:05:ff:b1:ba:58:0d:45:
81:1a:22:06:00:a7:82:b4:b9:85:47:ba:d8:9c:52:26:41:d8:
70:6d:88:dc:57:45:35:f3:02:dc:ec:1a:46:8f:15:ba:b5:90:
28:9b:41:0c:3d:e2:f8:59:ee:03:90:8a:3d:04:a0:1b:78:5b:
e1:9d:2d:98:14:a7:8b:fe:0a:6b:6a:5e:76:06:4b:e4:10:70:
f0:16:5f:18:56:be:9c:dd:44:0d:a1:88:17:2b:d2:77:e5:ea:
8b:b4:e3:dc:48:ec:8d:ea:6b:de:43:8d:90:44:ac:f9:37:50:
95:d0:16:5b:0d:52:79:e1:42:73:fb:2e:a2:f2:15:a8:b8:2e:
6e:18:30:9b:d5:6c:84:80:bd:57:98:2f:a7:f3:87:5a:e8:e8:
2e:de:74:93:56:d7:32:94:ce:c7:26:b3:4c:ce:13:ab:bc:88:
a1:99:32:6b:0e:93:ac:39:f3:ef:7a:83:fa:66:99:bf:58:4e:
78:dd:3c:ac:bb:3d:8c:bb:a2:8f:59:6e:c7:3d:ee:5e:cf:33:
e8:b5:0b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:20 2024 by rpki-client on console-fra.rpki-client.org